9794 matches found
CVE-2025-30028
A vulnerability in Active Backup for Business allows unauthorized remote attackers to read arbitrary files...
EUVD-2025-209961
A vulnerability in Active Backup for Business allows unauthorized remote attackers to read arbitrary files...
CVE-2025-30028
A vulnerability in Active Backup for Business allows unauthorized remote attackers to read arbitrary files...
CVE-2025-30028
A vulnerability in Active Backup for Business allows unauthorized remote attackers to read arbitrary files...
Jenkins Active Directory Plugin 安全漏洞
The Jenkins Active Directory Plugin is an identity integration plugin developed under the open-source project of Jenkins. Versions of the Jenkins Active Directory Plugin prior to 2.41 contained security vulnerabilities, which stemmed from the default behavior of following LDAP references...
Jenkins Active Directory Plugin 安全漏洞
The Jenkins Active Directory Plugin is an identity integration plugin developed under open source by Jenkins. Versions of the Jenkins Active Directory Plugin 2.41 and earlier contained a security vulnerability, which was caused by unvalidated deserialization of LDAP reference data...
Ubuntu 22.04 LTS / 24.04 LTS / 25.10 / 26.04 LTS : Samba vulnerabilities (USN-8306-1)
The remote Ubuntu 22.04 LTS / 24.04 LTS / 25.10 / 26.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-8306-1 advisory. Asim Viladi Oglu Manizada discovered that Samba incorrectly handled access checks on reparse point operations. An attacke...
Synology Active Backup for Business SQL注入漏洞
Synology Active Backup for Business is an enterprise data backup and recovery management platform provided by the Chinese company Synology. Synology Active Backup for Business has a SQL injection vulnerability, which allows unauthorized remote attackers to read arbitrary files...
Synology Active Backup for Business Agent 访问控制错误漏洞
Synology Active Backup for Business Agent is an enterprise data backup and recovery management platform developed by Synology, a Chinese company. Versions of Synology Active Backup for Business Agent prior to 3.1.0-4967 contained a access control vulnerability caused by a source verification erro...
WordPress plugin Active Products Tables for WooCommerce SQL注入漏洞
WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows users to create personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be installed t...
WordPress plugin Active Products Tables for WooCommerce SQL注入漏洞
WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows users to create personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be installed t...
PT-2026-43639
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in RealMag777 Active Products Tables for WooCommerce profit-products-tables-for-woocommerce allows Blind SQL Injection.This issue affects Active Products Tables for WooCommerce: from n/a through = 1.0...
PT-2026-43669
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in RealMag777 Active Products Tables for WooCommerce profit-products-tables-for-woocommerce allows Blind SQL Injection.This issue affects Active Products Tables for WooCommerce: from n/a through = 1.0...
PT-2026-44012
Name of the Vulnerable Software and Affected Versions Jenkins Active Directory Plugin versions prior to 2.42 Description The plugin deserializes data from LDAP referrals without proper validation. Deserialization is the process of converting a data stream back into an object, which, when performe...
PT-2026-43588
A vulnerability in Active Backup for Business allows unauthorized remote attackers to read arbitrary files...
PT-2026-44011
Jenkins Active Directory Plugin 2.41 and earlier follows LDAP referrals by default...
CVE-2026-33843
Authentication bypass using an alternate path or channel in Microsoft Azure Active Directory B2C allows an unauthorized attacker to elevate privileges over a network...
SUSE-SU-2026:2071-1 Security update for samba
This update for samba fixes the following issues - CVE-2026-2340: vfsworm does not block directory modification bsc1261158. - CVE-2026-3238: unauthenticated udp packet crashes AD DC nbt server bsc1261160. - CVE-2026-4408: Remote Code Execution in SAMR bsc1261163. - CVE-2026-4480: Unauthenticated...
CVE-2026-42151
A flaw was found in Prometheus, an open-source monitoring system. The clientsecret field within the Azure Active Directory AD remote write OAuth configuration was incorrectly handled as a plain string instead of a secure Secret type. This misconfiguration allowed any user or process with access t...
PT-2026-43439
Name of the Vulnerable Software and Affected Versions ctdb versions prior to 4.23.8+git.477.f78166bceed-1.1 Description A denial of service issue exists against the AD DC WINS server. Recommendations Update to version 4.23.8+git.477.f78166bceed-1.1...