CVE-2026-24941

Missing Authorization vulnerability in wpjobportal WP Job Portal wp-job-portal allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Job Portal: from n/a through = 2.4.4...

CVE-2025-64713

CVE-2025-64713 affects WebAssembly Micro Runtime (WAMR). In fast interpreter mode prior to version 2.4.4, an out-of-bounds access can occur during WASM bytecode loading when frame_ref_bottom and frame_offset_bottom arrays are at capacity, a GET_GLOBAL(I32) opcode expands frame_ref_bottom but not ...

CVE-2025-64704 WebAssembly Micro Runtime vulnerable to a segmentation fault in v128.store instruction

WebAssembly Micro Runtime WAMR is a lightweight standalone WebAssembly Wasm runtime. Prior to version 2.4.4, WAMR is susceptible to a segmentation fault in v128.store instruction. This issue has been patched in version 2.4.4...

ALPINE-CVE-2025-5244

A vulnerability was found in GNU Binutils up to 2.44. It has been rated as critical. Affected by this issue is the function elfgcsweep of the file bfd/elflink.c of the component ld. The manipulation leads to memory corruption. An attack has to be approached locally. The exploit has been disclosed...

WordPress plugin RapidLoad 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

PT-2024-35296 · Unknown · Awesome Studio

Name of the Vulnerable Software and Affected Versions: Awesome Studio versions prior to 2.4.4 Description: The issue is related to improper neutralization of input during web page generation, which allows for reflected Cross-site Scripting XSS. This enables attackers to inject malicious scripts...

CVE-2024-20716

Adobe Commerce versions 2.4.6-p3, 2.4.5-p5, 2.4.4-p6 and earlier are affected by an Uncontrolled Resource Consumption vulnerability that could lead to an application denial-of-service. A high-privileged attacker could leverage this vulnerability to exhaust system resources, causing the applicatio...

PT-2022-6814 · Unknown +1 · Openimageio +1

Name of the Vulnerable Software and Affected Versions: OpenImageIO version 2.4.4.2 Description: Multiple code execution vulnerabilities exist in the IFFOutput::close functionality of OpenImageIO. A specially crafted ImageOutput Object can lead to a heap buffer overflow. This issue arises when the...

CVE-2021-43136

An authentication bypass issue in FormaLMS = 2.4.4 allows an attacker to bypass the authentication mechanism and obtain a valid access to the platform...

pfSense cross-site scripting vulnerability (CNVD-2019-19311)

pfSense is a set of network firewalls based on FreeBSD Linux. A cross-site scripting vulnerability exists in pfSense versions 2.4.4-p2 and 2.4.4-p3. The vulnerability stems from the lack of proper validation of client data by the WEB application. An attacker can exploit the vulnerability to execu...

Unspecified vulnerability in Open Build Service API controller

The Open Build Service API is a common system for building and distributing packages from source code in an automated, consistent and repeatable manner. controller is one of the controllers. A security vulnerability exists in the controller in versions of the Open Build Service API prior to 2.4.4...

Exempi 'PostScript_MetaHandler::ParsePSFile()' function heap buffer overflow vulnerability

Exempi is an open source implementation of XMP based on the Adobe XMP SDK. A heap buffer overflow vulnerability exists in the 'PostScriptMetaHandler::ParsePSFile' function in the XMPFiles/source/FileHandlers/PostScriptHandler.cpp file in Exempi 2.4.4 and earlier. An attacker can exploit this...

PT-2004-3765 · Gtk+ · Gtk2 +1

Name of the Vulnerable Software and Affected Versions: gtk2 versions 2.4.4 and earlier gdk-pixbuf versions prior to 0.22 Description: The issue is related to multiple vulnerabilities in the gtk2 and gdk-pixbuf packages, which can lead to disruption of confidentiality, integrity, and availability ...