CVE-2025-9177

creationtimestamp| type| source ---|---|--- 2025-10-14 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-25-287-01...

CVE-2016-9177

creationtimestamp| type| source ---|---|--- 2025-08-19 21:02:20+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3lwrspys3bz2y...

MAL-2025-9177 Malicious code in @patrten/eligendi-cum-assumenda (npm)

The package @patrten/eligendi-cum-assumenda was found to contain malicious code...

CVE-2024-9177

The Themedy Toolbox plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's themedycol, themedysociallink, themedyalertbox, and themedypullleft shortcodes in all versions up to, and including, 1.0.14, and up to, and including 1.0.15 for the plugin's themedybutton...

Linux Distros Unpatched Vulnerability : CVE-2017-9177

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service invalid read and SEGV, related to the ReadImage function in...

CVE-2024-9177

creationtimestamp| type| source ---|---|--- 2024-09-26 17:09:43+00:00| seen| https://t.me/cvedetector/6415...

CVE-2024-9177 Themedy Toolbox <= 1.0.15 - Authenticated (Contributor+) Stored Cross-Site Scripting via Multiple Shortcodes

The Themedy Toolbox plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's themedycol, themedysociallink, themedyalertbox, and themedypullleft shortcodes in all versions up to, and including, 1.0.14, and up to, and including 1.0.15 for the plugin's themedybutton...

CVE-2024-9177 Themedy Toolbox <= 1.0.15 - Authenticated (Contributor+) Stored Cross-Site Scripting via Multiple Shortcodes

The Themedy Toolbox plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's themedycol, themedysociallink, themedyalertbox, and themedypullleft shortcodes in all versions up to, and including, 1.0.14, and up to, and including 1.0.15 for the plugin's themedybutton...

WordPress Themedy Toolbox Plugin <= 1.0.15 is vulnerable to Cross Site Scripting (XSS)

Software Themedy Toolbox Type Plugin Vulnerable versions = 1.0.15 Fixed in 1.0.16 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-9177 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 23274631c438 Credits Francesco Carlucci...

Oracle Linux 7 : jquery-ui (ELSA-2022-9177)

The remote Oracle Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2022-9177 advisory. - Backport jQuery CVE-2020-11022 and CVE-2020-11023 fixes to bundled jQuery v1.10.2 Orabug: 33869588 Tenable has extracted the preceding description...

CVE-2019-9177

...

CVE-2019-9177

CVE-2019-9177 is rejected; do not use this candidate number.

ai.grakn:grakn-bootup (=v1.1.0-226-g847ecff2d8e26f249422247d7665fe15f07b1744), ai.grakn:grakn-dist (>=0.7.0 <=v1.1.0-226-g847ecff2d8e26f249422247d7665fe15f07b1744) +98 more potentially affected by CVE-2016-9177 via com.sparkjava:spark-core (>=1.0 <=2.5.1)

com.sparkjava:spark-core MAVEN version =1.0, =0.7.0, =0.6.1, =0.6.1, =0.7.0, =0.6.1, =0.6.1, =0.6.1, =0.6.1, =0.6.1, =0.6.1, =0.16.0, =1.0, =1.2.0 - br.com.logiquesistemas:easy-spark =1.0.0 and more Source cves: CVE-2016-9177 Source advisory: OSV:GHSA-89GC-6CW6-4VCH...

CVE-2018-9177

The CVE-2018-9177 entry documents a cross-site scripting (XSS) vulnerability in Twonky Server prior to version 8.5.1 , exploitable via a folder name on the Shared Folders screen. The affected component is the web UI handling folder names, with the root cause being improper handling/encoding of us...

CVE-2015-9177

CVE-2015-9177 describes a buffer over-read in a crypto API function on Android devices using Qualcomm Snapdragon (broad range of Automotive/Mobile/Wearable SD family) prior to the 2018-04-05 patch level. The issue is rated high/critical, with CVSSv3.0 vectors indicating network access, no user in...

CVE-2017-9177

libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service invalid read and SEGV, related to the ReadImage function in input-bmp.c:390:12...

CVE-2017-9177

libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service invalid read and SEGV, related to the ReadImage function in input-bmp.c:390:12...

UBUNTU-CVE-2017-9177

libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service invalid read and SEGV, related to the ReadImage function in input-bmp.c:390:12...

CVE-2017-9177

CVE-2017-9177 affects AutoTrace 0.31.1 (libautotrace.a). A denial-of-service can be triggered remotely via malformed BMP input, due to an invalid read/SEGV in ReadImage (input-bmp.c:390:12). Impact is partial availability loss. Some advisories report unpatched status for affected distros; no patc...

CVE-2016-9177

Directory traversal vulnerability in Spark 2.5 allows remote attackers to read arbitrary files via a .. dot dot in the URI...