33 matches found
CVE-2026-10083
The APCu Manager WordPress plugin before 4.5.0 does not escape APCu object-cache keys before rendering them in an admin-area page, leading to a Stored Cross-Site Scripting vulnerability. When a persistent object cache is enabled, cache keys derived from unsanitised user input e.g. a transient nam...
CVE-2026-10083 APCu Manager < 4.5.0 - Unauthenticated Stored XSS via Cache Key Pollution
The APCu Manager WordPress plugin before 4.5.0 does not escape APCu object-cache keys before rendering them in an admin-area page, leading to a Stored Cross-Site Scripting vulnerability. When a persistent object cache is enabled, cache keys derived from unsanitised user input e.g. a transient nam...
EUVD-2026-40039
The APCu Manager WordPress plugin before 4.5.0 does not escape APCu object-cache keys before rendering them in an admin-area page, leading to a Stored Cross-Site Scripting vulnerability. When a persistent object cache is enabled, cache keys derived from unsanitised user input e.g. a transient nam...
CVE-2026-54834
Unauthenticated Sensitive Data Exposure in Object Cache 4 everyone = 2.3.2 versions...
EUVD-2026-39678
Unauthenticated Sensitive Data Exposure in Object Cache 4 everyone = 2.3.2 versions...
CVE-2026-54834
CVE-2026-54834 affects the WordPress Object Cache 4 everyone plugin (≤ 2.3.2). Unauthenticated sensitive data exposure is described; no exploitation details or root-cause are provided in the connected documents. CVSSv3.1 base score 7.5 (HIGH) with network attack vector and no user interaction. No...
WordPress Object Cache 4 everyone plugin <= 2.3.2 - Sensitive Data Exposure vulnerability
Sensitive Data Exposure vulnerability discovered by dodoh4t in WordPress Plugin Object Cache 4 everyone versions = 2.3.2...
kernel: mm: kmem: fix a NULL pointer dereference in obj_stock_flush_required()
A null pointer dereference exists in the linux kernel such that in objstockflushrequired:stock-cachedobjcg can be reset between the check and dereference, resulting in damage to the availability of the system...
CVE-2025-13441
The Hide Category by User Role for WooCommerce plugin for WordPress is vulnerable to Missing Authorization in all versions up to, and including, 2.3.1. This is due to a missing capability check on the admininit hook that executes wpcacheflush. This makes it possible for unauthenticated attackers ...
CVE-2025-13441
CVE-2025-13441 refers to the WordPress plugin Hide Category by User Role for WooCommerce (WordPress plugin); affected versions include all up to 2.3.1. The vulnerability is described as Missing Authorization on the admin_init hook that executes wp_cache_flush(), allowing unauthenticated users to ...
kernel: mm: kmem: fix a NULL pointer dereference in obj_stock_flush_required()
A null pointer dereference exists in the linux kernel such that in objstockflushrequired:stock-cachedobjcg can be reset between the check and dereference, resulting in damage to the availability of the system...
EUVD-1999-1254
Malware in sbrugna...
EUVD-2020-3414
Malware in sbrugna...
HDF5 H5Ocache.c H5O__cache_chk_serialize null pointer dereference
...
Malicious code in object-cache-dog-test-byte (npm)
The package object-cache-dog-test-byte was found to contain malicious code...
MAL-2025-28042 Malicious code in object-cache-dog-test-byte (npm)
The package object-cache-dog-test-byte was found to contain malicious code...
Mageia: Security Advisory (MGASA-2021-0207)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
The vulnerability of the stats() method (class-wp-object-cache.php) in the WordPress content management system allows a hacker to compromise data integrity.
The vulnerability of the stats method in the WordPress content management system’s class-wp-object-cache.php file is related to deficiencies in the security measures used to protect web page structures. Exploiting this vulnerability could allow an attacker to compromise data integrity...
Fedora 31 : wordpress (2020-7701f49327)
WordPress 5.4.1 Security Updates Seven security issues affect WordPress versions 5.4 and earlier. If you havent yet updated to 5.4, all WordPress versions since 3.7 have also been updated to fix the following security issues : - Props to Muaz Bin Abdus Sattar and Jannes who both independently...
Fedora 30 : wordpress (2020-fa71ca92f8)
WordPress 5.4.1 Security Updates Seven security issues affect WordPress versions 5.4 and earlier. If you havent yet updated to 5.4, all WordPress versions since 3.7 have also been updated to fix the following security issues : - Props to Muaz Bin Abdus Sattar and Jannes who both independently...