SUSE CVE-2017-18916

An issue was discovered in Mattermost Server before 3.8.2, 3.7.5, and 3.6.7. API endpoint access control does not honor an integration permission restriction...

CVE-2025-63690

The vulnerability CVE-2025-63690 affects pig-mesh Pig versions 3.8.2 and earlier, in the Quartz management function under the system management module. The issue stems from allowing reflection to instantiate any Java class with a parameterless constructor and invoke methods with String parameters...

WordPress AP Background plugin <= 3.8.2 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by zaim in WordPress Plugin AP Background versions = 3.8.2...

CVE-2025-61188

Jeecgboot versions 3.8.2 and earlier are affected by a path traversal vulnerability. This vulnerability allows attackers to upload files with system-whitelisted extensions to the system directory /opt, instead of the /opt/upFiles directory specified by the web server...

WordPress WP Post Author plugin <= 3.8.2 - SQL Injection vulnerability

SQL Injection vulnerability discovered by Nhat Anh Huynh Patchstack Alliance in WordPress Plugin WP Post Author versions = 3.8.2...

PT-2024-23871 · Unknown · Shortpixel Adaptive Images

Name of the Vulnerable Software and Affected Versions: ShortPixel Adaptive Images versions 3.8.2 and earlier Description: The issue is related to a Missing Authorization vulnerability in ShortPixel Adaptive Images. Recommendations: For versions 3.8.2 and earlier, update to a version later than...

Mattermost Server server restarts may provide attackers with API access

An issue was discovered in Mattermost Server before 3.8.2, 3.7.5, and 3.6.7. After a restart of a server, an attacker might suddenly gain API Endpoint access...