Oracle Linux 10 : sudo (ELSA-2026-10758)

The remote Oracle Linux 10 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-10758 advisory. 1.9.15-10.p5 - Resolves: RHEL-164619 - CVE-2026-35535 sudo: Sudo: Privilege escalation due to failure in privilege drop calls Tenable has extracted the...

CVE-2026-32562

Missing Authorization vulnerability in WP Folio Team PPWP password-protect-page allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects PPWP: from n/a through = 1.9.15...

CVE-2026-32562 WordPress PPWP plugin <= 1.9.15 - Broken Access Control vulnerability

Missing Authorization vulnerability in WP Folio Team PPWP password-protect-page allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects PPWP: from n/a through = 1.9.15...

CVE-2026-32562

The CVE-2026-32562 entry corresponds to a Broken Access Control vulnerability in the WordPress PPWP plugin, affecting versions

CVE-2026-32562 WordPress PPWP plugin <= 1.9.15 - Broken Access Control vulnerability

Missing Authorization vulnerability in WP Folio Team PPWP password-protect-page allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects PPWP: from n/a through = 1.9.15...

EUVD-2019-6758

Malware in sbrugna...

PT-2024-16745 · Tumult · Tumult Hype Animations

Name of the Vulnerable Software and Affected Versions: Tumult Hype Animations plugin for WordPress versions up to, and including, 1.9.15 Description: The Tumult Hype Animations plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the hypeanimations...

WordPress Tumult Hype Animations plugin <= 1.9.15 - Authenticated (Author+) Arbitrary File Upload via hypeanimations_panel Function vulnerability

Authenticated Author+ Arbitrary File Upload via hypeanimationspanel Function vulnerability discovered by vgo0 in WordPress Plugin Tumult Hype Animations versions = 1.9.15...

gRPC Security Vulnerabilities

gRPC is a modern, open-source, high-performance remote procedure call RPC framework from gRPC Open Source. A security vulnerability exists in gRPC versions prior to 1.10.9, 1.9.15, and 1.8.22, which stems from the ability to allocate memory far beyond the configuration limit for incoming messages...

openSUSE: Security Advisory for maven, maven (SUSE-SU-2023:4527-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Sudo before 1.9.15 might allow row hammer attacks (for authentication bypass or privilege escalation) because application logic sometimes is based on not equaling an error value (instead of equaling a success value) and because the values do not resist flips of a single bit.

...

SUSE CVE-2023-42465

Sudo before 1.9.15 might allow row hammer attacks for authentication bypass or privilege escalation because application logic sometimes is based on not equaling an error value instead of equaling a success value, and because the values do not resist flips of a single bit...

Sudo Security Breach

Sudo is a program for use on Unix-like systems that allows users to execute commands in a secure manner with special privileges. A security vulnerability exists in versions of Sudo prior to 1.9.15, which stems from vulnerability to a ROWHAMMER attack that can bypass SUDO authentication...

PT-2023-8553 · Sudo +7 · Sudo +7

Name of the Vulnerable Software and Affected Versions: Sudo versions prior to 1.9.15 Description: The issue is related to the authentication procedure in Sudo, which might allow row hammer attacks for authentication bypass or privilege escalation. This is because the application logic sometimes...

SUSE CVE-2007-3568

The LoadBMP function in imlib 1.9.15 and earlier allows context-dependent attackers to cause a denial of service infinite loop via a BMP image with a Bits Per Page BPP value of 0...

SUSE CVE-2022-0534

A vulnerability was found in htmldoc version 1.9.15 where the stack out-of-bounds read takes place in gifgetcode and occurs when opening a malicious GIF file, which can result in a crash segmentation fault...

DEBIAN-CVE-2022-0137

A heap buffer overflow in imagesetmask function of HTMLDOC before 1.9.15 allows an attacker to write outside the buffer boundaries...

HTMLDOC 缓冲区错误漏洞

HTMLDOC is an open source program that converts HTML and Markdown files to EPUB, Indexed HTML, PostScript and PDF formats. A buffer error vulnerability exists in HTMLDOC versions prior to 1.9.15, which stems from a heap buffer overflow in the imagesetmask function, which can be exploited by an...

CVE-2022-34033

HTMLDoc v1.9.15 was discovered to contain a heap overflow via writeheader /htmldoc/htmldoc/html.cxx:273...

PT-2022-13245 · Htmldoc +4 · Htmldoc +4

Name of the Vulnerable Software and Affected Versions: htmldoc version 1.9.15 Description: A vulnerability was found in htmldoc where the stack out-of-bounds read takes place in the gif get code function and occurs when opening a malicious GIF file, which can result in a crash segmentation fault...