10 matches found
CVE-2026-27346
The CVE concerns WordPress plugin B2BKing (pre-5.2.10). A Missing Authorization/Broken Access Control vulnerability arises from incorrectly configured access control/security levels, allowing improper access within the B2BKing plugin. Affected versions are before 5.2.10. The CVSS metrics indicate...
cg-django-uaa (=2.1.9), deeplabelnet (>=0.1.0 <=0.1.20) +22 more potentially affected by CVE-2025-14550 via django (>=5.2.0 <=5.2.10)
django PYPI version =5.2.0, =0.1.0, =0.1.0, =1.3.0, =1.92.0.5, =4.2.0, =0.0.7, =3.0.0, =0.1.0, =5.2.0, =5.2.1 - djbackup =2.1.0 and more Source cves: CVE-2025-14550 Source advisory: SNYK:PYTHON-DJANGO-15198929...
cg-django-uaa (=2.1.9), deeplabelnet (>=0.1.0 <=0.1.20) +22 more potentially affected by CVE-2026-1287 via django (>=5.2.0 <=5.2.10)
django PYPI version =5.2.0, =0.1.0, =0.1.0, =1.3.0, =1.92.0.5, =4.2.0, =0.0.7, =3.0.0, =0.1.0, =5.2.0, =5.2.1 - djbackup =2.1.0 and more Source cves: CVE-2026-1287 Source advisory: OSV:PYSEC-2026-46...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003949)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003949 advisory. In the Linux kernel before 5.2.10, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/usb/class/cdc-acm.c driver, aka...
SUSE CVE-2018-2842
Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization subcomponent: Core. Supported versions that are affected are Prior to 5.1.36 and Prior to 5.2.10. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBo...
MingSoft MCMS 代码问题漏洞
MingSoft MCMS is a complete open-source J2ee system from China's MingSoft. A security vulnerability exists in MCMS v5.2.10, which stems from the ms/template/writeFileContent.do component that allows an attacker to achieve arbitrary file uploads...
CVE-2022-4375
A vulnerability was found in Mingsoft MCMS up to 5.2.9. It has been classified as critical. Affected is an unknown function of the file /cms/category/list. The manipulation of the argument sqlWhere leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclose...
UBUNTU-CVE-2019-19527
In the Linux kernel before 5.2.10, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/hid/usbhid/hiddev.c driver, aka CID-9c09b214f30e...
PT-2019-4477 · Linux +4 · Linux Kernel +4
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 5.2.10 Description: The issue is related to a use-after-free bug in the Linux kernel, specifically in the drivers/hid/usbhid/hiddev.c driver. This bug can be triggered by a malicious USB device, potentially...
CVE-2018-2860
Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization subcomponent: Core. Supported versions that are affected are Prior to 5.1.36 and Prior to 5.2.10. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualB...