CVE-2026-24941

Missing Authorization vulnerability in wpjobportal WP Job Portal wp-job-portal allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Job Portal: from n/a through = 2.4.4...

CVE-2025-64704

WebAssembly Micro Runtime WAMR is a lightweight standalone WebAssembly Wasm runtime. Prior to version 2.4.4, WAMR is susceptible to a segmentation fault in v128.store instruction. This issue has been patched in version 2.4.4...

CVE-2025-64704

WebAssembly Micro Runtime WAMR is a lightweight standalone WebAssembly Wasm runtime. Prior to version 2.4.4, WAMR is susceptible to a segmentation fault in v128.store instruction. This issue has been patched in version 2.4.4...

CVE-2025-64713

CVE-2025-64713 affects WebAssembly Micro Runtime (WAMR). In fast interpreter mode prior to version 2.4.4, an out-of-bounds access can occur during WASM bytecode loading when frame_ref_bottom and frame_offset_bottom arrays are at capacity, a GET_GLOBAL(I32) opcode expands frame_ref_bottom but not ...

CVE-2025-64704 WebAssembly Micro Runtime vulnerable to a segmentation fault in v128.store instruction

WebAssembly Micro Runtime WAMR is a lightweight standalone WebAssembly Wasm runtime. Prior to version 2.4.4, WAMR is susceptible to a segmentation fault in v128.store instruction. This issue has been patched in version 2.4.4...

WordPress Businext theme < 2.4.4 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Businext versions 2.4.4...

PT-2025-32863 · Adobe · Commerce

Name of the Vulnerable Software and Affected Versions: Adobe Commerce versions 2.4.9-alpha1 through 2.4.4-p14 and earlier Description: Adobe Commerce is affected by an improper input validation issue that could lead to a denial-of-service DoS. An attacker could exploit this issue by providing...

Linux Distros Unpatched Vulnerability : CVE-2025-5244

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was found in GNU Binutils up to 2.44. It has been rated as critical. Affected by this issue is the function elfgcsweep of the file bfd/elflink.c...

CVE-2024-32124

An improper access control vulnerability CWE-284 in FortiIsolator version 2.4.4, version 2.4.3, 2.3 all versions logging component may allow a remote authenticated read-only attacker to alter logs via a crafted HTTP request...

ALPINE-CVE-2025-5244

A vulnerability was found in GNU Binutils up to 2.44. It has been rated as critical. Affected by this issue is the function elfgcsweep of the file bfd/elflink.c of the component ld. The manipulation leads to memory corruption. An attack has to be approached locally. The exploit has been disclosed...

CVE-2022-44211

creationtimestamp| type| source ---|---|--- 2025-04-24 18:06:52+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/13303...

WordPress plugin RapidLoad 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

WordPress Vimeography plugin <= 2.4.4 - Full Path Disclosure (FPD) vulnerability

Full Path Disclosure FPD vulnerability discovered by Fariq Fadillah Gusti Insani Patchstack Alliance in WordPress Plugin Vimeography versions = 2.4.4...

PT-2024-35296 · Unknown · Awesome Studio

Name of the Vulnerable Software and Affected Versions: Awesome Studio versions prior to 2.4.4 Description: The issue is related to improper neutralization of input during web page generation, which allows for reflected Cross-site Scripting XSS. This enables attackers to inject malicious scripts...

GHSA-8W5F-8992-G86J Magento Improper Authorization vulnerability

Magento versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier are affected by an Improper Authorization vulnerability that could result in a Security feature bypass. A low-privileged attacker could leverage this vulnerability to bypass security measures and disclose minor information...

PT-2024-6015 · Adobe · Commerce

Name of the Vulnerable Software and Affected Versions: Adobe Commerce versions 2.4.7-p1 through 2.4.4-p9 and earlier Description: The issue is related to an improper limitation of a pathname to a restricted directory, which could lead to arbitrary file system read. A low-privileged attacker could...

WordPress Brizy – Page Builder plugin <= 2.4.44 - Missing Authorization to Authenticated (Contributor+) Post Modification vulnerability

Missing Authorization to Authenticated Contributor+ Post Modification vulnerability discovered by stealthcopter in WordPress Plugin Brizy versions = 2.4.44...

VulnCheck KEV: CVE-2024-20720

Adobe Commerce versions 2.4.6-p3, 2.4.5-p5, 2.4.4-p6 and earlier are affected by an Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability that could lead in arbitrary code execution by an attacker. Exploitation of this issue does not require user...

PT-2024-10552 · WordPress · Wp-File-Upload

Name of the Vulnerable Software and Affected Versions: wp-file-upload Plugin versions up to 2.4.3 Description: A vulnerability has been found in the wp-file-upload Plugin, which is classified as problematic. The issue affects the function wfu ajax action callback of the file lib/wfu...

PT-2024-18031 · WordPress · Ht Mega – Absolute Addons For Elementor

Name of the Vulnerable Software and Affected Versions: HT Mega – Absolute Addons For Elementor plugin for WordPress versions up to, and including, 2.4.4 Description: The issue is related to Stored Cross-Site Scripting via the border type attribute of the Post Carousel widget due to insufficient...