CVE-2025-10375

The Web Accessibility By accessiBe plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.10. This is due to missing nonce validation on multiple AJAX actions including accessibesignup, accessibelogin, accessibelicensetrial, accessibemodifyconfig,...

CVE-2025-10375

The WordPress plugin Web Accessibility by accessiBe (plugins: accessibe) is affected by CVE-2025-10375. A CSRF vulnerability exists in all versions up to 2.10 due to missing nonce validation on multiple AJAX actions (accessibe_signup, accessibe_login, accessibe_license_trial, accessibe_modify_con...

CVE-2025-10375 Web Accessibility By accessiBe <= 2.10 - Cross-Site Request Forgery

The Web Accessibility By accessiBe plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.10. This is due to missing nonce validation on multiple AJAX actions including accessibesignup, accessibelogin, accessibelicensetrial, accessibemodifyconfig,...

CVE-2025-11166

WP Go Maps (formerly WP Google Maps) for WordPress is vulnerable to Cross-Site Request Forgery (CSRF) across all versions up to 9.0.46. The root cause is an AJAX bridge that exposes state-changing REST actions without proper CSRF token validation and GET-accessible destructive logic lacking a per...

CVE-2025-11171

CVE-2025-11171 affects the Chartify – WordPress Chart Plugin (up to version 3.5.9). A Missing Authentication for a Critical Function vulnerability arises from an unauthenticated AJAX action that dispatches to admin-class methods based on a request parameter without nonce or capability checks. Thi...

CVE-2025-6242 Vllm: server side request forgery (ssrf) in mediaconnector

A Server-Side Request Forgery SSRF vulnerability exists in the MediaConnector class within the vLLM project's multimodal feature set. The loadfromurl and loadfromurlasync methods fetch and process media from user-provided URLs without adequate restrictions on the target hosts. This allows an...

EUVD-1999-1195

Malware in sbrugna...

EUVD-2019-8959

Malware in sbrugna...

EUVD-2021-2157

Malware in sbrugna...

EUVD-2019-2839

Malware in sbrugna...

EUVD-2017-8031

Malware in sbrugna...

EUVD-2020-1172

Malware in sbrugna...

EUVD-2018-3896

Malware in sbrugna...

EUVD-2014-8013

Malware in sbrugna...

EUVD-2018-17860

Malware in sbrugna...

EUVD-2018-17869

Malware in sbrugna...

EUVD-2009-0439

Malware in sbrugna...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-986400)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986400 advisory. In the Linux kernel, the following vulnerability has been resolved: nvme-rdma: fix possible use-after-free in transport errorrecovery work While...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-407686)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-407686 advisory. In the Linux kernel, the following vulnerability has been resolved: ppp: fix pppasyncencode illegal access syzbot reported an issue in pppasyncencode 1 In this case,...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987363)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987363 advisory. In the Linux kernel, the following vulnerability has been resolved: nvme: fix a possible use-after-free in controller reset during load Unlike .queuerq, in...