9 matches found
17fe-ui23 (>=0.0.0 <=0.0.24), @2kog/pkg-editor (>=0.0.1 <=0.1.3) +584 more potentially affected by CVE-2026-47762 via tinymce (>=6.0.0 <=7.5.1)
tinymce NPM version =6.0.0, =0.0.0, =0.0.1, =12.1.0, =4.1.0, =1.0.0-beta.1, =4.1.2-rc, =1.0.0, =0.1.0, =0.1.19, =0.1.0, =0.1.1 and more Source cves: CVE-2026-47762 Source advisory: OSV:GHSA-V98H-VMPC-FPQV...
EUVD-2026-33850
The Slider Revolution plugin for WordPress in versions 6.0.0-6.7.55 and 7.0.0-7.0.14 is vulnerable to unauthorized modification of data. This is due to the plugin not properly verifying that a user is authorized to perform an action. This makes it possible for authenticated attackers, with...
org.apache.activemq:activemq-http (>=6.0.0 <=6.2.1), org.apache.activemq:activemq-karaf (>=6.0.0 <=6.2.1) +4 more potentially affected by CVE-2026-33227 via org.apache.activemq:activemq-mqtt (>=6.0.0 <=6.2.1)
org.apache.activemq:activemq-mqtt MAVEN version =6.0.0, =6.0.0, =6.0.0, =6.0.0, =6.0.0, =6.0.0, =6.0.0, =6.2.1 Source cves: CVE-2026-33227 Source advisory: SNYK:JAVA-ORGAPACHEACTIVEMQ-15930952...
@antora/cli (>=2.3.2 <=3.0.0-alpha.9), @antora/playbook-builder (>=2.3.2 <=3.0.0-alpha.9) +54 more potentially affected by CVE-2026-33864 via convict (>=6.0.0 <=6.2.2)
convict NPM version =6.0.0, =2.3.2, =2.3.2, =2.3.2, =1.6.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.7.0 and more Source cves: CVE-2026-33864 Source advisory: SNYK:JS-CONVICT-15182994...
Joomla! XSS Vulnerability (20260102)
Joomla! is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:joomla:joomla";...
PT-2025-37860
Name of the Vulnerable Software and Affected Versions Ghost versions 5.99.0 through 5.130.3 Ghost versions 6.0.0 through 6.0.8 Description A Server-Side Request Forgery SSRF vulnerability exists in Ghost that allows an attacker to access internal resources. The vulnerability is present in Ghost’s...
bounded-prescience (=0.0.3), chainer-chemistry (=0.7.1) +21 more potentially affected by CVE-2024-48206 via chainer (>=6.0.0 <=7.8.1)
chainer PYPI version =6.0.0, =0.1.0, =0.2.0, =0.3.0, =0.0.1, =0.1.0, =0.6.1, =0.2.0, =0.6.0.post1, =1.3.1, =2024.0.0, =2024.0.1 and more Source cves: CVE-2024-48206 Source advisory: SNYK:PYTHON-CHAINER-8340635...
PT-2023-14805
Name of the Vulnerable Software and Affected Versions: thinkphp versions 6.0.0 through 6.0.13 thinkphp versions 6.1.0 through 6.1.1 Description: The issue allows attackers to execute arbitrary code via a crafted payload, exploiting a deserialization vulnerability. This can be achieved by sending ...
F5 BIG-IQ Centralized Management Cross-Site Scripting Vulnerability
F5 BIG-IQ Centralized Management is a software-based cloud management solution from F5 USA. The solution supports the deployment of application delivery and network services across public and private clouds, traditional data centers and hybrid environments. A cross-site scripting vulnerability in...