EUVD-2026-26320

SMB2 protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service...

EUVD-2026-26318

TLS protocol dissector heap overflow in Wireshark 4.6.0 to 4.6.4 allows denial of service and possible code execution...

PT-2026-36075

Name of the Vulnerable Software and Affected Versions Wireshark versions 4.6.0 through 4.6.4 Wireshark versions 4.4.0 through 4.4.14 Description A crash in the BEEP protocol dissector allows for a denial of service. Recommendations Update Wireshark versions 4.6.0 through 4.6.4 to a version newer...

CVE-2018-25280 Infiltrator Network Security Scanner 4.6 Denial of Service

Infiltrator Network Security Scanner 4.6 contains a buffer overflow vulnerability that allows local attackers to crash the application by supplying an oversized input string. Attackers can paste a 6000-byte payload into the Scan Target field and trigger a denial of service condition when the Scan...

CVE-2026-22768

Dell AppSync, versions 4.6.0, contains an Incorrect Permission Assignment for Critical Resource vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of privileges...

PT-2026-36256

Name of the Vulnerable Software and Affected Versions Wireshark versions 4.6.0 through 4.6.4 Wireshark versions 4.4.0 through 4.4.14 Description A crash in the RDP protocol dissector allows for denial of service and possible code execution. Recommendations At the moment, there is no information...

CVE-2026-3203

RF4CE Profile protocol dissector crash in Wireshark 4.6.0 to 4.6.3 and 4.4.0 to 4.4.13 allows denial of service...

Dell AppSync 代码问题漏洞

Dell AppSync is a data backup and recovery management software from Dell. An XML External Entity Reference Improper Restriction vulnerability exists in Dell AppSync version 4.6.0.0, which stems from improper handling of XML external entity parsing. An attacker could exploit this vulnerability to...

CVE-2025-52793

Cross-Site Request Forgery CSRF vulnerability in Esselink.nu Esselink.nu Settings esselinknu-settings allows Reflected XSS.This issue affects Esselink.nu Settings: from n/a through = 4.5...

WordPress plugin DSGVO All in one for WP 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site request forgery vulnerability...

Loftware Spectrum 安全漏洞

Loftware Spectrum is an enterprise label printing solution from Loftware, a comprehensive, cloud-based label printing platform for companies of all sizes. A security vulnerability exists in Loftware Spectrum prior to version 4.6 that stems from HF13 deserialization of untrusted data...

WordPress plugin Generate PDF using Contact Form security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in WordPress...

Micro Focus NetIQ Client Login Extension Security Vulnerability

Micro Focus NetIQ Client Login Extension is a client login extension from Micro Focus UK. A security vulnerability exists in Micro Focus NetIQ Client Login Extension version 4.6, which originates from an authorized bypass of the user control key, allowing privilege escalation, code injection...

PT-2024-18074 · Netiq · Netiq Client Login Extension

Name of the Vulnerable Software and Affected Versions: NetIQ Client Login Extension version 4.6 Description: The issue allows for Authorization Bypass Through User-Controlled Key, enabling Privilege Escalation and Code Injection in the NetIQ OpenText Client Login Extension on Windows...

OpenITCOCKPIT 安全漏洞

It-novum OpenITCOCKPIT is an open source system monitoring tool from It-novum, Germany. A security vulnerability exists in OpenITCOCKPIT prior to version 4.6.6, which stems from the absence of the "Secure" attribute on sensitive cookies in HTTPS sessions...

Cynet Client Agent 安全漏洞

Cynet Client Agent is a client agent from Cynet Corporation. A security vulnerability exists in Cynet Client Agent version 4.6.0.8010, which stems from a vulnerability that allows EDR protection to be disabled via a process's privilege token...

SUSE CVE-2016-6608

XSS issues were discovered in phpMyAdmin. This affects the database privilege check and the "Remove partitioning" functionality. Specially crafted database names can trigger the XSS attack. All 4.6.x versions prior to 4.6.4 are affected...

EMC Documentum D2 Cross-Site Scripting Vulnerability (CNVD-2017-01159)

EMC Documentum D2 is an enterprise-class content management system from EMC. The system manages the entire information lifecycle through creation, modification, tracking and other functions, and it includes a number of extensions, such as Documentum Web Publisher Web Content Management, Documentu...