MiracleLinux 4 : rh-mysql56-mysql-5.6.38-1.AXS4 (AXSA:2017-2426:02)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2017-2426:02 advisory. This update fixes several vulnerabilities in the MySQL database server. Information about these flaws can be found on the Oracle Critical Patch Upda...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004447)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004447 advisory. An issue was discovered in fs/iouring.c in the Linux kernel before 5.6. It unsafely handles the root directory during path lookups, and thus a process inside a mount...

CVE-2020-12615

An issue was discovered in BeyondTrust Privilege Management for Windows through 5.6. When adding the Add Admin token to a process, and specifying that it runs at medium integrity with the user owning the process, this security token can be stolen and applied to arbitrary processes...

WordPress plugin 8theme XStore Core 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security...

EUVD-2015-9137

Malware in sbrugna...

EUVD-2020-14172

Malware in sbrugna...

EUVD-2019-8381

Malware in sbrugna...

EUVD-2016-0696

Malware in sbrugna...

EUVD-2023-23931

Malicious code in bioql PyPI...

EUVD-2025-15780

Malicious code in bioql PyPI...

EUVD-2025-7824

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2018-3251

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: InnoDB. Supported versions that are affected are 5.6.41 and prior, 5.7.23 and prior an...

CVE-2020-23595

Cross Site Request Forgery CSRF vulnerability in yzmcms version 5.6, allows remote attackers to escalate privileges and gain sensitive information sitemodel/add.html endpoint...

CVE-2020-21400

SQL injection vulnerability in gaozhifeng PHPMyWind v.5.6 allows a remote attacker to execute arbitrary code via the id variable in the modify function...

CVE-2017-1001001

PluXml version 5.6 is vulnerable to stored cross-site scripting vulnerability, within the article creation page, which can result in escalation of privileges...

CVE-2025-39355

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in roninwp FAT Services Booking fat-services-booking allows SQL Injection.This issue affects FAT Services Booking: from n/a through = 5.6...

CVE-2025-39355

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in roninwp FAT Services Booking fat-services-booking allows SQL Injection.This issue affects FAT Services Booking: from n/a through = 5.6...

CVE-2025-32590

CVE-2025-32590 refers to a Reflected XSS in Web2application plugin (WordPress) up to version 5.7/5.6 depending on listing. The description states improper neutralization of input during web page generation leading to cross-site scripting. Connected records confirm the vulnerability is tied to Web...

CVE-2025-27925

Nintex Automation 5.6 and 5.7 before 5.8 has insecure deserialization of user input...

CVE-2024-54220 WordPress FAT Services Booking plugin <= 5.6 - Subscriber+ Site-Wide Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Roninwp FAT Services Booking allows Stored XSS.This issue affects FAT Services Booking: from n/a through 5.6...