Debian dsa-6281 : gnutls-bin - security update

The remote Debian 12 / 13 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-6281 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-6281-1 [email protected]...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001961)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001961 advisory. arch/x86/kernel/cpu/perfeventintel.c in the Linux kernel before 3.8.9, when the Performance Events Subsystem is enabled, specifies an incorrect bitmask, which allows...

CVE-2023-29721

SofaWiki = 3.8.9 has a file upload vulnerability that leads to command execution...

EUVD-2023-56210

Malicious code in bioql PyPI...

EUVD-2024-30256

Malicious code in bioql PyPI...

CVE-2024-32438

Cross-Site Request Forgery CSRF vulnerability in cleverplugins.Com SEO Booster.This issue affects SEO Booster: from n/a through 3.8.9...

CVE-2023-51497

Missing Authorization vulnerability in Woo WooCommerce Ship to Multiple Addresses.This issue affects WooCommerce Ship to Multiple Addresses: from n/a through 3.8.9...

CVE-2016-10953

The Headway theme before 3.8.9 for WordPress has XSS via the license key field...

CVE-2025-4537

A vulnerability was found in yangzongzhuan RuoYi-Vue up to 3.8.9 and classified as problematic. Affected by this issue is some unknown functionality of the file ruoyi-ui/jsencrypt.js and ruoyi-ui/login.vue of the component Password Handler. The manipulation leads to cleartext storage of sensitive...

CVE-2023-51497

Missing Authorization vulnerability in Woo WooCommerce Ship to Multiple Addresses.This issue affects WooCommerce Ship to Multiple Addresses: from n/a through 3.8.9...

WordPress plugin WooCommerce Ship to Multiple Addresses security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in the WordPre...

PT-2024-14156 · Woocommerce · Woocommerce Ship To Multiple Addresses

Name of the Vulnerable Software and Affected Versions: WooCommerce Ship to Multiple Addresses versions 3.8.9 and earlier Description: The issue is related to a Missing Authorization vulnerability. This vulnerability affects the Woo WooCommerce Ship to Multiple Addresses plugin. Recommendations: F...

CVE-2024-32438

Cross-Site Request Forgery CSRF vulnerability in cleverplugins.Com SEO Booster.This issue affects SEO Booster: from n/a through 3.8.9...

WordPress SEO Booster Plugin < 3.8.9 is vulnerable to Cross Site Scripting (XSS)

Software SEO Booster Type Plugin Vulnerable versions 3.8.9 Fixed in 3.8.9 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID f88d0b59f7d6 Credits Rafie Muhammad Patchstack Required...

CVE-2023-29721

SofaWiki = 3.8.9 has a file upload vulnerability that leads to command execution...

PT-2023-22373 · Sofawiki · Sofawiki

Name of the Vulnerable Software and Affected Versions: SofaWiki versions prior to 3.8.9 Description: The issue is related to a file upload vulnerability that can lead to command execution. Recommendations: For versions prior to 3.8.9, update to version 3.8.9 or later to resolve the issue...

CVE-2023-29720

SofaWiki =3.8.9 is vulnerable to Cross Site Scripting XSS via index.php...

Python < 3.6.14, 3.7.x < 3.7.11, 3.8.x < 3.8.9, 3.9.x < 3.9.3 (bpo-43285) - Mac OS X

Python is prone to a remote code execution RCE vulnerability. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:python:python";...

Python < 3.6.14, 3.7.x < 3.7.11, 3.8.x < 3.8.9, 3.9.x < 3.9.3 Python Issue (bpo-42988) - Mac OS X

Python is prone to an information disclosure vulnerability via pydoc getfile. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Moodle < 3.8.9, 3.9.x < 3.9.7, 3.10.x < 3.10.4 XSS Vulnerability

Moodle is prone to a cross-site scripting XSS vulnerability. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software;...