6 matches found
PT-2026-22290
Name of the Vulnerable Software and Affected Versions Fluent Forms Pro Add On Pack for WordPress versions through 6.1.17 Description The software contains a flaw related to insufficient verification of data authenticity. Specifically, PayPal IPN Instant Payment Notification verification is disabl...
EUVD-2025-35361
Hugging Face Smolagents XPath injection vulnerability in the searchitemctrlf function...
The vulnerability of Adobe InDesign’s automation tool for computer design lies in the possibility of buffer overflow in dynamic memory, allowing attackers to execute arbitrary code.
The vulnerability of Adobe InDesign’s computer layout automation tool is related to overflowing buffers in dynamic memory. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially created malicious file...
CVE-2024-43654
Improper Neutralization of Special Elements used in a Command 'Command Injection' vulnerability in Iocharger firmware for AC models allows OS Command Injection as root This issue affects all Iocharger AC EV charger models on a firmware version before 25010801. Likelihood: Moderate – The binary do...
CVE-2024-43653
CVE-2024-43653 affects Iocharger AC model chargers running firmware before 24120701. The issue is an authenticated command-injection flaw in the action that lets an attacker execute OS commands as root, giving full control over the charging station (files/services). Impact is described as critic...
Cybersecurity Analysts: Job Stress Is Bad, but Boredom Is Kryptonite
Years ago, “airline pilot” used to be a high-stress profession. Imagine being in personal control of equipment worth millions hurtling through the sky on an irregular schedule with the lives of all the passengers in your hands. But today on any given flight, autopilot is engaged almost 90% of the...