11455 matches found
CVE-2025-62119
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ViitorCloud Technologies Pvt Ltd Add Featured Image Custom Link custom-url-to-featured-image allows DOM-Based XSS.This issue affects Add Featured Image Custom Link: from n/a through = 2.0.0...
CVE-2025-62149
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in SaifuMak Add Custom Codes add-custom-codes allows Stored XSS.This issue affects Add Custom Codes: from n/a through = 4.80...
PT-2026-4486
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a race condition within the gpiolib component related to the gdev-srcu. Specifically, when multiple drivers concurrently call gpiochip add data with key, a...
PT-2026-27698
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw in the netfilter module related to the validation of open intervals within nft set rbtree. Specifically, the issue arises from the lack of a defined end...
PT-2026-8184
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains memory leaks within the toshiba haps driver related to the toshiba haps add and toshiba haps remove routines. The toshiba haps add function leaks memory allocat...
PT-2026-8217
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the macvlan component, specifically in the macvlan common newlink function. A use-after-free condition can occur when creating a new macvlan link...
PT-2026-6173
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw in the ipvlan implementation related to address locking. The initial code assumed address changes occurred under RTNL, but this is not the case for IPv6...
PT-2026-6143
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A memory corruption issue exists in the Linux kernel related to WiFi drivers. Specifically, the RSI911x driver does not correctly set the size of the vif driver data within the ieee80211...
PT-2026-8132
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A memory leak exists in the unittest data add function within the Linux kernel. If of resolve phandles fails, the allocated unittest data is not freed, resulting in a memory leak. The fi...
PT-2026-6166
Name of the Vulnerable Software and Affected Versions Linux Kernel affected versions not specified Description A flaw exists in the Linux kernel related to the handling of character devices within the uacce module. Specifically, a use-after-free condition can occur during the cleanup process when...
PT-2026-6119
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains an issue within the drm/panel-simple subsystem related to the connector type for the DataImage SCF0700C48GGU18 panel. The connector type is missing, causing dev...
CVE-2025-62099
Missing Authorization vulnerability in approveme Signature Add-On for Gravity Forms gravity-signature-forms-add-on allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Signature Add-On for Gravity Forms: from n/a through = 1.8.6...
CVE-2025-62099 WordPress Signature Add-On for Gravity Forms plugin <= 1.8.6 - Broken Access Control vulnerability
Missing Authorization vulnerability in approveme Signature Add-On for Gravity Forms gravity-signature-forms-add-on allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Signature Add-On for Gravity Forms: from n/a through = 1.8.6...
CVE-2025-62099
Technical details for CVE-2025-62099 are not provided in the supplied documents. The initial description notes a Missing Authorization issue in the Gravity Forms Signature Add-On (gravity-signature-forms-add-on) up to v1.8.6, but no exploits, vectors, or fixes are disclosed here.
CVE-2025-62099 WordPress Signature Add-On for Gravity Forms plugin <= 1.8.6 - Broken Access Control vulnerability
Missing Authorization vulnerability in Approveme Signature Add-On for Gravity Forms allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Signature Add-On for Gravity Forms: from n/a through 1.8.6...
WordPress Signature Add-On for Gravity Forms plugin <= 1.8.6 - Broken Access Control vulnerability
Broken Access Control vulnerability discovered by Nabil Irawan in WordPress Plugin Signature Add-On for Gravity Forms versions = 1.8.6...
DarkSpectre Browser Extension Campaigns Exposed After Impacting 8.8 Million Users Worldwide
The threat actor behind two malicious browser extension campaigns, ShadyPanda and GhostPoster, has been attributed to a third attack campaign codenamed DarkSpectre that has impacted 2.2 million users of Google Chrome, Microsoft Edge, and Mozilla Firefox. The activity is assessed to be the work of...
CVE-2022-50886
In the Linux kernel, the following vulnerability has been resolved: mmc: toshsd: fix return value check of mmcaddhost mmcaddhost may return error, if we ignore its return value, the memory that allocated in mmcallochost will be leaked and it will lead a kernel crash because of deleting not added...
CVE-2025-62108
Missing Authorization vulnerability in SaifuMak Add Custom Codes add-custom-codes allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Add Custom Codes: from n/a through = 4.80...
CVE-2023-54274
In the Linux kernel, the following vulnerability has been resolved: RDMA/srpt: Add a check for valid 'madagent' pointer When unregistering MAD agent, srpt module has a non-null check for 'madagent' pointer before invoking ibunregistermadagent. This check can pass if 'madagent' variable holds an...