7 matches found
CVE-2026-42758
CVE-2026-42758 is a privilege-escalation vulnerability in the WordPress WebinarIgnition plugin (Saleswonder Team: Tobias WebinarIgnition). The issue is described as Incorrect Privilege Assignment and affects WebinarIgnition versions before 4.08.253. The vulnerability is categorized with a high/cr...
CVE-2025-71132 affecting package kernel for versions less than 6.6.121.1-1
CVE-2025-71132 affecting package kernel for versions less than 6.6.121.1-1. An upgraded version of the package is available that resolves this issue...
CVE-2026-0897 affecting package keras for versions less than 3.3.3-6
CVE-2026-0897 affecting package keras for versions less than 3.3.3-6. A patched version of the package is available...
CVE-2026-0696 Session Cookies Missing HttpOnly Attribute
In ConnectWise PSA versions older than 2026.1, certain session cookies were not set with the HttpOnly attribute. In some scenarios, this could allow client-side scripts access to session cookie values...
CVE-2019-5284
There is a DoS vulnerability in RTSP module of Leland-AL00A Huawei smart phones versions earlier than Leland-AL00A 9.1.0.111C00E111R2P10T8. Remote attackers could trick the user into opening a malformed RTSP media stream to exploit this vulnerability. Successful exploit could cause the affected...
CVE-2016-9645
The fix for ikiwiki for CVE-2016-10026 was incomplete resulting in editing restriction bypass for git revert when using git versions older than 2.8.0. This has been fixed in 3.20161229...
Squid < 3.0.STABLE24 / 2.7.STABLE8 / 2.6.STABLE24
According to its banner, the version of the Squid proxy caching server installed on the remote host is older than 3.0.STABLE24 / 2.7.STABLE8 / 2.6.STABLE24. Such versions de-reference a NULL pointer while handling certain Hypertext Caching Protocol HTCP requests. This mishandling can be abused by...