Lucene search
+L

404 matches found

EUVD
EUVD
added 2026/04/30 5:39 a.m.7 views

EUVD-2026-26316

AFP Spotlight protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service...

5.5CVSS5.2AI score0.00122EPSS
Exploits1References2
OSV
OSV
added 2026/04/30 5:39 a.m.2 views

CVE-2026-5401 Uncontrolled Recursion in Wireshark

AFP Spotlight protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service...

5.5CVSS6.1AI score0.00122EPSS
Exploits1References4
UbuntuCve
UbuntuCve
added 2026/04/30 12:0 a.m.6 views

CVE-2026-5401

AFP Spotlight protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service...

5.5CVSS5.8AI score0.00122EPSS
Exploits1References1
CNNVD
CNNVD
added 2026/04/30 12:0 a.m.10 views

Wireshark 安全漏洞

Wireshark is a set of network packet analysis tools developed by the Wireshark team. The software’s function is to capture network packets and display detailed data for analysis. Versions of Wireshark from 4.6.0 to 4.6.4, as well as 4.4.0 to 4.4.14, have security vulnerabilities. These...

5.5CVSS5.8AI score0.00122EPSS
Exploits1References1
Kaspersky
Kaspersky
added 2026/04/29 12:0 a.m.13 views

KLA91016 Multiple vulnerabilities in Wireshark

Multiple vulnerabilities were found in Wireshark. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. A denial of service vulnerability in Monero protocol dissector can be exploited to cause a denial...

6.3AI score
Exploits0References35
Positive Technologies
Positive Technologies
added 2026/03/24 12:0 a.m.7 views

PT-2026-27611

Name of the Vulnerable Software and Affected Versions iOS versions prior to 26.4 iPadOS versions prior to 26.4 Description A security issue exists where an attacker with physical access to an iOS device with Stolen Device Protection enabled may be able to access biometrics-gated Protected Apps wi...

4.6CVSS5.8AI score0.00187EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2026/03/12 12:0 a.m.12 views

PT-2026-36047

Name of the Vulnerable Software and Affected Versions Wireshark versions 4.6.0 through 4.6.4 Wireshark versions 4.4.0 through 4.4.14 Description A crash in the AFP Spotlight protocol dissector allows for a denial of service. A dissector is a software component that breaks down network packets int...

7.5CVSS6AI score0.00206EPSS
Exploits3References119
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.3 views

MiracleLinux 8 : samba-4.18.6-1.el8 (AXSA:2023-7219:13)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-7219:13 advisory. samba: out-of-bounds read in winbind AUTHCRAP CVE-2022-2127 samba: infinite loop in mdssvc RPC service for spotlight CVE-2023-34966 samba: type...

7.5CVSS7AI score0.62606EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/12/14 4:6 a.m.8 views

CVE-2025-13403

The Employee Spotlight – Team Member Showcase & Meet the Team Plugin for WordPress is vulnerable to unauthorized tracking settings modification due to missing authorization validation on the employeespotlightcheckoptin function in all versions up to, and including, 5.1.3. This makes it possible f...

5.3CVSS5.6AI score0.00204EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/13 6:30 p.m.5 views

EUVD-2025-203190

The Employee Spotlight – Team Member Showcase & Meet the Team Plugin for WordPress is vulnerable to unauthorized tracking settings modification due to missing authorization validation on the employeespotlightcheckoptin function in all versions up to, and including, 5.1.3. This makes it possible f...

5.3CVSS5.2AI score0.00204EPSS
Exploits0References5
NVD
NVD
added 2025/12/13 4:16 p.m.4 views

CVE-2025-13403

The Employee Spotlight – Team Member Showcase & Meet the Team Plugin for WordPress is vulnerable to unauthorized tracking settings modification due to missing authorization validation on the employeespotlightcheckoptin function in all versions up to, and including, 5.1.3. This makes it possible f...

4.3CVSS0.00204EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/12/13 3:59 a.m.3 views

CVE-2025-13843

The VigLink SpotLight By ShortCode plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'float' parameter of the 'spotlight' shortcode in all versions up to, and including, 1.0.a due to insufficient input sanitization and output escaping on user supplied attributes. This make...

6.4CVSS5.1AI score0.00189EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/12/13 3:20 a.m.34 views

CVE-2025-13403 Employee Spotlight – Team Member Showcase & Meet the Team Plugin <= 5.1.3 - Missing Authorization to Authenticated (Subscriber+) Tracking Opt-In/Opt-Out Modification

The Employee Spotlight – Team Member Showcase & Meet the Team Plugin for WordPress is vulnerable to unauthorized tracking settings modification due to missing authorization validation on the employeespotlightcheckoptin function in all versions up to, and including, 5.1.3. This makes it possible f...

4.3CVSS0.00204EPSS
Exploits0References4
CVE
CVE
added 2025/12/13 3:20 a.m.16 views

CVE-2025-13403

CVE-2025-13403 concerns the WordPress plugin Employee Spotlight – Team Member Showcase & Meet the Team (vulnerable through all versions up to and including 5.1.3). The root cause is missing authorization validation in the employee_spotlight_check_optin() function, which allows authenticated attac...

4.3CVSS5.2AI score0.00204EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/12/13 3:20 a.m.2 views

CVE-2025-13403 Employee Spotlight – Team Member Showcase & Meet the Team Plugin <= 5.1.3 - Missing Authorization to Authenticated (Subscriber+) Tracking Opt-In/Opt-Out Modification

The Employee Spotlight – Team Member Showcase & Meet the Team Plugin for WordPress is vulnerable to unauthorized tracking settings modification due to missing authorization validation on the employeespotlightcheckoptin function in all versions up to, and including, 5.1.3. This makes it possible f...

4.3CVSS5.3AI score0.00204EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/12/13 12:0 a.m.5 views

WordPress plugin Employee Spotlight – Team Member Showcase & Meet the Team 安全漏洞

WordPress and the WordPress plugin are products of the WordPress Foundation, a blogging platform developed in the PHP language. WordPress is a blogging platform developed using the PHP language, which provides the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin...

5.3CVSS5.8AI score0.00204EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/12/13 12:0 a.m.8 views

PT-2025-51044

The Employee Spotlight – Team Member Showcase & Meet the Team Plugin for WordPress is vulnerable to unauthorized tracking settings modification due to missing authorization validation on the employee spotlight check optin function in all versions up to, and including, 5.1.3. This makes it possibl...

5.3CVSS5.6AI score0.00204EPSS
Exploits0References4
Patchstack
Patchstack
added 2025/12/12 10:2 p.m.9 views

WordPress Employee Spotlight – Team Member Showcase & Meet the Team Plugin plugin <= 5.1.3 - Missing Authorization to Authenticated (Subscriber+) Tracking Opt-In/Opt-Out Modification vulnerability

Missing Authorization to Authenticated Subscriber+ Tracking Opt-In/Opt-Out Modification vulnerability discovered by Legion Hunter in WordPress Plugin Employee Spotlight versions = 5.1.3...

5.3CVSS6.7AI score0.00204EPSS
Exploits0References1Affected Software1
EUVD
EUVD
added 2025/12/12 6:31 a.m.5 views

EUVD-2025-202955

The VigLink SpotLight By ShortCode plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'float' parameter of the 'spotlight' shortcode in all versions up to, and including, 1.0.a due to insufficient input sanitization and output escaping on user supplied attributes. This make...

6.4CVSS4.7AI score0.00189EPSS
Exploits0References4
NVD
NVD
added 2025/12/12 4:15 a.m.35 views

CVE-2025-13843

The VigLink SpotLight By ShortCode plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'float' parameter of the 'spotlight' shortcode in all versions up to, and including, 1.0.a due to insufficient input sanitization and output escaping on user supplied attributes. This make...

6.4CVSS0.00189EPSS
Exploits0References3
Rows per page
Query Builder