Important: Red Hat Security Advisory: Red Hat OpenShift GitOps v1.20.2 security update

Important: Red Hat OpenShift GitOps v1.20.2 security update An update is now available for Red Hat OpenShift GitOps...

Linux Distros Unpatched Vulnerability : CVE-2022-1726

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Bootstrap Tables XSS vulnerability with Table Export plug-in when exportOptions: htmlContent is true in GitHub repository wenzhixin/bootstrap-table prior to...

CVE-2025-24746 WordPress Popup Maker plugin <= 1.20.2 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Daniel Iser Popup Maker popup-maker allows Stored XSS.This issue affects Popup Maker: from n/a through = 1.20.2...

WordPress plugin Popup Maker 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

PT-2025-5557 · Unknown · Popup Maker

Name of the Vulnerable Software and Affected Versions: Popup Maker versions through 1.20.2 Description: The issue is related to improper neutralization of input during web page generation, which allows for stored cross-site scripting XSS. This means that an attacker can inject malicious scripts...

WordPress plugin Popup Maker 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

MIT Kerberos Buffer Error Vulnerability

MIT Kerberos is a Massachusetts Institute of Technology MIT software for authentication in network clusters.Kerberos also serves as a network authentication protocol designed to provide strong authentication services to client/server applications through a key system. A security vulnerability...

CVE-2022-23497

FreshRSS CVE-2022-23497 describes an information‑disclosure vulnerability where a remote user can access user configuration files. These files can contain hashed passwords for the web interface and, if using the API, hashed passwords for GReader and Fever APIs. Affected releases are prior to 1.20...

GHSA-GRW5-G9H2-WPG8 Cross-site Scripting in bootstrap-table

Bootstrap Tables XSS vulnerability with Table Export plug-in when exportOptions: htmlContent is true in GitHub repository wenzhixin/bootstrap-table prior to 1.20.2. Disclosing session cookies, disclosing secure session data, exfiltrating data to third-parties...

Bootstrap-Table 跨站脚本漏洞

Bootstrap-Table is an open source extension table integrated with some of the most widely used Css frameworks by individual developers at Wenzhixin. A security vulnerability exists in Bootstrap-Table versions prior to 1.20.2. An attacker could exploit this vulnerability to disclose session cookie...

GeoWebCache 代码问题漏洞

GeoWebCache is a Java Web application used to cache map slices from various sources, such as the OGC Web Map Service WMS. A code issue vulnerability exists in GeoWebCache that stems from a disk quota mechanism that can perform unchecked JNDI lookups, which in turn can be used to perform class...

AZL-9188 CVE-2021-3618 affecting package nginx for versions less than 1.20.2-2

ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic fr...

Low: Red Hat Bug Fix Advisory: Red Hat OpenShift Jaeger 1.20.2 Operator/Operand Containers

Red Hat OpenShift Jaeger 1.20.2. Release of Red Hat OpenShift Jaeger provides these changes:...

Medtronic Valleylab FT10 and Valleylab LS10 Energy Platform License Issue Vulnerability

The Medtronic Valleylab FT10 and Valleylab LS10 Energy Platform are both Medtronic power devices for the medical industry. An authorization issue vulnerability exists in Medtronic Valleylab FT10 VLFT10GEN versions 2.1.0 and earlier, 2.0.3 and earlier, and Valleylab LS10 Energy Platform VLLS10GEN...