CVE-2026-25459 WordPress Sober theme <= 3.5.12 - Broken Access Control vulnerability

Missing Authorization vulnerability in uixthemes Sober sober allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Sober: from n/a through = 3.5.12...

CVE-2026-25459

Missing Authorization vulnerability in uixthemes Sober sober allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Sober: from n/a through = 3.5.12...

PT-2026-20750

Missing Authorization vulnerability in uixthemes Sober sober allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Sober: from n/a through = 3.5.12...

WordPress plugin Sober 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

WordPress Sober theme <= 3.5.12 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Rafie Muhammad Patchstack in WordPress Theme Sober versions = 3.5.12...

VulnCheck KEV: CVE-2024-36117

Reposilite is an open source, lightweight and easy-to-use repository manager for Maven based artifacts in JVM ecosystem. Reposilite v3.5.10 is affected by an Arbitrary File Read vulnerability via path traversal while serving expanded javadoc files. Reposilite has addressed this issue in version...

EUVD-2024-23227

Malicious code in bioql PyPI...

CVE-2025-60115

Cross-Site Request Forgery CSRF vulnerability in instapagedev Instapage Plugin instapage allows Cross Site Request Forgery.This issue affects Instapage Plugin: from n/a through = 3.7.0...

CVE-2025-60115

Cross-Site Request Forgery CSRF vulnerability in instapagedev Instapage Plugin instapage allows Cross Site Request Forgery.This issue affects Instapage Plugin: from n/a through = 3.7.0...

CVE-2025-60115

CVE-2025-60115: Instapage Plugin for WordPress is affected by a Cross-Site Request Forgery vulnerability affecting versions from n/a up to and including 3.5.12. The CVSS v3.1 base score is 4.3 (Medium). The Wordfence details indicate Patch Status: Unpatched. Affected software: Instapage Plugin. R...

CVE-2025-60115 WordPress Instapage plugin plugin <= 3.7.0 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in instapagedev Instapage Plugin instapage allows Cross Site Request Forgery.This issue affects Instapage Plugin: from n/a through = 3.7.0...

PT-2025-39562

Name of the Vulnerable Software and Affected Versions Instapage Plugin versions through 3.5.12 Description A Cross-Site Request Forgery CSRF issue exists in the Instapage Plugin. This allows attackers to perform actions on behalf of unsuspecting users. Recommendations Update Instapage Plugin to a...

CVE-2025-31411 WordPress Linet ERP-Woocommerce Integration plugin <= 3.5.12 - Arbitrary File Read/Deletion vulnerability

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in aribhour Linet ERP-Woocommerce Integration linet-erp-woocommerce-integration allows Path Traversal.This issue affects Linet ERP-Woocommerce Integration: from n/a through = 3.5.12...

WordPress plugin Linet ERP-Woocommerce Integration 路径遍历漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A path traversal...

openSUSE 15 Security Update : etcd (openSUSE-SU-2025:0003-1)

The remote openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2025:0003-1 advisory. Update to version 3.5.12: Bump golang.org/x/crypto to v0.17+ to address CVE-2023-48795 test: fix TestHashKVWhenCompacting: ensure all goroutine...

Security update for etcd (important)

openSUSE Security Update: Security update for etcd Announcement ID: openSUSE-SU-2025:0003-1 Rating: important References: 1174951 1181400 1183703 1199031 Cross-References: CVE-2019-11254 CVE-2020-15106 CVE-2021-28235 CVE-2023-47108 CVE-2023-48795 CVSS scores: CVE-2019-11254 SUSE: 4.3...

Security update for etcd

This update for etcd fixes the following issues: Update to version 3.5.12: Security fixes: CVE-2018-16873: Fixed remote command execution in cmd/go bsc1118897 CVE-2018-16874: Fixed directory traversal in cmd/go bsc1118898 CVE-2018-16875: Fixed CPU denial of service in crypto/x509 bsc1118899...

GHSA-W7C4-5W4F-JM3G Duplicate Advisory: Reposilite Arbitrary File Read vulnerability

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-82j3-hf72-7x93. This link is maintained to preserve external references. Original description Reposilite is an open source, lightweight and easy-to-use repository manager for Maven based artifacts in JVM...

CVE-2024-36116 Path traversal in Reposilite javadoc file expansion

Reposilite is an open source, lightweight and easy-to-use repository manager for Maven based artifacts in JVM ecosystem. Reposilite provides support for JavaDocs files, which are archives that contain documentation for artifacts. Specifically, JavadocEndpoints.kt controller allows to expand the...

OPENSUSE-SU-2024:13812-1 etcd-3.5.12-1.1 on GA media

These are all security issues fixed in the etcd-3.5.12-1.1 package on the GA media of openSUSE Tumbleweed...