CVE-2026-25006

Improper Neutralization of Script-Related HTML Tags in a Web Page Basic XSS vulnerability in 8theme XStore xstore allows Code Injection.This issue affects XStore: from n/a through = 9.6.4...

CVE-2026-25305

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in 8theme XStore xstore allows DOM-Based XSS.This issue affects XStore: from n/a through = 9.6.4...

CVE-2026-25006 WordPress XStore theme <= 9.6.4 - Arbitrary Shortcode Execution vulnerability

Improper Neutralization of Script-Related HTML Tags in a Web Page Basic XSS vulnerability in 8theme XStore xstore allows Code Injection.This issue affects XStore: from n/a through = 9.6.4...

CVE-2026-25305 WordPress XStore theme <= 9.6.4 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in 8theme XStore xstore allows DOM-Based XSS.This issue affects XStore: from n/a through = 9.6.4...

CVE-2026-25006

CVE-2026-25006 affects the WordPress XStore theme up to version 9.6.4. The Root Cause is improper neutralization of script-related HTML tags in a web page, enabling Code Injection via XStore’s shortcode handling. Affected product: XStore theme (WordPress). Impact: potential arbitrary shortcode ex...

WordPress plugin XStore 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

CVE-2021-47889 Softros LAN Messenger 9.6.4 - 'SoftrosSpellChecker' Unquoted Service Path

Softros LAN Messenger 9.6.4 contains an unquoted service path vulnerability in the SoftrosSpellChecker service that allows local attackers to potentially execute arbitrary code. Attackers can exploit the unquoted path in 'C:\Program Files x86\Softros Systems\Softros Messenger\Spell Checker' to...

Softros LAN Messenger code-related vulnerabilities

Softros LAN Messenger is an instant messaging system for local area networks developed by the American company Softros. Version 9.6.4 of Softros LAN Messenger contains a code vulnerability caused by an unquoted service path, which may lead to the execution of arbitrary code...

Security Misconfiguration vulnerability in Bitbucket Data Center and Server

This High severity Security Misconfiguration Dependency vulnerability was introduced in versions 9.2.0, 9.3.0, 9.4.0, 9.5.0, and 9.6.0 of Bitbucket Data Center and Server. This Security Misconfiguration vulnerability, with a CVSS Score of 8.2 and a CVSS Vector of...

PT-2023-15088 · Fullworks · Fullworks Quick Event Manager

Name of the Vulnerable Software and Affected Versions: Fullworks Quick Event Manager plugin versions = 9.6.4 Description: The issue is related to a Stored Cross-Site Scripting XSS vulnerability that requires authentication with admin+ privileges. Recommendations: For versions = 9.6.4, update to a...

SUSE CVE-2017-7548

PostgreSQL versions before 9.4.13, 9.5.8 and 9.6.4 are vulnerable to authorization flaw allowing remote authenticated attackers with no privileges on a large object to overwrite the entire contents of the object, resulting in a denial of service...

[SECURITY] Fedora 26 Update: mingw-postgresql-9.6.4-1.fc26

MinGW Windows copy of PostgreSQL. PostgreSQL is an advanced Object-Relation al database management system DBMS...

PostgreSQL Privilege Escalation Vulnerability (Aug 2017) - Linux

PostgreSQL is prone to a privilege escalation vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

PostgreSQL Multiple Vulnerabilities (Aug 2017) - Windows

PostgreSQL is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:postgresql:postgresql";...

PostgreSQL Multiple Vulnerabilities (Aug 2017) - Linux

PostgreSQL is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:postgresql:postgresql";...

ALPINE-CVE-2017-7546

PostgreSQL versions before 9.2.22, 9.3.18, 9.4.13, 9.5.8 and 9.6.4 are vulnerable to incorrect authentication flaw allowing remote attackers to gain access to database accounts with an empty password...

Security fix for the ALT Linux 7 package postgresql9.6 version 9.6.4-alt0.M70P.1

9.6.4-alt0.M70P.1 built Aug. 9, 2017 Alexei Takaseev in task 186876 Aug. 9, 2017 Alexei Takaseev - 9.6.4 - fix CVE-2017-7547...

MDaemon IMAP server 9.6.4 (FETCH) Remote Buffer Overflow Exploit

No description provided by source. !/usr/bin/python MDAEMON POST AUTH REMOTE R00T IMAP FETCH COMMAND UNIVERSAL EXPLOIT 0day Bug discovered and coded by Matteo Memelli aka ryujin http://www.gray-world.net http://www.be4mind.com Affected Versions : MDaemon IMAP server v9.6.4 Tested on OS : Windows...