CVE-2025-13498 Download Manager <= 3.3.32 - Missing Authorization to Authenticated (Subscriber+) Media Attachment Password Disclosure

The Download Manager plugin for WordPress is vulnerable to unauthorized access of sensitive information in all versions up to, and including, 3.3.32. This is due to missing authorization and capability checks on the wpdmmediaaccess AJAX action. This makes it possible for authenticated attackers,...

CVE-2024-46941

SystemUI has an incorrect component protection setting, which allows access to specific information...

CVE-2024-46941 SystemUI component protection settings vulnerability

SystemUI has an incorrect component protection setting, which allows access to specific information...

Vivo System UI 安全漏洞

Vivo System UI is a cell phone system from the Chinese company Vivo. A security vulnerability exists in Vivo System UI, which stems from improperly set component protection settings that could lead to information disclosure...

PT-2024-39310 · Acronis · Acronis Cyber Protect Cloud Agent

Name of the Vulnerable Software and Affected Versions: Acronis Cyber Protect Cloud Agent versions prior to build 38565 Description: The issue is related to local active protection service settings manipulation due to unnecessary privileges assignment, which could lead to potential system...

Acronis Cyber Protect Cloud Agent 安全漏洞

Acronis Cyber Protect Cloud Agent is a cloud agent from Acronis Switzerland. A security vulnerability exists in Acronis Cyber Protect Cloud Agent versions prior to 38565, which stems from an unnecessary privilege assignment that results in the manipulation of local active protection service...

PT-2024-7912 · Sprecher Automation · Sprecon-E

Name of the Vulnerable Software and Affected Versions: Sprecher Automation SPRECON-E versions prior to 8.71j Description: The issue is related to improper privilege management, allowing a remote attacker with low privileges to save unauthorized protection assignments. This can be achieved through...

Introducing Malwarebytes Mobile Security for Business: How to find malware and stop phishing attacks on smartphones and ChromeOS

Malwarebytes is excited to announce Malwarebytes Mobile Security for Business, which extends our award-winning endpoint protection to mobile devices. Dont get it twisted: mobile devices may be small, but they have huge implications for your security posture. In fact, 73% of organizations...

Google Android Local Elevation of Privilege Vulnerability (CNVD-2016-07413)

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA. A local elevation of privilege vulnerability exists in System UI Tuner in Android version 7.0. A local attacker can exploit this vulnerability to modify the protection settings of...

Office 2013 1069

Office 2013 1069...