JLSEC-2026-10 Buffer Overflow vulnerability in libpng 1.6.43-1.6.46 allows a local attacker to cause a denial of s...

Buffer Overflow vulnerability in libpng 1.6.43-1.6.46 allows a local attacker to cause a denial of service via pngcreatereadstruct function...

CVE-2025-28164

Buffer Overflow vulnerability in libpng 1.6.43-1.6.46 allows a local attacker to cause a denial of service via pngcreatereadstruct function...

CVE-2025-28162

CVE-2025-28162 is a memory-related vulnerability in libpng 1.6.43–1.6.46 where a Buffer Overflow via pngimage with AddressSanitizer can cause memory leaks, leading to high memory usage and potential DoS via local access. Affected versions include libpng 1.6.43–1.6.46; the issue is documented acro...

CVE-2025-28164

CVE-2025-28164 is a Buffer Overflow in libpng 1.6.43–1.6.46 that allows a local attacker to cause a denial of service by calling png_create_read_struct(). The connected OSV entries corroborate the impact and affected component, and note the issue is local with low attacker complexity. The descrip...

CVE-2025-62052 WordPress One Page Express Companion plugin <= 1.6.43 - Broken Access Control vulnerability

Missing Authorization vulnerability in Horea Radu One Page Express Companion one-page-express-companion.This issue affects One Page Express Companion: from n/a through = 1.6.43...

WordPress plugin One Page Express Companion 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin.... A security...

WordPress One Page Express Companion plugin <= 1.6.43 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Legion Hunter in WordPress Plugin One Page Express Companion versions = 1.6.43...

WordPress plugin Elementor Header & Footer Builder 信息泄露漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. An information disclosure...

PT-2024-15998 · Elementor · Elementor Header & Footer Builder

Name of the Vulnerable Software and Affected Versions: Elementor Header & Footer Builder plugin for WordPress versions up to, and including, 1.6.43 Description: The issue allows authenticated attackers with Contributor-level access and above to view the contents of Draft, Private, and...

WordPress Elementor Header & Footer Builder plugin <= 1.6.43 - Authenticated (Contributor+) Information Disclosure vulnerability

Authenticated Contributor+ Information Disclosure vulnerability discovered by Francesco Carlucci in WordPress Plugin Ultimate Addons for Elementor - Lite versions = 1.6.43...

WordPress Elementor – Header, Footer & Blocks Template Plugin <= 1.6.43 is vulnerable to Sensitive Data Exposure

Software Elementor – Header, Footer & Blocks Template Type Plugin Vulnerable versions = 1.6.43 Fixed in 1.6.44 OWASP Top 10 A3: Sensitive Data Exposure Classification Sensitive Data Exposure CVE CVE-2024-10050 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 22957639a0e5...