4 matches found
CVE-2026-45788
Discourse is an open-source discussion platform. Prior to 2026.6.0, 2026.5.1, 2026.4.2, and 2026.1.5, secure uploads could be exposed by pullhotlinkedimages when an attacker knew the secured upload URL and the secureuploads site setting was enabled. This issue is fixed in versions 2026.6.0,...
CVE-2026-7542
The Slider Revolution plugin for WordPress is vulnerable to Sensitive Information Disclosure in versions up to and including 7.0.10. This is due to three compounding design flaws: 1 the plugin leaks a valid backend AJAX nonce revslideractions to all authenticated users including Subscribers via t...
CVE-2026-28276
Technical details beyond the Initial Description are not provided in the connected documents. Monitor for updates on CVE-2026-28276.
CodeAstro Membership Management System 安全漏洞
CodeAstro Membership Management System is a membership management system from CodeAstro, Inc. A security vulnerability exists in CodeAstro Membership Management System version 1.0, which originates from a directory listing in the folder /uploads/ that exposes the directory's structure and content...