6 matches found
CVE-2025-31690
Cross-Site Request Forgery CSRF vulnerability in Drupal Cache Utility allows Cross Site Request Forgery.This issue affects Cache Utility: from 0.0.0 before 1.2.1...
WordPress plugin Hash Form 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...
Flatpress 代码问题漏洞
FlatPress is a Php-based blog builder without database support from the FlatPress community. A code issue vulnerability exists in Flatpress versions prior to v1.2.1, which stems from a Remote Code Execution RCE vulnerability contained in the upload file feature...
PT-2022-8603 · Unknown +2 · Platinum Upnp Sdk +2
Name of the Vulnerable Software and Affected Versions: Platinum Upnp SDK versions prior to 1.2.1 Description: The issue allows for a directory traversal attack, which could be exploited by sending a malicious URL, such as "http://ip:port/../privacy.avi", to compromise a victim's privacy. This cou...
Anymail Timing Attack Vulnerability
Anymail aka django-anymail is an open source e-mail sending and receiving system . A security vulnerability exists in the webhooks/base.py file in versions of Anymail prior to 1.2.1. No details of the vulnerability are provided at this time...
DMM Movie Player App for Android and for iPhone/iPad Man-in-the-Middle Attack Vulnerability
DMM Movie Player App is a suite of video player applications from DMM Japan. A security vulnerability exists in DMM Movie Player App for Android before 1.2.1 and for iPhone/iPad before 2.1.3, which originates from the program failing to validate an SSL server-side certificate. An attacker could u...