10 matches found
CVE-2026-25327
Missing Authorization vulnerability in Rustaurius Five Star Restaurant Reservations restaurant-reservations allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Five Star Restaurant Reservations: from n/a through = 2.7.9...
EUVD-2026-15643
Missing Authorization vulnerability in Rustaurius Five Star Restaurant Reservations restaurant-reservations allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Five Star Restaurant Reservations: from n/a through = 2.7.9...
Important: Red Hat Security Advisory: multicluster engine for Kubernetes v2.7.9 security update
The multicluster engine for Kubernetes 2.7 General Availability release images, which add new features and enhancements, bug fixes, and updated container images. The multicluster engine for Kubernetes v2.7 images The multicluster engine for Kubernetes provides the foundational components that are...
CVE-2026-32332
CVE-2026-32332 affects the WordPress WordPress Easy Form plugin up to version 2.7.9. The issue is a Missing Authorization vulnerability stemming from incorrectly configured access control in Easy Form, potentially allowing unauthorized access to certain features due to insufficient authorization ...
CVE-2026-0658
The CVE affects the Five Star Restaurant Reservations WordPress plugin (before 2.7.9). Root cause: missing CSRF protections in some bulk actions, enabling a logged-in admin to perform unintended actions (e.g., deleting bookings) via CSRF. Impact described as potential unauthorized admin actions; ...
PT-2025-33402 · Crocoblock +1 · Jetelements For Elementor +1
Name of the Vulnerable Software and Affected Versions: Crocoblock JetElements For Elementor versions through 2.7.9 Description: Improper neutralization of input during web page generation allows for Stored Cross-site Scripting XSS. Recommendations: Update Crocoblock JetElements For Elementor to a...
WordPress Video Share VOD plugin <= 2.7.9 - Reflected Cross-Site Scripting vulnerability
Reflected Cross-Site Scripting vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Plugin Video Share VOD versions = 2.7.9...
Linux Distros Unpatched Vulnerability : CVE-2023-52798
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: fix dfs radar event locking The ath11k active pdevs are protected by RCU but t...
CVE-2023-2717
The Groundhogg plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.7.9.8. This is due to missing nonce validation on the 'enablesafemode' function. This makes it possible for unauthenticated attackers to enable safe mode, which disables all other...
CVE-2022-1279
creationtimestamp| type| source ---|---|--- 2022-04-14 13:23:52+00:00| seen| https://t.me/cibsecurity/40750...