13 matches found
PT-2026-1618
Name of the Vulnerable Software and Affected Versions Simcast plugin for WordPress versions prior to 1.0.1 Description The Simcast plugin for WordPress is susceptible to Cross-Site Request Forgery. This is caused by inadequate nonce validation within the settingsPage function. An unauthenticated...
EUVD-2025-36877
Drupal Umami Analytics allows Cross-Site Scripting XSS...
CVE-2025-10931
CVE-2025-10931 corresponds to a Cross-Site Scripting (XSS) vulnerability in Drupal Umami Analytics. The connected sources confirm the flaw arises from improper neutralization of input during web page generation and affects Umami Analytics versions prior to 1.0.1 (e.g., 0.0.0 up to before 1.0.1). ...
RevelaCode 安全漏洞
RevelaCode is an AI program for interpreting Bible verses by the individual developer Musombi William. A security vulnerability exists in versions of RevelaCode prior to 1.0.1, which stems from a MongoDB Atlas URI disclosure that could lead to unauthorized access to the database...
PT-2023-4653 · Unknown · Mxsecurity
Name of the Vulnerable Software and Affected Versions: MXsecurity versions prior to 1.0.1 Description: The issue is related to insufficient entropy in the web service authenticator, which can be exploited by a remote attacker to bypass authentication and potentially access the system. This is due...
WordPress plugin Beeliked Microsite 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting vulnerability...
SUSE CVE-2018-25013
A heap-based buffer overflow was found in libwebp in versions before 1.0.1 in ShiftBytes...
Roomer 授权问题漏洞
Roomer is a discord bot cog extension. It provides automatic voice channel generation as well as private voice and text channels. There is an authorization issue vulnerability in Roomer versions prior to 1.0.1, no detailed vulnerability details are provided at this time...
A flaw was found in libwebp in versions before 1.0.1. A heap-based buffer overflow in function WebPDecodeRGBInto is possible due to an invalid check for buffer size. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.
...
CVE-2018-25012
A heap-based buffer overflow was found in libwebp in versions before 1.0.1 in GetLE24...
libwebp 安全漏洞
Libwebp is a WebP image format encoding and decoding library . A security vulnerability exists in versions of Libwebp prior to 1.0.1. The vulnerability stems from the use of a single variable in the ReadSymbol function. An attacker could exploit the vulnerability to threaten data confidentiality...
libwebp 资源管理错误漏洞
Libwebp is a WebP image format encoding and decoding library . A buffer overflow vulnerability exists in Libwebp versions prior to 1.0.1, which stems from libwebp allocating too much memory when reading a file and can be exploited by an attacker to cause a service crash...
GPAC 缓冲区错误漏洞
GPAC is a multimedia framework for rich media and distributed under the LGPL license. A heap buffer overflow vulnerability exists in the abstboxread function in boxcodeadobe.c in versions of GPAC prior to 1.0.1. No detailed vulnerability details are provided at this time...