49 matches found
CVE-2026-9658
Plack::Middleware::Security::Common versions before 0.13.1 for Perl did not block header injections in request paths. The header injection rule was ineffective at blocking header injections in the request paths unless they were double-encoded, for example, GET /path\r\nHTTP/1.1\r\nHost:...
CVE-2026-9658
creationtimestamp| type| source ---|---|--- 2026-05-28 21:33:02+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3mmwxwk62fg2u...
MINI-6R55-9658-4885
Bulletin has no description...
EUVD-2020-0251
Malware in sbrugna...
Linux Distros Unpatched Vulnerability : CVE-2019-9658
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Checkstyle before 8.18 loads external DTDs by default. CVE-2019-9658 Note that Nessus relies on the presence of the package as reported by the vendor...
MAL-2025-9658 Malicious code in @warnermediacode/wme-theme-gelatap (npm)
The package @warnermediacode/wme-theme-gelatap was found to contain malicious code...
RHEL 9 : perl-File-Find-Rule (RHSA-2025:9658)
The remote Redhat Enterprise Linux 9 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2025:9658 advisory. File::Find::Rule is a friendlier interface to File::Find. It allows you to build rules which specify the desired files and directories. Security Fixe...
CVE-2024-9658
The School Management System for Wordpress plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 93.0.0. This is due to the plugin not properly validating a user's identity prior to updating their details like email and password...
CVE-2024-9658
creationtimestamp| type| source ---|---|--- 2025-03-07 08:34:53+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/6811 2025-03-07 11:48:59+00:00| seen| https://mastodon.social/users/CyberSignaler/statuses/114120991612311147...
CVE-2024-9658 School Management System for Wordpress <= 93.0.0 - Authenticated (Student+) Account Takeover and Privilege Escalation
The School Management System for Wordpress plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 93.0.0. This is due to the plugin not properly validating a user's identity prior to updating their details like email and password...
CVE-2024-9658
CVE-2024-9658 affects the WordPress plugin “School Management System for Wordpress” up to version 93.0.0. The root causes are improper identity validation during updates to user data (email/password) via mj_smgt_update_user() and mj_smgt_add_admission(), and a local file inclusion vulnerability. ...
CVE-2024-9658 School Management System for Wordpress <= 93.0.0 - Authenticated (Student+) Account Takeover and Privilege Escalation
The School Management System for Wordpress plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 93.0.0. This is due to the plugin not properly validating a user's identity prior to updating their details like email and password...
Linux Distros Unpatched Vulnerability : CVE-2014-9658
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The ttfaceloadkern function in sfnt/ttkern.c in FreeType before 2.5.4 enforces an incorrect minimum table length, which allows remote attackers to cause a denia...
SUSE: Security Advisory (SUSE-SU-2015:0455-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2020-9658
Adobe Audition versions 13.0.6 and earlier have an out-of-bounds write vulnerability. Successful exploitation could lead to arbitrary code execution...
CVE-2020-9658
CVE-2020-9658 affects Adobe Audition 13.0.6 and earlier. Root cause: an out-of-bounds write vulnerability that could allow arbitrary code execution on exploit. Impact is consistent with the advisory and CVE details; patched in Adobe APSB20-40 to version 13.0.7 for Windows/macOS. Other records ref...
Adobe Audition Multiple Code Execution Vulnerabilities (APSB20-40) - Windows
Adobe Audition is prone to multiple code execution vulnerabilities. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...
CVE-2020-8860
CVE-2020-8860 affects Samsung Galaxy S10 devices with Exynos SoCs (G973FXXS3ASJA etc.). The flaw is a buffer overflow in the Call Control Setup messages, caused by inadequate validation of the length of user-supplied data copied into a fixed-length, stack-based buffer. This enables remote code ex...
Debian DLA-2099-1 : checkstyle security update
Security researchers from Snyk discovered that the fix for CVE-2019-9658 was incomplete. Checkstyle, a development tool to help programmers write Java code that adheres to a coding standard, was still vulnerable to XML External Entity XXE injection. For Debian 8 'Jessie', this problem has been...
Debian: Security Advisory (DLA-2099-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...