CVE-2026-33884

CVE-2026-33884 affects Statamic CMS (Laravel/Git-based). An authenticated Control Panel user with access to live preview could misuse a live preview token to access restricted content not intended for that token. Root cause: token-based live preview access bypasses content protection for unrelate...

UBUNTU-CVE-2026-27858

Attacker can send a specifically crafted message before authentication that causes managesieve to allocate large amount of memory. Attacker can force managesieve-login to be unavailable by repeatedly crashing the process. Protect access to managesieve protocol, or install fixed version. No public...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989067)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989067 advisory. In the Linux kernel, the following vulnerability has been resolved: char: tpm: Protect tpmpmsuspend with locks Currently tpm transactions are executed unconditionall...

EUVD-2019-1039

Malware in sbrugna...

EUVD-2015-8103

Malware in sbrugna...

EUVD-2022-34191

Malicious code in bioql PyPI...

EUVD-2023-32706

Malicious code in bioql PyPI...

EUVD-2025-16481

Malicious code in bioql PyPI...

CVE-2025-5142

The Simple Page Access Restriction plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0.31. This is due to missing nonce validation and capability checks in the settings save handler in the settings.php script. This makes it possible for...

CVE-2025-5142

CVE-2025-5142 : The Simple Page Access Restriction WordPress plugin (versions

CVE-2022-29881

A vulnerability has been identified in SICAM T All versions V3.0. The web based management interface of affected devices does not employ special access protection for certain internal developer views. This could allow unauthenticated users to extract internal configuration details...

CVE-2024-43892

In the Linux kernel, the following vulnerability has been resolved: memcg: protect concurrent access to memcgroupidr Commit 73f576c04b94 "mm: memcontrol: fix cgroup creation failure after many small jobs" decoupled the memcg IDs from the CSS ID space to fix the cgroup creation failures. It...

Siemens SICAM P850 and SICAM P855 Missing Authentication For Critical Function (CVE-2022-29881)

A vulnerability has been identified in SICAM P850 All versions V3.00, SICAM P855 All versions V3.00. The web based management interface of affected devices does not employ special access protection for certain internal developer views. This could allow unauthenticated users to extract internal...

Siemens SIMATIC Communication Processor (CVE-2015-8214)

A vulnerability has been identified in SIMATIC NET CP 342-5 incl. SIPLUS variants All versions, SIMATIC NET CP 343-1 Advanced incl. SIPLUS variants All versions V3.0.44, SIMATIC NET CP 343-1 Lean incl. SIPLUS variants All versions V3.1.1, SIMATIC NET CP 343-1 Standard incl. SIPLUS variants All...

CVE-2022-29879

A vulnerability has been identified in SICAM T All versions V3.0. The web based management interface of affected devices does not employ special access protection for certain internal developer views. This could allow authenticated users to access critical device information...

CVE-2022-29881

A vulnerability has been identified in SICAM T All versions V3.0. The web based management interface of affected devices does not employ special access protection for certain internal developer views. This could allow unauthenticated users to extract internal configuration details...

CVE-2022-29879

CVE-2022-29879 affects Siemens SICAM P850 and SICAM P855 hardware (all versions prior to v3.0). The issue is Missing Authentication for Critical Function in the web-based management interface, allowing an authenticated user to access critical device information via internal developer views. Affec...

phpfastcache 信息泄露漏洞

phpfastcache is a back-end caching system. An information disclosure vulnerability exists in PhpFastCache, which stems from the software's lack of effective access protection for the "vendor" directory, allowing an attacker to access "phpinfo"...

11 Useful Security Tips for Securing Your AWS Environment

Want to take advantage of excellent cloud services? Amazon Web Services may be the perfect solution, but don't forget about AWS security. Whether you want to use AWS for a few things or everything, you need to protect access to it. Then you can make sure your business can run smoothly. Read on to...

SSRF in adminer

Impact Users of Adminer versions bundling all drivers e.g. adminer.php are affected. Patches Patched by ccd2374b, included in version 4.7.9. Workarounds Use a single driver version e.g. adminer-mysql.php. Protect access to Adminer also by other means, e.g. by HTTP password, IP address limiting or...