CVE-2025-9067

creationtimestamp| type| source ---|---|--- 2025-10-16 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-25-289-02...

CVE-2017-9067

In MODX Revolution before 2.5.7, when PHP 5.3.3 is used, an attacker is able to include and execute arbitrary files on the web server due to insufficient validation of the action parameter to setup/index.php, aka directory traversal...

CVE-2024-9067

The CVE-2024-9067 entry concerns Youzify for WordPress. A missing capability check in the delete_attachment function across versions up to 1.3.0 allows authenticated users with Subscriber+ privileges to modify data by deleting arbitrary attachments. This is a Broken Access Control issue in Youzif...

CVE-2024-9067 Youzify – BuddyPress Community, User Profile, Social Network & Membership Plugin for WordPress <= 1.3.0 - Missing Authorization to Arbitrary (Subscriber+) Attachment Deletion

The Youzify – BuddyPress Community, User Profile, Social Network & Membership Plugin for WordPress plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'deleteattachment' function in all versions up to, and including, 1.3.0. This makes i...

WordPress Youzify Plugin <= 1.3.0 is vulnerable to Broken Access Control

Software Youzify Type Plugin Vulnerable versions = 1.3.0 Fixed in 1.3.1 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-9067 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID d8d6ded5ddf5 Credits Francesco Carlucci Required privilege...

RHEL 8 : firefox (RHSA-2022:9067)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:9067 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox...

Oracle Linux 8 : ELSA-2022-9067-1: / firefox (ELSA-2022-90671)

The remote Oracle Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2022-90671 advisory. 102.6.0-1.0.1 - Updated homepages to use https Orabug: 34648274 - Removed Upstream references - Add firefox-oracle-default-prefs.js and remove the...

Mozilla Firefox Security Advisory (MFSA2016-89) - Linux

This host is missing a security update for Mozilla Firefox. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; y...

Oracle Linux 7 : Unbreakable Enterprise kernel (ELSA-2021-9067)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2021-9067 advisory. - xen-blkback: fix error handling in xenblkbkmap Jan Beulich Orabug: 32492110 CVE-2021-26930 - xen-scsiback: don't handle error by BUG Jan Beulich...

CVE-2020-9067

There is a buffer overflow vulnerability in some Huawei products. The vulnerability can be exploited by an attacker to perform remote code execution on the affected products when the affected product functions as an optical line terminal OLT. Affected product versions include:SmartAX MA5600T...

CVE-2020-9067

There is a buffer overflow vulnerability in some Huawei products. The vulnerability can be exploited by an attacker to perform remote code execution on the affected products when the affected product functions as an optical line terminal OLT. Affected product versions include:SmartAX MA5600T...

CVE-2020-9067

Summary (CVE-2020-9067): A buffer overflow vulnerability in Huawei SmartAX OLT platforms (MA5600T, MA5800, EA5800) can allow remote code execution when the device functions as an optical line terminal. Affected versions include MA5600T: V800R013C10, V800R015C00/ C10, V800R017C00/C10, V800R018C00/...

Security Advisory - Buffer Overflow Vulnerability in Some Huawei Products

There is a buffer overflow vulnerability in some Huawei products. The vulnerability can be exploited by an attacker to perform remote code execution on the affected products when the affected product functions as an optical line terminal OLT. Vulnerability ID: HWPSIRT-2019-09333 This vulnerabilit...

CVE-2018-9067

The Lenovo Help Android app (versions earlier than 6.1.2.0327) had insufficient access control for certain functions, which could lead to exposure of about 400 email addresses and 8,500 IMEI. Root cause: inadequate enforcement of access controls for specific features. Impact: data exposure; CVSS ...

Lenovo Help Android App Access Control - Lenovo Support US

No description provided...

CVE-2016-9067

Two use-after-free errors during DOM operations resulting in potentially exploitable crashes. This vulnerability affects Firefox 50...

CVE-2016-9067

CVE-2016-9067 refers to two heap-use-after-free vulnerabilities in Firefox’s DOM operations, specifically nsINode::ReplaceOrInsertBefore, potentially allowing crashes exploitable through crafted content in Firefox versions before 50. The related advisories confirm the issue as a memory-safety bug...

CVE-2015-9067

CVE-2015-9067 concerns Qualcomm products with Android CAF builds using the Linux kernel. The description indicates a potential compiler optimization of memset() that is addressed in these releases. The connected documents do not provide concrete technical details such as affected versions, exact ...

CVE-2017-9067

In MODX Revolution before 2.5.7, when PHP 5.3.3 is used, an attacker is able to include and execute arbitrary files on the web server due to insufficient validation of the action parameter to setup/index.php, aka directory traversal...

CVE-2017-9067

In MODX Revolution before 2.5.7, when PHP 5.3.3 is used, an attacker is able to include and execute arbitrary files on the web server due to insufficient validation of the action parameter to setup/index.php, aka directory traversal...