UBUNTU-CVE-2026-46196

In the Linux kernel, the following vulnerability has been resolved: tracepoint: balance regfunc on funcadd failure in tracepointaddfunc When a tracepoint goes through the 0 - 1 transition, tracepointaddfunc invokes the subsystem's ext-regfunc before attempting to install the new probe via funcadd...

CVE-2026-31739

CVE-2026-31739 affects the Linux kernel tegra crypto driver. The driver failed to set CRYPTO_ALG_ASYNC on asynchronous algorithms, causing the crypto API to select async paths for users requesting synchronous operations, potentially causing crashes. Mitigation implemented in the patch: explicitly...

PT-2026-36374

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The tegra crypto driver fails to set the CRYPTO ALG ASYNC flag on its asynchronous algorithms. This causes the crypto API to incorrectly select these algorithms for users requesting only...

Flexense SysGauge Pro 安全漏洞

Flexense SysGauge Pro is a system analysis tool developed by Flexense Corporation, designed for real-time monitoring of system performance and resource usage. Version 4.6.12 of Flexense SysGauge Pro contains a security vulnerability. This vulnerability stems from a local buffer overflow in the...

EUVD-2025-24218

Malicious code in bioql PyPI...

EUVD-2024-17322

Malicious code in bioql PyPI...

EUVD-2022-29133

Malicious code in bioql PyPI...

CVE-2025-56276

code-projects Food Ordering Review System 1.0 is vulnerable to Cross Site Scripting XSS in the registration function. An attacker enters malicious JavaScript code as a username, which triggers the XSS vulnerability when the admin views user information, resulting in the disclosure of the admin's...

CVE-2025-56276

code-projects Food Ordering Review System 1.0 is vulnerable to Cross Site Scripting XSS in the registration function. An attacker enters malicious JavaScript code as a username, which triggers the XSS vulnerability when the admin views user information, resulting in the disclosure of the admin's...

CVE-2025-56276

code-projects Food Ordering Review System 1.0 is vulnerable to Cross Site Scripting XSS in the registration function. An attacker enters malicious JavaScript code as a username, which triggers the XSS vulnerability when the admin views user information, resulting in the disclosure of the admin's...

CVE-2025-56276

CVE-2025-56276 affects Code-Projects Food Ordering Review System 1.0. The vulnerability is a Cross-Site Scripting (XSS) in the registration function: an attacker can inject malicious JavaScript as a username, which executes when an administrator views the user information, potentially exposing th...

WordPress B Blocks plugin missing authorization vulnerability

WordPress B Blocks plugin is a Gutenberg plugin for WordPress to enhance page editing features. It provides a variety of beautiful blocks such as buttons, sliders, etc., supports highly customizable designs such as fonts, colors, spacing, etc., and includes pre-designed themes and icon libraries...

CVE-2025-8059

The B Blocks plugin for WordPress is vulnerable to Privilege Escalation due to missing authorization and improper input validation within the rgfrregistration function in all versions up to, and including, 2.0.6. This makes it possible for unauthenticated attackers to create a new account and...

CVE-2025-8059 B Blocks <= 2.0.6 - Missing Authorization to Unauthenticated Privilege Escalation via rgfr_registration Function

The B Blocks plugin for WordPress is vulnerable to Privilege Escalation due to missing authorization and improper input validation within the rgfrregistration function in all versions up to, and including, 2.0.6. This makes it possible for unauthenticated attackers to create a new account and...

CVE-2025-8059 B Blocks <= 2.0.6 - Missing Authorization to Unauthenticated Privilege Escalation via rgfr_registration Function

The B Blocks plugin for WordPress is vulnerable to Privilege Escalation due to missing authorization and improper input validation within the rgfrregistration function in all versions up to, and including, 2.0.6. This makes it possible for unauthenticated attackers to create a new account and...

PT-2025-32623 · WordPress · B Blocks

Name of the Vulnerable Software and Affected Versions: B Blocks plugin for WordPress versions prior to 2.0.7 Description: The B Blocks plugin for WordPress is susceptible to privilege escalation due to missing authorization and improper input validation within the rgfr registration function. This...

CVE-2025-4889

A vulnerability has been found in code-projects Tourism Management System 1.0 and classified as critical. This vulnerability affects the function AddUser of the component User Registration. The manipulation of the argument username/password leads to buffer overflow. Local access is required to...

CVE-2025-2846

A vulnerability classified as critical was found in SourceCodester Online Eyewear Shop 1.0. This vulnerability affects the function registration of the file /oews/classes/Users.php?f=registration of the component Registration. The manipulation of the argument ID leads to sql injection. The attack...

CVE-2025-2846

A vulnerability classified as critical was found in SourceCodester Online Eyewear Shop 1.0. This vulnerability affects the function registration of the file /oews/classes/Users.php?f=registration of the component Registration. The manipulation of the argument ID leads to sql injection. The attack...

CVE-2025-2846 SourceCodester Online Eyewear Shop Registration Users.php registration sql injection

A vulnerability classified as critical was found in SourceCodester Online Eyewear Shop 1.0. This vulnerability affects the function registration of the file /oews/classes/Users.php?f=registration of the component Registration. The manipulation of the argument ID leads to sql injection. The attack...