CVE-2026-27313 Bridge | Heap-based Buffer Overflow (CWE-122)

Bridge versions 16.0.2, 15.1.4 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

Hybridauth 信任管理问题漏洞

Hybridauth is an open-source web-based authentication and authorization software developed by Hybridauth. Versions of Hybridauth 3.12.2 and earlier contained a vulnerability related to trust management. This vulnerability stemmed from incorrect handling of parameters in the curlOptions file withi...

Infoblox NIOS 安全漏洞

Infoblox NIOS is a system developed by the American company Infoblox, used for managing and automating network devices and services. It is utilized to automate the configuration and management of networks, ensuring stable network operation. The Infoblox NIOS 9.0.7 and earlier versions have securi...

CVE-2025-54283

CVE-2025-54283 affects Adobe Illustrator versions 29.7, 28.7.9 and earlier. The issue is an out-of-bounds write in the renderer that can lead to arbitrary code execution in the context of the current user. Exploitation requires user interaction: a victim must open a specially crafted malicious fi...

WordPress Evergreen Content Poster plugin <= 1.4.5 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Mika in WordPress Plugin Evergreen Content Poster versions = 1.4.5...

WordPress plugin Varnish WordPress 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site request...

Advantech EKI-6333AC-2G和Advantech EKI-6333AC-2GD 安全漏洞

The Advantech EKI-6333AC-2G and Advantech EKI-6333AC-2GD are both industrial-grade wireless access points APs from Advantech, China. A security vulnerability exists in the Advantech EKI-6333AC-2G version 1.6.3 and earlier, EKI-6333AC-2GD version v1.6.3 and earlier, and EKI-6333AC-1GPO version...

PT-2024-24898 · WordPress · Rate My Post – Wp Rating System

Name of the Vulnerable Software and Affected Versions: Rate my Post – WP Rating System versions 3.4.4 and earlier Description: The issue is related to an Authorization Bypass Through User-Controlled Key vulnerability in the FeedbackWP Rate my Post – WP Rating System. Recommendations: For versions...

WordPress plugin Admin Management Xtended 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plug-in. WorWordPress Admin Management Xtended plugin 2.4.4 and earlier versions are vulnerable to cross-site request...

Foxit Studio Photo 缓冲区错误漏洞

Foxit Studio Photo is a set of image editing software from the Chinese company Foxit Foxit. A remote code execution vulnerability exists in the handling of NEF files in Foxit Studio Photo 3.6.6.930 and earlier versions. The vulnerability stems from a lack of proper validation of user-supplied dat...