CVE-2023-4304

Business Logic Errors in GitHub repository froxlor/froxlor prior to 2.0.22,2.1.0...

PT-2025-38262

Name of the Vulnerable Software and Affected Versions Dragonfly versions prior to 2.1.0 Description Dragonfly is a P2P-based file distribution and image acceleration system. Prior to version 2.1.0, the first return value of a function is dereferenced even when the function returns an error,...

Linux Distros Unpatched Vulnerability : CVE-2023-0760

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Heap-based Buffer Overflow in GitHub repository gpac/gpac prior to V2.1.0-DEV. CVE-2023-0760 Note that Nessus relies on the presence of the package as reported ...

CVE-2024-25177 affecting package luajit for versions less than 2.1.0-28

CVE-2024-25177 affecting package luajit for versions less than 2.1.0-28. A patched version of the package is available...

Linux Distros Unpatched Vulnerability : CVE-2022-1222

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Inf loop in GitHub repository gpac/gpac prior to 2.1.0-DEV. CVE-2022-1222 Note that Nessus relies on the presence of the package as reported by the vendor...

AZL-65373 CVE-2024-25178 affecting package luajit for versions less than 2.1.0-27

LuaJIT through 2.1 and OpenRusty luajit2 before v2.1-20240314 have an out-of-bounds read in the stack-overflow handler in ljstate.c...

CVE-2023-0760

Heap-based Buffer Overflow in GitHub repository gpac/gpac prior to V2.1.0-DEV...

CVE-2024-10009

The Melapress File Monitor WordPress plugin before 2.1.0 does not sanitize and escape a parameter before using it in a SQL statement, allowing admins to perform SQL injection attacks...

WordPress plugin Melapress File Monitor 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plug-in. A security vulnerability...

CVE-2025-31697

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Drupal Formatter Suite allows Cross-Site Scripting XSS.This issue affects Formatter Suite: from 0.0.0 before 2.1.0...

CVE-2025-31691

Missing Authorization vulnerability in Drupal OAuth2 Server allows Forceful Browsing.This issue affects OAuth2 Server: from 0.0.0 before 2.1.0...

Drupal Formatter Suite 跨站脚本漏洞

The Drupal Formatter Suite is a collection of modules from the Drupal community designed to provide a flexible set of formatting tools for Drupal. A cross-site scripting vulnerability exists in Drupal Formatter Suite versions prior to 2.1.0 that stems from improper input neutralization and could...

PT-2025-4687 · Unknown · Qwerty23 Rocket Media Library Mime Type

Name of the Vulnerable Software and Affected Versions: Qwerty23 Rocket Media Library Mime Type versions prior to 2.1.0 Description: The issue is related to a Cross-Site Request Forgery CSRF vulnerability that allows Stored XSS. This means an attacker can trick a user into performing unintended...

CVE-2024-13248

Incorrect Privilege Assignment vulnerability in Drupal Private content allows Target Influence via Framing.This issue affects Private content: from 0.0.0 before 2.1.0...

PT-2024-40343 · Surrealdb · Surrealdb

Name of the Vulnerable Software and Affected Versions: SurrealDB versions prior to 2.1.0 Description: The issue arises from the conversion of Ident values to the Role enum, which expects only specific values owner, editor, and viewer. If a nonexistent role is used, it would result in a panic,...

PT-2024-33270 · Putongoj · Putongoj

Name of the Vulnerable Software and Affected Versions: PutongOJ versions prior to 2.1.0-beta.1 Description: PutongOJ is online judging software. Unprivileged users can escalate privileges by constructing requests, leading to unauthorized access and enabling users to perform admin-level operations...

Putong Online Judge 访问控制错误漏洞

Putong Online Judge is an open source online judging software from acm309. An access control error vulnerability exists in versions prior to Putong Online Judge 2.1.0-beta.1. The vulnerability arises from the ability of an unprivileged user to elevate privileges via a build request, enabling the...

PT-2024-38529 · Ays · Ayswp Chatbot

Name of the Vulnerable Software and Affected Versions: The AI ChatBot with ChatGPT and Content Generator by AYS WordPress plugin versions prior to 2.1.0 Description: The issue allows unauthenticated users to obtain the Open AI API Key. This is due to the disclosure of the Open AI API Key in the...

CVE-2023-44312

Exposure of Sensitive Information to an Unauthorized Actor in Apache ServiceComb Service-Center.This issue affects Apache ServiceComb Service-Center before 2.1.0 include. Users are recommended to upgrade to version 2.2.0, which fixes the issue...

Froxlor 授权问题漏洞

Froxlor is a lightweight server management software from the Froxlor team. An authorization issue vulnerability exists in versions of Froxlor prior to 2.1.0 that stems from session fixing...