CVE-2026-28277

LangGraph: Checkpoint loading vulnerable to unsafe msgpack deserialization in LangGraph SQLite Checkpoint (version

WordPress plugin Emplibot 代码问题漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A code issue...

AZL-64223 CVE-2025-20260 affecting package clamav for versions less than 1.0.9-1

A vulnerability in the PDF scanning processes of ClamAV could allow an unauthenticated, remote attacker to cause a buffer overflow condition, cause a denial of service DoS condition, or execute arbitrary code on an affected device. This vulnerability exists because memory buffers are allocated...

PT-2025-8910 · WordPress · Sakolawp

Name of the Vulnerable Software and Affected Versions: SakolaWP plugin for WordPress versions prior to 1.0.9 Description: The issue is related to Cross-Site Request Forgery due to missing or incorrect nonce validation on the save exam setting and delete exam setting actions. This allows...

PT-2023-20354 · Answerdev · Answer

Name of the Vulnerable Software and Affected Versions: answerdev/answer versions prior to 1.0.9 Description: The issue is related to missing authorization in the GitHub repository answerdev/answer. This can lead to a user rating their own answer as the best answer. Recommendations: For versions...

Intel QATzip softwar 安全漏洞

Intel QATzip is a userspace library from Intel Corporation USA. Built on top of the Intel QuickAssist Technology userspace library, it provides extended accelerated compression. A security vulnerability exists in IntelR QATzip softwar versions prior to 1.0.9, which stems from incorrect access...

SUSE CVE-2009-3618

Cross-site scripting XSS vulnerability in viewvc.py in ViewVC 1.0 before 1.0.9 and 1.1 before 1.1.2 allows remote attackers to inject arbitrary web script or HTML via the view parameter. NOTE: some of these details are obtained from third party information...

WordPress Widgets For Elementor 跨站脚本漏洞

WordPress Plugin is a WordPress open source application plugin . A cross-site scripting vulnerability exists in WordPress JetWidgets For Elementor Plugin versions prior to 1.0.9. An attacker can exploit this vulnerability to launch a cross-site scripting attack...

Cisco Video Surveillance 8000 Series IP Cameras 缓冲区错误漏洞

The Cisco Video Surveillance 8000 series is a video surveillance IP camera from Cisco. A denial of service vulnerability exists in the Cisco Discovery Protocol implementation of the Cisco Video Surveillance 8000 Series prior to version 1.0.9-8, which can be exploited by an attacker to cause the...

CVE-2016-10991

The imdb-widget plugin before 1.0.9 for WordPress has Local File Inclusion...

CVE-2019-15644

The zoho-salesiq plugin before 1.0.9 for WordPress has stored XSS...

CVE-2019-15645

The zoho-salesiq plugin before 1.0.9 for WordPress has CSRF...

CVE-2018-0677

BN-SDWBP3 firmware version 1.0.9 and earlier allows attacker with administrator rights on the same network segment to execute arbitrary OS commands via unspecified vectors...

UBUNTU-CVE-2017-2626

It was discovered that libICE before 1.0.9-8 used a weak entropy to generate keys. A local attacker could potentially use this flaw for session hijacking using the information available from the process list...

WordPress SagePay Server Gateway for WooCommerce Plugin Cross-Site Scripting Vulnerability

WordPress is the WordPress Software Foundation's set of blogging platform developed using the PHP language, the platform supports PHP and MySQL servers to set up a personal blog site.SagePay Server Gateway for WooCommerce plugin is used in one of the payment plugin. A cross-site scripting...

UBUNTU-CVE-2016-4068

Cross-site scripting XSS vulnerability in Roundcube Webmail before 1.0.9 and 1.1.x before 1.1.5 allows remote attackers to inject arbitrary web script or HTML via a crafted SVG, a different vulnerability than CVE-2015-8864...

Borg Spoofing Vulnerability

Borg is a deduplication backup program that supports compression and authentication encryption, among other things. A security vulnerability exists in versions of Borg prior to 1.0.9, which stems from an error in the encryption protocol used to validate manifests archive lists. An attacker could...

DEBIAN-CVE-2014-0487

APT before 1.0.9 does not verify downloaded files if they have been modified as indicated using the If-Modified-Since header, which has unspecified impact and attack vectors...