Lucene search
K

4966 matches found

OSSF Malicious Packages
OSSF Malicious Packages
added 2026/01/21 3:56 a.m.8 views

Malicious code in blocks-builder-manifest-generator (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 30f5efa34a1c44d974502110177cb7a60daf579349ed25937e66e342f7f7c24f The package blocks-builder-manifest-generator was found to contain malicious code. Source: ghsa-malware...

5.5AI score
Exploits0References1
EUVD
EUVD
added 2026/01/21 3:56 a.m.5 views

EUVD-2026-3769

Malicious code in blocks-builder-manifest-generator npm...

5.5AI score
Exploits0References1
OSV
OSV
added 2026/01/21 3:56 a.m.7 views

MAL-2026-385 Malicious code in blocks-builder-manifest-generator (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 30f5efa34a1c44d974502110177cb7a60daf579349ed25937e66e342f7f7c24f The package blocks-builder-manifest-generator was found to contain malicious code. Source: ghsa-malware...

5.5AI score
Exploits0References1
OSV
OSV
added 2026/01/20 10:15 p.m.1 views

DEBIAN-CVE-2025-15366

The imaplib module, when passed a user-controlled command, can have additional commands injected using newlines. Mitigation rejects commands containing control characters...

5.9CVSS7.4AI score0.00315EPSS
Exploits0References1
Patchstack
Patchstack
added 2026/01/20 11:44 a.m.4 views

WordPress Frontis Blocks plugin <= 1.1.5 - Server Side Request Forgery (SSRF) vulnerability

Server Side Request Forgery SSRF vulnerability discovered by 0xd4rk5id3 in WordPress Plugin Frontis Blocks versions = 1.1.5...

7.2CVSS5.4AI score0.00248EPSS
Exploits0Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/01/19 3:20 p.m.5 views

CVE-2025-68616

WeasyPrint helps web developers to create PDF documents. Prior to version 68.0, a server-side request forgery SSRF protection bypass exists in WeasyPrint's defaulturlfetcher. The vulnerability allows attackers to access internal network resources such as localhost services or cloud metadata...

7.5CVSS5.4AI score0.00501EPSS
Exploits2References3Affected Software1
Patchstack
Patchstack
added 2026/01/19 8:26 a.m.9 views

WordPress Gutenberg Thim Blocks plugin <= 1.0.1 - Authenticated (Contributor+) Arbitrary File Read via 'iconSVG' Parameter vulnerability

Authenticated Contributor+ Arbitrary File Read via 'iconSVG' Parameter vulnerability discovered by Athiwat Tiprasaharn Jitlada in WordPress Plugin Thim Blocks versions = 1.0.1...

6.5CVSS5.4AI score0.00358EPSS
Exploits0References1Affected Software1
Packet Storm News
Packet Storm News
added 2026/01/19 12:0 a.m.4 views

Static Detection of Core Structures in Tigress Virtualization-Based Obfuscation Using an LLVM Pass

Malware often uses obfuscation to hinder security analysis. Among these techniques, virtualization-based obfuscation is particularly strong because it protects programs by translating original instructions into attacker-defined virtual machine VM bytecode, producing long and complex code that is...

5.7AI score
Exploits0
RedhatCVE
RedhatCVE
added 2026/01/18 4:21 a.m.15 views

CVE-2025-13725

The Gutenberg Thim Blocks – Page Builder, Gutenberg Blocks for the Block Editor plugin for WordPress is vulnerable to arbitrary file reads in all versions up to, and including, 1.0.1. This is due to insufficient path validation in the server-side rendering of the thim-blocks/icon block. This make...

6.5CVSS5.6AI score0.00358EPSS
Exploits0References1
GithubExploit
GithubExploit
added 2026/01/17 7:39 p.m.548 views

Exploit for CVE-2020-14979

Intel NUC WinRing0 Vulnerable Driver - Permanent Removal Guide...

7.8CVSS6.8AI score0.00605EPSS
Exploits1
NVD
NVD
added 2026/01/17 4:16 a.m.9 views

CVE-2025-13725

The Gutenberg Thim Blocks – Page Builder, Gutenberg Blocks for the Block Editor plugin for WordPress is vulnerable to arbitrary file reads in all versions up to, and including, 1.0.1. This is due to insufficient path validation in the server-side rendering of the thim-blocks/icon block. This make...

6.5CVSS0.00358EPSS
Exploits0References7
Cvelist
Cvelist
added 2026/01/17 3:24 a.m.19 views

CVE-2025-13725 Gutenberg Thim Blocks <= 1.0.1 - Authenticated (Contributor+) Arbitrary File Read via 'iconSVG' Parameter

The Gutenberg Thim Blocks – Page Builder, Gutenberg Blocks for the Block Editor plugin for WordPress is vulnerable to arbitrary file reads in all versions up to, and including, 1.0.1. This is due to insufficient path validation in the server-side rendering of the thim-blocks/icon block. This make...

6.5CVSS0.00358EPSS
Exploits0References7
Vulnrichment
Vulnrichment
added 2026/01/17 3:24 a.m.12 views

CVE-2025-13725 Gutenberg Thim Blocks <= 1.0.1 - Authenticated (Contributor+) Arbitrary File Read via 'iconSVG' Parameter

The Gutenberg Thim Blocks – Page Builder, Gutenberg Blocks for the Block Editor plugin for WordPress is vulnerable to arbitrary file reads in all versions up to, and including, 1.0.1. This is due to insufficient path validation in the server-side rendering of the thim-blocks/icon block. This make...

6.5CVSS5.7AI score0.00358EPSS
Exploits0References7
CVE
CVE
added 2026/01/17 3:24 a.m.21 views

CVE-2025-13725

The CVE CVE-2025-13725 concerns the Gutenberg Thim Blocks – Page Builder (thim-blocks) for WordPress, affected through version 1.0.1. The vulnerability arises from insufficient path validation during server-side rendering of the thim-blocks/icon block, allowing an authenticated user with Contribu...

6.5CVSS5.3AI score0.00358EPSS
Exploits0References7
EUVD
EUVD
added 2026/01/17 3:24 a.m.7 views

EUVD-2026-3153

The Gutenberg Thim Blocks – Page Builder, Gutenberg Blocks for the Block Editor plugin for WordPress is vulnerable to arbitrary file reads in all versions up to, and including, 1.0.1. This is due to insufficient path validation in the server-side rendering of the thim-blocks/icon block. This make...

6.5CVSS5.2AI score0.00358EPSS
Exploits0References8
ATTACKERKB
ATTACKERKB
added 2026/01/17 3:24 a.m.4 views

CVE-2025-13725

The Gutenberg Thim Blocks – Page Builder, Gutenberg Blocks for the Block Editor plugin for WordPress is vulnerable to arbitrary file reads in all versions up to, and including, 1.0.1. This is due to insufficient path validation in the server-side rendering of the thim-blocks/icon block. This make...

6.5CVSS5.5AI score0.00358EPSS
Exploits0References8
CNNVD
CNNVD
added 2026/01/17 12:0 a.m.5 views

WordPress plugin Gutenberg Thim Blocks – Page Builder, Gutenberg Blocks for the Block Editor: Path traversal vulnerability

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows users to create personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be installed t...

6.5CVSS5.9AI score0.00358EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2026/01/17 12:0 a.m.5 views

PT-2026-3342

The Gutenberg Thim Blocks – Page Builder, Gutenberg Blocks for the Block Editor plugin for WordPress is vulnerable to arbitrary file reads in all versions up to, and including, 1.0.1. This is due to insufficient path validation in the server-side rendering of the thim-blocks/icon block. This make...

6.5CVSS5.6AI score0.00358EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.1 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001645)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001645 advisory. The ext4validblockbitmap function in fs/ext4/balloc.c in the Linux kernel through 4.15.15 allows attackers to cause a denial of service out-of-bounds read and system...

7.1CVSS6.2AI score0.01999EPSS
Exploits0References17
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.4 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-001502)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001502 advisory. In the Linux kernel before 5.15.3, fs/quota/quotatree.c does not validate the block number in the quota tree on disk. This can, for example, lead to a...

5.5CVSS6.5AI score0.01339EPSS
Exploits1References3
Rows per page
Query Builder