Malicious code in kibana-release-notes (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=-...

MAL-2025-669 Malicious code in kibana-release-notes (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=-...

Granola Notes Detection

Binary data 701500.prm...

Fedora: Security Advisory (FEDORA-2025-b28759cb95)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

WordPress WooCommerce PDF Invoices plugin <= 4.7.1 - Stored Cross Site Scripting (XSS) vulnerability

Stored Cross Site Scripting XSS vulnerability discovered by savphill in WordPress Plugin WooCommerce PDF Invoices, Packing Slips, Delivery Notes and Shipping Labels versions = 4.7.1...

PT-2025-4769 · Undefined · Undefined

🔗 Learn more about VeraCrypt 1.26.18: 📄 Release notes: https://t.co/qmv5Rfuwsq ⬇️ Downloads: https://t.co/9eL9CyrREh 🙏 CVE-2024-54187: Collaboration between @ tfr & @idrassi 🙏 CVE-2025-23021: Reported by @ tfr 🛠️ Fixes implemented by @idrassi More details soon...

Moderate: Red Hat Security Advisory: JBoss EAP XP 5.0 Update 1.0 release. See references for release notes.

JBoss EAP XP 5.0 Update 1.0 release. See references for release notes. JBoss EAP XP 5.0 Update 1.0 GA release. See references for release notes. Security Fixes: io.vertx/vertx-grpc: Vertx gRPC server does not limit the maximum message size CVE-2024-8391 For more details about the security issues,...

CVE-2025-23715

Cross-Site Request Forgery CSRF vulnerability in RaymondDesign Post & Page Notes post-page-notes allows Stored XSS.This issue affects Post & Page Notes: from n/a through = 0.1.1...

CVE-2025-23715

Cross-Site Request Forgery CSRF vulnerability in RaymondDesign Post & Page Notes post-page-notes allows Stored XSS.This issue affects Post & Page Notes: from n/a through = 0.1.1...

CVE-2025-23715 WordPress Post & Page Notes plugin <= 0.1.1 - CSRF to Stored XSS vulnerability

Cross-Site Request Forgery CSRF vulnerability in RaymondDesign Post & Page Notes post-page-notes allows Stored XSS.This issue affects Post & Page Notes: from n/a through = 0.1.1...

CVE-2025-23715 WordPress Post & Page Notes plugin <= 0.1.1 - CSRF to Stored XSS vulnerability

Cross-Site Request Forgery CSRF vulnerability in RaymondDesign Post & Page Notes post-page-notes allows Stored XSS.This issue affects Post & Page Notes: from n/a through = 0.1.1...

CVE-2025-23715

CVE-2025-23715 is a CSRF-based vulnerability affecting RaymondDesign Post & Page Notes. The connected Red Hat entry confirms the issue and states that the CSRF allows Stored XSS in Post & Page Notes, affecting versions up to 0.1.1 (and n/a to 0.1.1 as described). Public references point to the Po...

WordPress Post & Page Notes plugin <= 0.1.1 - CSRF to Stored XSS vulnerability

CSRF to Stored XSS vulnerability discovered by SOPROBRO in WordPress Plugin Post & Page Notes versions = 0.1.1...

PT-2025-5046 · Unknown · Raymonddesign Post & Page Notes

Name of the Vulnerable Software and Affected Versions: RaymondDesign Post & Page Notes versions 0.1.1 and earlier Description: The issue is a Cross-Site Request Forgery CSRF vulnerability that allows Stored XSS. This means an attacker can trick a user into performing unintended actions on a web...

WordPress plugin Post & Page Notes 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation, a blogging platform developed in PHP. WordPress plugin is an application plugin that supports personal blog sites on PHP and MySQL servers. A cross-site request forgery vulnerability exists in WordPress plugin Post & Pa...

PT-2025-5624 · Undefined · Undefined

@BleepinComputer @LawrenceAbrams Please note there is a typo on the related Visual Studio 17.12.4 release notes: https://t.co/Wd5b44oh6y "Carriage-return character in remote URL allows malicious repository to leak credentials CVE-2025-50338" should be "CVE-2024-50338" https://t.co/OXgtTiyqyK...

Moderate: Red Hat Security Advisory: OpenShift Container Platform 4.14.44 bug fix and security update

Red Hat OpenShift Container Platform release 4.14.44 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.14. Red Hat Product Security has rated this update as having a...

[slackware-security] mozilla-thunderbird

New mozilla-thunderbird packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/mozilla-thunderbird-128.6.0esr-i686-1slack15.0.txz: Upgraded. This release contains security fixes and improvements. For...

WordPress plugin Print Invoice & Delivery Notes for WooCommerce 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in the...

PT-2024-17487 · WordPress · Print Invoice & Delivery Notes For Woocommerce

Name of the Vulnerable Software and Affected Versions: Print Invoice & Delivery Notes for WooCommerce plugin for WordPress versions up to, and including, 5.4.0 Description: The issue is due to a missing capability check on the wcdn remove shoplogo AJAX action. This makes it possible for...