EUVD-2026-37726

Dell PowerFlex Manager, versions Version prior to 4.8, contains an Inclusion of Functionality from Untrusted Control Sphere vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to Information disclosure...

CVE-2026-42758

Incorrect Privilege Assignment vulnerability in Saleswonder Team: Tobias WebinarIgnition webinar-ignition allows Privilege Escalation.This issue affects WebinarIgnition: from n/a through 4.08.253...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002299)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002299 advisory. Race condition in the L2TPv3 IP Encapsulation feature in the Linux kernel before 4.8.14 allows local users to gain privileges or cause a denial of service...

PT-2025-44582

Name of the Vulnerable Software and Affected Versions Noo JobMonster theme for WordPress versions prior to 4.8.1 Description The Noo JobMonster theme for WordPress is susceptible to Authentication Bypass due to a flaw in the check login function. This function does not properly verify a user's...

CVE-2025-5808 Authentication Bypass vulnerability discovered in the OpenText™ Self-Service Password Reset

Improper Input Validation vulnerability in OpenText Self Service Password Reset allows Authentication Bypass.This issue affects Self Service Password Reset from before 4.8 patch 3...

baserCMS Cross-Site Scripting Vulnerability

baserCMS is an enterprise-level content management system CMS from the baserCMS team. A security vulnerability exists in baserCMS versions prior to 4.8.0, which stems from a cross-site scripting XSS vulnerability in the Favorites feature...

SUSE CVE-2020-10233

In version 4.8.0 and earlier of The Sleuth Kit TSK, there is a heap-based buffer over-read in ntfsdinodelookup in fs/ntfs.c...

Contiki-NG 缓冲区错误漏洞

Contiki-NG is an open source cross-platform operating system for next-generation IoT Internet of Things devices. A buffer error vulnerability exists in Contiki-NG versions prior to 4.8, which stems from a lack of length checking in the input function...

Atlassian Fisheye和Crucible 安全漏洞

Atlassian Fisheye is a suite of source code deep viewing software.Atlassian Crucible is a suite of code review tools. A security vulnerability exists in Atlassian Fishey and Crucible versions prior to 4.8.9, which can be exploited by an attacker to inject arbitrary HTML and/or JavaScript...

PT-2021-21140 · Silverstripe · Silverstripe/Framework

Name of the Vulnerable Software and Affected Versions: SilverStripe Framework versions prior to 4.8.2 Description: The issue allows for XSS. Recommendations: For versions prior to 4.8.2, update to version 4.8.2 or later to resolve the issue...

Wolfssl 安全漏洞

Wolfssl CyaSSL is a small, portable embedded SSL programming library for embedded systems developers from Wolfssl, Inc. in the United States. A security vulnerability exists in wolfSSL version 4.6.x and versions 4.7.x prior to 4.8.0. No information about this vulnerability is available at this...

CVE-2019-3663

Unprotected Storage of Credentials vulnerability in McAfee Advanced Threat Defense ATD prior to 4.8 allows local attacker to gain access to the root password via accessing sensitive files on the system. This was originally published with a CVSS rating of High, further investigation has resulted i...

Linux kernel vhost 'vhost/vhost.c:vhost_new_msg()' function denial of service vulnerability

The Linux kernel is the kernel used by Linux, the open source operating system released by the Linux Foundation in the United States. vhost is one of the drivers that provides kernel virtio device emulation. A security vulnerability exists in the 'vhost/vhost.c:vhostnewmsg' function of vhost in...

PT-2019-7701 · Linux +3 · Linux Kernel +3

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 4.8 Description: A use-after-free issue is caused by the functions gfs2 clear rgrpd and read rindex entry in the Linux kernel. This issue affects the file system, specifically in the fs/gfs2/rgrp.c component...