14 matches found
WordPress CozyStay theme < 1.9.1 - Local File Inclusion vulnerability
Local File Inclusion vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Theme CozyStay versions 1.9.1...
CVE-2025-67859 Polkit Authorization Check can be Bypassed in the TLP power daemon
A Improper Authentication vulnerability in TLP allows local users to arbitrarily control the power profile in use as well as the daemon’s log settings.This issue affects TLP: from 1.9 before 1.9.1...
AZL-71566 CVE-2025-65637 affecting package containerized-data-importer for versions less than 1.55.0-27
A denial-of-service vulnerability exists in github.com/sirupsen/logrus when using Entry.Writer to log a single-line payload larger than 64KB without newline characters. Due to limitations in the internal bufio.Scanner, the read fails with "token too long" and the writer pipe is closed, leaving...
CVE-2025-8282
The SureForms WordPress plugin before 1.9.1 does not sanitise and escape some parameters when outputing them in the page, which could allow admin and above users to perform Cross-Site Scripting attacks...
PT-2025-39146
Name of the Vulnerable Software and Affected Versions SureForms WordPress plugin versions prior to 1.9.1 Description The SureForms WordPress plugin does not properly sanitize and escape parameters when displaying them on a page. This could allow administrators and users with higher privileges to...
UBUNTU-CVE-2024-39844
In ZNC before 1.9.1, remote code execution can occur in modtcl via a KICK...
ZNC Security Vulnerabilities
ZNC is ZNC's open source set of IRC proxies that allow users to log in to IRC servers from their workstations. A security vulnerability exists in ZNC versions prior to 1.9.1, which stems from a remote code execution that can be performed in modtcl via KICK...
phlex Cross-Site Scripting Vulnerability
phlex is a framework for building object-oriented views in Ruby. A cross-site scripting vulnerability exists in versions prior to phlex 1.9.1, which stems from code that is not properly case-sensitive, resulting in cross-site scripting...
PT-2023-8557 · WordPress · Extensive Vc Addons
Name of the Vulnerable Software and Affected Versions: Extensive VC Addons for WPBakery page builder WordPress plugin versions prior to 1.9.1 Description: The issue is related to incorrect validation of a parameter passed to the php extract function when loading templates. This allows an...
CVE-2022-24294
A regular expression used in Apache MXNet incubating is vulnerable to a potential denial-of-service by excessive resource consumption. The bug could be exploited when loading a model in Apache MXNet that has a specially crafted operator name that would cause the regular expression evaluation to u...
Apache MXNet 安全漏洞
Apache MXNet is an open source deep learning software framework from the Apache Apache Foundation in the United States. It is used for training and deploying deep neural networks. A security vulnerability exists in Apache MXNet incubating versions prior to 1.9.1, which stems from the use of regul...
HAProxy Denial of Service Vulnerability (CNVD-2019-02518)
HAProxy is an open source TCP/HTTP load balancing server from the French company HAProxy. The server provides 4-layer , 7-layer proxy , and can support tens of thousands of level of connections , with high efficiency , stability and other characteristics . A denial of service vulnerability exists...
DEBIAN-CVE-2017-6304
An issue was discovered in ytnef before 1.9.1. This is related to a patch described as "7 of 9. Out of Bounds read."...
DEBIAN-CVE-2013-4155
OpenStack Swift before 1.9.1 in Folsom, Grizzly, and Havana allows authenticated users to cause a denial of service "superfluous" tombstone consumption and Swift cluster slowdown via a DELETE request with a timestamp that is older than expected...