CVE-2025-48312

CVE-2025-48312 affects the WordPress WPAvatar plugin (versions up to 1.9.3). The issue is an Improper Neutralization of Input During Web Page Generation leading to Stored XSS. Vulnerability details from connected docs show the risk is tied to input handling in WPAvatar, with CVSSv3.1 base score 6...

PT-2025-35001

Name of the Vulnerable Software and Affected Versions: WPAvatar versions through 1.9.3 Description: The software contains an Improper Neutralization of Input During Web Page Generation issue, which allows for Stored Cross-Site Scripting XSS. Recommendations: Update WPAvatar to a version later tha...

CISA: Mitigating Attacks on Houses of Worship Security Guide - Simplified Chinese Translation

System About Files News Vote Help | Services API Advertise Contact | Account Join Login ---|---|---...

openSUSE Security Update : lynis (openSUSE-2017-705)

This update for lynis fixes the following issues : Lynis 2.5.1 : - Improved detection of SSL certificate files - Minor changes to improve logging and results - Firewall tests: Determine if CSF is in testing mode The Update also includes changes from Lynis 2.5.0 : - CVE-2017-8108: symlink attack m...

Researcher Warns Of Exploitable Hole In Chinese Translation Software NJStar

UPDATE: An independent security researcher has warned officials in Australia, the US and China about a serious, remotely exploitable hole in language translation software that is used by leading corporations, universities and governments. Dillon Beresford said a stack overflow vulnerability in a...