CVE-2025-32661 WordPress Interactive US Map plugin <= 2.7 - CSRF to Stored XSS vulnerability

Cross-Site Request Forgery CSRF vulnerability in WP Map Plugins Interactive US Map interactive-us-map allows Stored XSS.This issue affects Interactive US Map: from n/a through = 2.7...

CVE-2025-32661

CVE-2025-32661 describes a Cross-Site Request Forgery to Stored Cross‑Site Scripting flaw in the WordPress Interactive US Map plugin (Interactive US Map). The vulnerability affects the plugin up to version 2.7 and is linked to a CSRF workflow that enables stored XSS. The CVSS metrics shown indica...

WordPress Interactive US Map plugin <= 2.7 - CSRF to Stored XSS vulnerability

CSRF to Stored XSS vulnerability discovered by Nguyen Xuan Chien in WordPress Plugin Interactive US Map versions = 2.7...

CVE-2024-45543

Memory corruption while accessing MSM channel map and mixer functions...

WordPress plugin WP Map Route Planner 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forger...

WordPress plugin Multiple Location Google Map 跨站请求伪造漏洞

WordPress and the WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site request forgery vulnerability...

WordPress plugin Interactive US Map 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site request forgery vulnerability...

PT-2025-15805 · WordPress · Vsourz Digital Wp Map Route Planner

Name of the Vulnerable Software and Affected Versions: Vsourz Digital WP Map Route Planner versions 1.0.0 and earlier Description: The issue is a Cross-Site Request Forgery CSRF vulnerability, which allows Cross Site Request Forgery. Recommendations: For Vsourz Digital WP Map Route Planner versio...

PT-2025-15803 · Unknown · Ydesignservices Multiple Location Google Map

Name of the Vulnerable Software and Affected Versions: Ydesignservices Multiple Location Google Map versions 1.1 and earlier Description: The issue is a Cross-Site Request Forgery CSRF vulnerability that allows Stored XSS. This means an attacker can trick a user into performing unintended actions...

FASTRPC_ATTR_KEEP_MAP Use-After-Free

A FASTRPCATTRKEEPMAP logic bug allows fastrpcinternalmunmapfd to concurrently free in-use mappings leading to a use-after-free condition...

Hash Collision Attack

io.netty.incubator, netty-incubator-codec-quic is vulnerable to Hash Collision Attack. The vulnerability is due to a hash collision in the hash map used to manage connections, which allows remote attackers to perform a Hash DoS attack by initiating connections with colliding Source Connection IDs...

CVE-2025-21437

Memory corruption while processing memory map or unmap IOCTL operations simultaneously...

CVE-2024-45543

Memory corruption while accessing MSM channel map and mixer functions...

CVE-2024-45543 Out-of-bounds Write in Audio

Memory corruption while accessing MSM channel map and mixer functions...

CVE-2024-45543 Out-of-bounds Write in Audio

Memory corruption while accessing MSM channel map and mixer functions...

PT-2025-15192 · Qualcomm · Snapdragon

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: The issue involves memory corruption that occurs when invoking an IOCTL map buffer request from userspace. This can potentially lead to unintended system behavior. Recommendations: At the...

Race Condition

Overview Affected versions of this package are vulnerable to Race Condition due to concurrent writes to a map by logger.go. An attacker can induce a read-write conflict and cause repeated restarts and then a panic by writing to multiple logs simultaneously. Remediation There is no fixed version f...

CVE-2025-31890

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Mashi Simple Map No Api simple-map-no-api allows Stored XSS.This issue affects Simple Map No Api: from n/a through = 1.9...

Vulnerability of the btrfs_scan_root() function (fs/btrfs/extent_map.c) in the Linux operating system, which allows a hacker to increase their privileges

The vulnerability of the btrfsscanroot function fs/btrfs/extentmap.c in the Linux operating system is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to increase their privileges...

smallrye-fault-tolerance: SmallRye Fault Tolerance

A flaw was found in Smallrye, where smallrye-fault-tolerance is vulnerable to an out-of-memory OOM issue. This vulnerability is externally triggered when calling the metrics URI. Every call creates a new object within meterMap and may lead to a denial of service DoS issue...