Intel® 800 Series Ethernet Linux Driver Advisory

Summary: A potential security vulnerability for some Intel® 800 Series Ethernet Linux Driver may allow denial of service. Intel is releasing software updates to mitigate this potential vulnerability. Vulnerability Details: CVEID: CVE-2025-27723 Description: Use after free for some Linux kernel...

CVE-2025-53421

Missing Authorization vulnerability in PickPlugins Accordion accordions allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Accordion: from n/a through = 2.3.14...

CVE-2025-53421

CVE-2025-53421 concerns a Missing Authorization vulnerability in the WordPress plugin Accordion (PickPlugins Accordion) affecting versions through 2.3.14. The flaw allows exploitation of misconfigured access control security levels without user interaction, with a CVSS v3.1 base score of 6.3 (Net...

CVE-2025-58222

Missing Authorization vulnerability in Maidul Team Manager wp-team-manager allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Team Manager: from n/a through = 2.5.1...

CVE-2025-58678

Missing Authorization vulnerability in PickPlugins Accordion accordions allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Accordion: from n/a through = 2.3.15...

CVE-2025-58222

CVE-2025-58222 describes a Missing Authorization vulnerability in the WordPress Team Manager plugin (Maidul Team Manager), affecting Team Manager versions up to 2.3.14 per the initial description and up to 2.3.16 per Wordfence vulnerability listings. The CVSS 3.1 vector indicates a Medium impact ...

CVE-2025-58678

CVE-2025-58678 : Missing Authorization vulnerability in the PickPlugins Accordion WordPress plugin affecting Accordion versions up to 2.3.15. The issue corresponds to Missing Authorization, implying improper access control. The connected WordPress vulnerability listing confirms the CVE and affect...

CVE-2025-58678 WordPress Accordion Plugin <= 2.3.15 - Broken Access Control Vulnerability

Missing Authorization vulnerability in PickPlugins Accordion accordions allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Accordion: from n/a through = 2.3.15...

WordPress plugin Team Manager 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plug-in. A security...

WordPress Events Calendar for GeoDirectory plugin <= 2.3.14 - PHP Object Injection vulnerability

PHP Object Injection vulnerability discovered by Tran Nguyen Bao KhanhVCI - VNPT in WordPress Plugin Events Calendar for GeoDirectory versions = 2.3.14...

CVE-2023-28660

The Events Made Easy WordPress Plugin, version = 2.3.14 is affected by an authenticated SQL injection vulnerability in the 'searchname' parameter in the emerecurrenceslist action...

PT-2023-21882 · WordPress · Events Made Easy Wordpress Plugin

Name of the Vulnerable Software and Affected Versions: Events Made Easy WordPress Plugin version = 2.3.14 Description: The issue is an authenticated SQL injection vulnerability. It affects the search name parameter in the eme recurrences list action. Recommendations: For Events Made Easy WordPres...

PT-2021-4477 · Unknown · Vpn-User-Portal

Name of the Vulnerable Software and Affected Versions: vpn-user-portal versions prior to 2.3.14 Description: The issue arises from insufficient input validation in the vpn-user-portal software, allowing remote authenticated users to obtain OS filesystem access due to the interaction of QR codes...

Dovecot 2.3.11 - 2.3.14 Path Traversal Vulnerability

Dovecot is prone to a path traversal vulnerability. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Mojarra: Path traversal via either the loc parameter or the con parameter, incomplete fix of CVE-2018-14371

A flaw was found in Eclipse Mojarra before version 2.3.14, where it is vulnerable to a path traversal flaw via the loc parameter or the con parameter. An attacker could exploit this flaw to read arbitrary files...

PT-2020-1329

Name of the Vulnerable Software and Affected Versions Eclipse Mojarra versions prior to 2.3.14 Oracle WebLogic Server affected versions not specified Description The issue allows attackers to read arbitrary files or affect the system via the HTTP protocol. It is related to a lack of protection fo...

Debian Security Advisory DSA 2301-1 (rails)

The remote host is missing an update to rails announced via advisory DSA 2301-1. OpenVAS Vulnerability Test $Id: deb23011.nasl 6613 2017-07-07 12:08:40Z cfischer $ Description: Auto-generated from advisory DSA 2301-1 rails Authors: Thomas Reinke Copyright: Copyright c 2011 E-Soft Inc...

Cyrus IMAP Server SIEVE Script Handling Buffer Overflow Vulnerability

Cyrus IMAP Server is prone to a buffer overflow vulnerability. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:cyrus:imap";...