CVE-2026-8365

The Blocksy theme for WordPress is vulnerable to PHP Object Injection leading to Remote Code Execution via the 'blocksymeta' REST API field and the V200 database migration in versions up to and including 2.1.35. This is due to insufficient input sanitization in the blocksysanitizepostmetaoptions...

PT-2026-47723

Name of the Vulnerable Software and Affected Versions Blocksy versions prior to 2.1.36 Description Insufficient input sanitization in the blocksy sanitize post meta options function allows authenticated attackers with contributor-level access or higher to store serialized PHP object strings in po...

SUSE CVE-2026-29111

systemd, a system and service manager, as PID 1 hits an assert and freezes execution when an unprivileged IPC API call is made with spurious data. On version v249 and older the effect is not an assert, but stack overwriting, with the attacker controlled content. From version v250 and newer this i...

SODOLA SL902-SWTGW124AS 安全漏洞

SODOLA SL902-SWTGW124AS is an industrial switch manufactured by the Spanish company SODOLA. Versions of SODOLA SL902-SWTGW124AS prior to version 200.1.20 contain security vulnerabilities. These vulnerabilities stem from authentication bypass vulnerabilities, which may allow remote attackers to...

SAP Business Planning and Consolidation 代码问题漏洞

SAP Business Planning and Consolidation is a business planning and consolidation software from SAP, Germany. The software provides budgeting, forecasting, and financial consolidation capabilities. A code issue vulnerability exists in SAP Business Planning and Consolidation version 200, version 30...

PT-2023-19252 · Sap · Sap Business Planning/Consolidation

Name of the Vulnerable Software and Affected Versions: SAP Business Planning and Consolidation versions 200, 300 Description: The issue allows an attacker with business authorization to upload any files, including web pages, without proper file format validation. If other users visit the uploaded...

Unspecified vulnerability in myFax

myFax is a software application. A complete fax solution for the Internet. A security vulnerability exists in myFax that stems from version 229 of myFax logging sensitive information in the export log module, which can be exploited by an attacker to access critical information...

An allocation of memory without limits that could result in the stack clashing with another memory region was discovered in systemd-journald when a program with long command line arguments calls syslog. A local attacker may use this flaw to crash systemd-journald or escalate his privileges. Versions through v240 are vulnerable.

...

PT-2017-13302 · Intelbras · Intelbras Wireless N 150Mbps Router

Name of the Vulnerable Software and Affected Versions: Intelbras Wireless N 150Mbps router with firmware WRN 240 Description: The issue allows attackers to steal wireless credentials without being connected to the network. This is related to userRpm/popupSiteSurveyRpm.htm and...