23 matches found
CVE-2026-57336
CVE-2026-57336 affects the WordPress Jobify theme up to version 4.3.2 and is an unauthenticated Cross-Site Scripting (XSS) vulnerability. The CVSS 3.1 vector (AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L) indicates network access with low attack complexity, no privileges required, user interaction needed,...
CVE-2026-57336 WordPress Jobify theme <= 4.3.2 - Cross Site Scripting (XSS) vulnerability
Unauthenticated Cross Site Scripting XSS in Jobify = 4.3.2 versions...
CVE-2026-57336
Unauthenticated Cross Site Scripting XSS in Jobify = 4.3.2 versions...
CVE-2026-44343
WGDashboard is a dashboard for WireGuard VPN. Prior to 4.3.2, there are critical vulnerabilities affecting WGDashboard that, if exploited, could allow unauthorized parties to access the host file system without authentication. This vulnerability is fixed in 4.3.2...
MINI-7MJV-4327-52HM
Bulletin has no description...
N2W 安全漏洞
N2W is a data backup and recovery software developed by N2W Corporation. Versions of N2W prior to 4.3.2 and 4.4.1 contained security vulnerabilities. These vulnerabilities were due to deceptive vulnerabilities, which could lead to remote code execution and theft of account credentials...
CVE-2026-32447 WordPress Atarim plugin <= 4.3.2 - Broken Access Control vulnerability
Missing Authorization vulnerability in Vito Peleg Atarim atarim-visual-collaboration allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Atarim: from n/a through = 4.3.2...
CVE-2026-28126
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Sizam RH Frontend Publishing Pro allows Reflected XSS.This issue affects RH Frontend Publishing Pro: from n/a before 4.3.4...
CVE-2026-24570 WordPress Edwiser Bridge plugin <= 4.3.2 - Broken Access Control vulnerability
Missing Authorization vulnerability in WisdmLabs Edwiser Bridge edwiser-bridge allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Edwiser Bridge: from n/a through = 4.3.2...
CVE-2025-66125
Insertion of Sensitive Information Into Sent Data vulnerability in Nitesh Ultimate Auction ultimate-auction allows Retrieve Embedded Sensitive Data.This issue affects Ultimate Auction : from n/a through = 4.3.3...
CVE-2025-68084 WordPress Ultimate Auction plugin <= 4.3.3 - Broken Access Control vulnerability
Missing Authorization vulnerability in Nitesh Ultimate Auction ultimate-auction allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Ultimate Auction : from n/a through = 4.3.3...
CVE-2025-66125 WordPress Ultimate Auction plugin <= 4.3.3 - Sensitive Data Exposure vulnerability
Insertion of Sensitive Information Into Sent Data vulnerability in Nitesh Ultimate Auction ultimate-auction allows Retrieve Embedded Sensitive Data.This issue affects Ultimate Auction : from n/a through = 4.3.3...
WordPress Spam protection, Anti-Spam, FireWall by CleanTalk plugin <= 6.43.2 - Authorization Bypass via Reverse DNS Spoofing vulnerability
Authorization Bypass via Reverse DNS Spoofing vulnerability discovered by mikemyers in WordPress Plugin Spam protection, AntiSpam, FireWall by CleanTalk versions = 6.43.2...
AZL-43018 CVE-2024-29038 affecting package tpm2-tools for versions less than 4.3.2-2
tpm2-tools is the source repository for the Trusted Platform Module TPM2.0 tools. A malicious attacker can generate arbitrary quote data which is not detected by tpm2 checkquote. This issue was patched in version 5.7...
iRODS Security Vulnerabilities
iRODS is an open source data management software from iRODS Open Source. A security vulnerability exists in iRODS versions prior to 4.3.2, which stems from the fact that irodsServerMonPerf attempts to use a path that is not a directory...
iRODS Security Vulnerabilities
iRODS is an open source data management software from iRODS Open Source. A security vulnerability exists in iRODS versions prior to 4.3.2, which stems from a questionable dependency of the msiSendMail function on the mail binary...
CVE-2023-4326
creationtimestamp| type| source ---|---|--- 2023-08-15 22:31:05+00:00| seen| https://t.me/cibsecurity/68585 2023-10-16 14:42:04+00:00| exploited| https://t.me/informationsecuritychannel/50842...
UBUNTU-CVE-2020-18976
Buffer Overflow in Tcpreplay v4.3.2 allows attackers to cause a Denial of Service via the 'dochecksum' function in 'checksum.c'. It can be triggered by sending a crafted pcap file to the 'tcpreplay-edit' binary. This issue is different than CVE-2019-8381...
DEBIAN-CVE-2020-5247
In Puma RubyGem before 4.3.2 and before 3.12.3, if an application using Puma allows untrusted input in a response header, an attacker can use newline characters i.e. CR, LF or/r, /n to end the header and inject malicious content, such as additional headers or an entirely new response body. This...
CVE-2019-19793
In Cyxtera AppGate SDP Client 4.1.x through 4.3.x before 4.3.2 on Windows, a local or remote user from the same domain can gain privileges...