CVE-2025-53444

Cross-Site Request Forgery CSRF vulnerability in DeluxeThemes Userpro userpro allows Cross Site Request Forgery.This issue affects Userpro: from n/a through 5.1.11...

PT-2026-33076

Name of the Vulnerable Software and Affected Versions Userpro versions prior to 5.1.11 Description A Cross-Site Request Forgery CSRF flaw in DeluxeThemes Userpro allows an attacker to induce a user to perform actions they did not intend to. CSRF is a technique where a malicious site tricks a user...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-414613)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-414613 advisory. An issue was discovered in the Linux kernel before 5.11.3 when a webcam device exists. videousercopy in drivers/media/v4l2-core/v4l2-ioctl.c has a memory leak for...

CVE-2025-36728

Cross-Site Request Forgery CSRF vulnerability in Simplehelp.This issue affects Simplehelp: before 5.5.11...

Weblate 安全漏洞

Weblate is a Copyleft open source web-based continuous localization system for free software. A security vulnerability exists in Weblate versions prior to 5.11, which stems from the possibility that credentials in the code repository URL may be disclosed in plaintext...

CVE-2021-20865

Advanced Custom Fields versions prior to 5.11 and Advanced Custom Fields Pro versions prior to 5.11 contain a missing authorization vulnerability in browsing database which may allow a user to browse unauthorized data via unspecified vectors...

Linux kernel 安全漏洞

The Linux kernel is a computer operating system kernel written in C and assembly language, compliant with the POSIX standard, and distributed under the GNU General Public License. A data size validation error vulnerability exists in tipcnlretrievekey in net/tipc/node.c in Linux kernel versions...

PT-2021-2271 · Linux +8 · Linux Kernel +8

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 5.11.3 Description: An issue in the Linux kernel allows a kernel pointer leak, which can be used to determine the address of the iscsi transport structure. When an iSCSI transport is registered with the iSCSI...

PT-2021-11776 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 5.11 Description: A NULL pointer dereference flaw may occur in the sco sock getsockopt function in net/bluetooth/sco.c due to the lack of a sanity check for a socket connection when using BT SNDMTU/BT RCVMTU for...

Apple Macos Server 跨站脚本漏洞

Apple Macos Server is a server-side version of the operating system from the American company Apple. An input validation error vulnerability exists in versions of macOS Server prior to 5.11, which stems from the handling of maliciously crafted URLs that could lead to open redirects or cross-site...

Telegram Information Disclosure Vulnerability (CNVD-2019-32023)

Telegram is an instant messaging mobile application. An information disclosure vulnerability exists in versions of Telegram prior to 5.11 based on the Android platform. The vulnerability stems from an error in configuration or other errors in the operation of a networked system or product. An...