CVE-2026-8295

An integer overflow vulnerability in the simdjson document-builder API allows incorrect buffer size calculations in "stringbuilder::escapeandappend" when processing very large input strings on platforms with limited "sizet" width e.g., 32-bit builds. The overflow can cause insufficient buffer...

CVE-2026-8295

creationtimestamp| type| source ---|---|--- 2026-05-14 03:55:00+00:00| seen| https://cert.pl/en/posts/2026/05/CVE-2026-8295 2026-05-20 07:37:40+00:00| seen| https://bsky.app/profile/cyberowi.pl/post/3mmbfjh4h7k27...

EUVD-2019-16332

Malware in sbrugna...

MAL-2025-8295 Malicious code in @landmineaknpm2/recusandae-et-minima (npm)

The package @landmineaknpm2/recusandae-et-minima was found to contain malicious code...

CVE-2025-8295

The Employee Directory plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘noaccessmsg’ parameter in all versions up to, and including, 4.5.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-lev...

CVE-2025-8295 Employee Directory <= 4.5.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via noaccess_msg Parameter

The Employee Directory plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘noaccessmsg’ parameter in all versions up to, and including, 4.5.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-lev...

CVE-2025-8295

CVE-2025-8295 affects the WordPress Employee Directory plugin (Employee Directory – Staff Listing & Team Directory) with authenticated Stored XSS via the noaccess_msg parameter in versions up to 4.5.1. Public sources confirm the root cause is insufficient input sanitization and output escaping, e...

WordPress Employee Directory plugin <= 4.5.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via noaccess_msg Parameter vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via noaccessmsg Parameter vulnerability discovered by muhammad yudha in WordPress Plugin Employee Directory – Staff Listing & Team Directory Plugin for WordPress versions = 4.5.1...

CVE-2019-6774

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader 9.4.1.16828. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

CGA-M2PP-WW5V-8295

Bulletin has no description...

CVE-2024-8295

creationtimestamp| type| source ---|---|--- 2024-08-29 15:22:59+00:00| seen| https://t.me/cvedetector/4391...

CVE-2024-8295 FeehiCMS index.php createBanner unrestricted upload

A vulnerability has been found in FeehiCMS up to 2.1.1 and classified as critical. This vulnerability affects the function createBanner of the file /admin/index.php?r=banner%2Fbanner-create. The manipulation of the argument BannerFormimg leads to unrestricted upload. The attack can be initiated...

CVE-2024-8295 FeehiCMS index.php createBanner unrestricted upload

A vulnerability has been found in FeehiCMS up to 2.1.1 and classified as critical. This vulnerability affects the function createBanner of the file /admin/index.php?r=banner%2Fbanner-create. The manipulation of the argument BannerFormimg leads to unrestricted upload. The attack can be initiated...

openSUSE: Security Advisory for nextcloud (openSUSE-SU-2021:0262-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

openSUSE Security Update : nextcloud (openSUSE-2021-262)

This update for nextcloud fixes the following issues : - nextcloud was upgraded to version 20.0.7 - CVE-2020-8294: Fixed a missing link validation boo1181803 - CVE-2020-8295: Fixed a denial of service attack boo1181804 - CVE-2020-8293: Fixed an input validation issue boo1181445 C Tenable Network...

Security update for nextcloud (moderate)

openSUSE Security Update: Security update for nextcloud Announcement ID: openSUSE-SU-2021:0262-1 Rating: moderate References: 1181445 1181803 1181804 Cross-References: CVE-2020-8293 CVE-2020-8294 CVE-2020-8295 Affected Products: openSUSE Leap 15.2 An update that fixes three vulnerabilities is now...

CVE-2020-8295

CVE-2020-8295 is a Denial of Service vulnerability in Nextcloud Server (affecting Nextcloud Server 19 and earlier) caused by a wrong check when resetting a user password. Connected advisories confirm the issue is addressed by upgrading Nextcloud to newer releases (notably 19.0.13, 20.0.11, or 21....

tenderer.ru Cross Site Scripting vulnerability OBB-1385345

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

ceicdata.com Cross Site Scripting vulnerability OBB-1192927

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

one2web.co.uk Open Redirect vulnerability

Open Bug Bounty ID: OBB-1145777 Security Researcher myNickName Helped patch 200 vulnerabilities Received 2 Coordinated Disclosure badges , a holder of 2 badges for responsible and coordinated disclosure, found a security vulnerability affecting one2web.co.uk website and its users. Following...