5180 matches found
CVE-2026-20704
The CVE-2026-20704 applies to the WRC-X1500GS-B and WRC-X1500GSA-B concrete models. The connected sources confirm a Cross‑Site Request Forgery (CSRF) vulnerability that can allow unintended operations when a logged‑in user visits a malicious page. The underlying root cause details are not provide...
ELECOM WRC-X1500GS-B和ELECOM WRC-X1500GSA-B 跨站请求伪造漏洞
ELECOM WRC-X1500GS-B and ELECOM WRC-X1500GSA-B are wireless routers produced by the Japanese company ELECOM. Both devices have a vulnerability related to cross-site request forgery. This vulnerability stems from cross-site request forgery attacks, which may cause unexpected behaviors when logged-...
PT-2026-6084
Name of the Vulnerable Software and Affected Versions WRC-X1500GS-B WRC-X1500GSA-B Description A cross-site request forgery issue exists in the product. If a logged-in user accesses a malicious page, unintended operations may be performed. Recommendations At the moment, there is no information...
PT-2026-6108
Name of the Vulnerable Software and Affected Versions WRC-X1500GS-B WRC-X1500GSA-B Description An OS command injection issue exists in WRC-X1500GS-B and WRC-X1500GSA-B. A specially crafted request originating from an authenticated user could allow for the execution of arbitrary OS commands...
PT-2026-6194
Name of the Vulnerable Software and Affected Versions WRC-X1500GS-B WRC-X1500GSA-B Description The initial passwords for the devices can be easily calculated from system information. Recommendations At the moment, there is no information about a newer version that contains a fix for this...
ELECOM WRC-X1500GS-B和ELECOM WRC-X1500GSA-B 安全漏洞
ELECOM WRC-X1500GS-B and ELECOM WRC-X1500GSA-B are wireless routers produced by the Japanese company ELECOM. Both devices have security vulnerabilities, where the initial password can be easily calculated from system information...
ELECOM WRC-X1500GS-B和ELECOM WRC-X1500GSA-B 操作系统命令注入漏洞
ELECOM WRC-X1500GS-B and ELECOM WRC-X1500GSA-B are wireless routers produced by the Japanese company ELECOM. Both devices have a vulnerability related to OS command injection. This vulnerability stems from the ability to execute arbitrary OS commands through OS command injection...
WordPress B Slider plugin <= 2.0.6 - Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability discovered by Jitlada in WordPress Plugin B Slider versions = 2.0.6...
B&R Industrial Automation Process Visualization Interface log information leakage vulnerability
B&R Industrial Automation Process Visualization Interface is a process visualization tool developed by B&R Industrial Automation in Austria. Versions of the B&R Industrial Automation Process Visualization Interface prior to version 6.5 contained a vulnerability related to log information leakage...
CVE-2026-24383
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bPlugins B Slider b-slider allows DOM-Based XSS.This issue affects B Slider: from n/a through = 2.0.6...
CVE-2026-24565
Insertion of Sensitive Information Into Sent Data vulnerability in bPlugins B Accordion b-accordion allows Retrieve Embedded Sensitive Data.This issue affects B Accordion: from n/a through = 2.0.2...
CVE-2026-24565 WordPress B Accordion plugin <= 2.0.2 - Sensitive Data Exposure vulnerability
Insertion of Sensitive Information Into Sent Data vulnerability in bPlugins B Accordion b-accordion allows Retrieve Embedded Sensitive Data.This issue affects B Accordion: from n/a through = 2.0.2...
CVE-2026-24565
CVE-2026-24565 affects WordPress plugin B Accordion (b-accordion) up to version 2.0.0. A flaw results from insertion of sensitive information into sent data, allowing retrieval of embedded sensitive data and exposing confidential information (CVE details and Wordfence/patch sources confirm exposu...
CVE-2026-24565 WordPress B Accordion plugin <= 2.0.2 - Sensitive Data Exposure vulnerability
Insertion of Sensitive Information Into Sent Data vulnerability in bPlugins B Accordion b-accordion allows Retrieve Embedded Sensitive Data.This issue affects B Accordion: from n/a through = 2.0.2...
CVE-2026-24565
Insertion of Sensitive Information Into Sent Data vulnerability in bPlugins B Accordion b-accordion allows Retrieve Embedded Sensitive Data.This issue affects B Accordion: from n/a through = 2.0.0...
PT-2026-4407
Name of the Vulnerable Software and Affected Versions bPlugins B Accordion versions through 2.0.0 Description A flaw exists in bPlugins B Accordion b-accordion that allows the retrieval of embedded sensitive data due to insertion of sensitive information into sent data. Recommendations Update to ...
CVE-2026-24383
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bPlugins B Slider b-slider allows DOM-Based XSS.This issue affects B Slider: from n/a through = 2.0.6...
CVE-2026-24383 WordPress B Slider plugin <= 2.0.6 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bPlugins B Slider b-slider allows DOM-Based XSS.This issue affects B Slider: from n/a through = 2.0.6...
CVE-2026-24383 WordPress B Slider plugin <= 2.0.6 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bPlugins B Slider b-slider allows DOM-Based XSS.This issue affects B Slider: from n/a through = 2.0.6...
CVE-2026-24383
CVE-2026-24383 concerns the WordPress plugin B Slider (b-slider) with versions up to and including 2.0.6, which is affected by a DOM-based Cross-Site Scripting (XSS) in input handling during web page generation. The vulnerability is classified as medium severity (CVSSv3.1: AV:N/AC:L/PR:L/UI:R/S:C...