EUVD-2025-37313

The OOPSpam Anti-Spam: Spam Protection for WordPress Forms & Comments No CAPTCHA plugin for WordPress is vulnerable to IP Header Spoofing in all versions up to, and including, 1.2.53. This is due to the plugin trusting client-controlled forwarded headers such as CF-Connecting-IP, X-Forwarded-For,...

WordPress plugin OOPSpam Anti-Spam 安全漏洞

WordPress OOPSpam Anti-Spam plugin is an anti-spam plugin designed for WordPress that protects forms and comments from spam through AI and machine learning techniques without the use of CAPTCHA validation. The WordPress OOPSpam Anti-Spam plugin suffers from an IP header forgery vulnerability that...

EulerOS 2.0 SP13 : kernel (EulerOS-SA-2025-2296)

According to the versions of the kernel packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : ipv6: fix panic when forwarding a pkt with no in6 devCVE-2022-49048 netfilter: conntrack: revisit gc autotuningCVE-2022-49110 bpf, sockmap: Fix...

EUVD-2015-4224

Malware in sbrugna...

EUVD-2020-23343

Malware in sbrugna...

EUVD-2007-0965

Malware in sbrugna...

EUVD-2018-11199

Malware in sbrugna...

EUVD-2020-9465

Malware in sbrugna...

EUVD-2020-9391

Malware in sbrugna...

EUVD-2011-1331

Malware in sbrugna...

EUVD-2013-6508

Malware in sbrugna...

EUVD-2007-1957

Malware in sbrugna...

EUVD-2007-1169

Malware in sbrugna...

EUVD-2022-35109

Malicious code in bioql PyPI...

EUVD-2022-0159

Malicious code in bioql PyPI...

EUVD-2024-44444

Malicious code in bioql PyPI...

EUVD-2022-36334

Malicious code in bioql PyPI...

CVE-2025-10042

The Quiz Maker plugin for WordPress is vulnerable to SQL Injection via spoofed IP headers in all versions up to, and including, 6.7.0.56 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for...

Linux Distros Unpatched Vulnerability : CVE-2016-4793

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The clientIp function in CakePHP 3.2.4 and earlier allows remote attackers to spoof their IP via the CLIENT-IP HTTP header. CVE-2016-4793 Note that Nessus relie...

TencentOS Server 3: python39:3.9 (TSSA-2025:0340)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0340 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...