MAL-2025-8103 Malicious code in @juigorg/odio-repellat (npm)

The package @juigorg/odio-repellat was found to contain malicious code...

CVE-2025-8103

creationtimestamp| type| source ---|---|--- 2025-07-26 04:40:53+00:00| seen| Telegram/HFko88Amcw3HHzdaexrzRtanpKaP9m49Vni3y-VfHTtq7Ro...

CVE-2025-8103

CVE-2025-8103 refers to the WPeMatico RSS Feed Fetcher plugin for WordPress (versions up to and including 2.8.7). It is a Cross-Site Forgery (CSRF) vulnerability caused by missing nonce validation in handle_feedback_submission(), enabling unauthenticated attackers to deactivate the plugin by tric...

WordPress WPeMatico RSS Feed Fetcher plugin <= 2.8.7 - Cross-Site Request Forgery to Plugin Deactivation via handle_feedback_submission Function vulnerability

Cross-Site Request Forgery to Plugin Deactivation via handlefeedbacksubmission Function vulnerability discovered by wesley wcraft in WordPress Plugin WPeMatico RSS Feed Fetcher versions = 2.8.7...

CVE-2024-8103

The WP Category Dropdown plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'align' parameter in all versions up to, and including, 1.8 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level...

Linux Distros Unpatched Vulnerability : CVE-2018-8103

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The JBIG2Stream::readGenericBitmap function in JBIG2Stream.cc in xpdf 4.00 allows attackers to launch denial of service heap-based buffer over-read and...

CVE-2020-8103

creationtimestamp| type| source ---|---|--- 2024-10-28 15:43:31+00:00| seen| https://t.me/CyberSecurityTechnologies/1257...

WordPress WP Category Dropdown Plugin <= 1.8 is vulnerable to Cross Site Scripting (XSS)

Software WP Category Dropdown Type Plugin Vulnerable versions = 1.8 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-8103 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 756b0ad9d0a7 Credits Francesco Carlucci...

MAL-2024-902 Malicious code in wlwz-2312-8103 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6b7ef89aa825a4b724a25a95595bc1af6bc7590b373b4ca0b62abbf7acaf2a57 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in wlwz-2312-8103 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6b7ef89aa825a4b724a25a95595bc1af6bc7590b373b4ca0b62abbf7acaf2a57 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

SUSE CVE-2014-8103

X.Org Server aka xserver and xorg-server 1.15.0 through 1.16.x before 1.16.3 allows remote authenticated users to cause a denial of service out-of-bounds read or write or possibly execute arbitrary code via a crafted length or index value to the 1 sprocdri3queryversion, 2 sprocdri3open, 3...

Ubuntu: Security Advisory (USN-2436-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2018-8103

The JBIG2Stream::readGenericBitmap function in JBIG2Stream.cc in xpdf 4.00 allows attackers to launch denial of service heap-based buffer over-read and application crash via a specific pdf file, as demonstrated by pdftohtml...

com.piketec.jenkins.plugins:piketec-tpt (=6.3), io.jenkins.plugins:aws-lambda-cloud (>=0.3 <=0.4) +14 more potentially affected by CVE-2015-8103 via org.jenkins-ci.main:cli (>=1.626 <=1.637)

org.jenkins-ci.main:cli MAVEN version =1.626, =0.3, =1.2, =1.1.2, =1.626, =1.626, =1.626, =1.1.0, =0.1, =0.2, =0.1, =2.4, =1.626, =1.21, =1.0.3, =1.0.18 and more Source cves: CVE-2015-8103 Source advisory: OSV:GHSA-WFW7-6632-XCV2...

ColumnPack:ColumnPack-plugin (=1.0.3), CustomHistory:CustomHistory (>=1.1 <=1.3) +1304 more potentially affected by CVE-2015-8103 via org.jenkins-ci.main:cli (>=1.396 <=1.625.1)

org.jenkins-ci.main:cli MAVEN version =1.396, =1.1, =0.0.1, =1.0, =0.0.1, =0.9, =1.3, =1.0, =1.0, =2.2.1, =1.0.3, =1.0.0, =1.0, =1.0.0, =1.2.0 and more Source cves: CVE-2015-8103 Source advisory: OSV:GHSA-WFW7-6632-XCV2...

Exploit for Deserialization of Untrusted Data in Redhat Data_Grid

This repository contains a collection of Python scripts for exploiting Java deserialization vulnerabilities in various applications, including Cisco Prime Infrastructure, JBoss, Jenkins, and OpenNMS. The scripts use the ysoserial tool to generate the payload. The scripts can be categorized into...

CVE-2020-8103 Link Resolution Privilege Escalation Vulnerability in Bitdefender Antivirus Free (VA-8604)

A vulnerability in the improper handling of symbolic links in Bitdefender Antivirus Free can allow an unprivileged user to substitute a quarantined file, and restore it to a privileged location. This issue affects Bitdefender Antivirus Free versions prior to 1.0.17.178...

CVE-2020-8103

CVE-2020-8103 concerns Bitdefender Antivirus Free where improper handling of symbolic links in quarantined files allows an unprivileged user to substitute a quarantined file and restore it to a privileged location. Affected versions are prior to 1.0.17.178. The vulnerability is tracked across mul...

CVE-2019-8103

CVE-2019-8103 is an out-of-bounds read vulnerability in Adobe Acrobat and Reader. Affected products include Adobe Acrobat/Reader versions 2019.012.20035 and earlier, 2017.011.30142/30143, and 2015.006.30497/30498. Successful exploitation could lead to information disclosure. Connected sources (NV...

Adobe Reader < 2015.006.30499 / 2017.011.30144 / 2019.012.20036 Multiple Vulnerabilities (APSB19-41)

The version of Adobe Reader installed on the remote Windows host is a version prior to 2015.006.30499, 2017.011.30144, or 2019.012.20036. It is, therefore, affected by multiple vulnerabilities. - Adobe Acrobat and Reader versions 2019.012.20035 and earlier, 2019.012.20035 and earlier,...