18 matches found
CVE-2026-8174
Zohocorp Zoho Mail wordpress plugin is vulnerable to Cross-Site request forgery CSRF. This issue affects Zoho Mail wordpress plugin versions before 1.6.2...
EUVD-2026-31811
Zohocorp Zoho Mail wordpress plugin is vulnerable to Cross-Site request forgery CSRF. This issue affects Zoho Mail wordpress plugin versions before 1.6.2...
CVE-2026-8174 Cross-site Request Forgery
Zohocorp Zoho Mail wordpress plugin is vulnerable to Cross-Site request forgery CSRF. This issue affects Zoho Mail wordpress plugin versions before 1.6.2...
CVE-2026-8174
Zohocorp Zoho Mail wordpress plugin is vulnerable to Cross-Site request forgery CSRF. This issue affects Zoho Mail wordpress plugin versions before 1.6.2...
CVE-2026-8174 Cross-site Request Forgery
Zohocorp Zoho Mail wordpress plugin is vulnerable to Cross-Site request forgery CSRF. This issue affects Zoho Mail wordpress plugin versions before 1.6.2...
PT-2026-43243
Zohocorp Zoho Mail wordpress plugin is vulnerable to Cross-Site request forgery CSRF. This issue affects Zoho Mail wordpress plugin versions before 1.6.2...
CVE-2025-56332
CVE-2025-56332 affects fosrl/pangolin,
PT-2025-43956
Name of the Vulnerable Software and Affected Versions VeePN versions up to 1.6.2 Description A weakness exists in VeePN related to an unquoted search path within the AVService component. The issue affects the file C:Program Files x86VeePNavserviceavservice.exe and an unknown function within it...
Hikka 授权问题漏洞
Hikka is a developer-oriented Telegram user bot by Daniil Gazizullin Personal Developer. An authorization issue vulnerability exists in Hikka versions prior to 1.6.2, which stems from an unauthenticated attacker being able to gain full access to a victim's Telegram account and server...
CVE-2023-2138
Use of Hard-coded Credentials in GitHub repository nuxtlabs/github-module prior to 1.6.2...
PayPal Plugin 安全漏洞
PayPal Plugin is an open source plugin for the PayPal commerce platform from Sylius eCommerce. A security vulnerability exists in PayPal Plugin versions prior to 1.6.2, prior to 1.7.2, and prior to 2.0.2, which originates from a user being able to modify the shopping cart after completing the...
TinaCMS 安全漏洞
TinaCMS is an open source headless CMS for Markdown, MDX and JSON. A security vulnerability exists in TinaCMS versions prior to 1.6.2, which stems from a search token that may be leaked via a lock file...
cocoapods-downloader 参数注入漏洞
cocoapods-downloader is a small library. It is used to download files from remotes in folders. A security vulnerability exists in cocoapods-downloader, which stems from git parameter injection. The following products and versions are affected: versions prior to 1.6.0, versions prior to 1.6.2, and...
CVE-2021-43812
The Auth0 Next.js SDK is a library for implementing user authentication in Next.js applications. Versions before 1.6.2 do not filter out certain returnTo parameter values from the login url, which expose the application to an open redirect vulnerability. Users are advised to upgrade as soon as...
PT-2021-18682 · Hashicorp · Hashicorp Vault +1
Name of the Vulnerable Software and Affected Versions: HashiCorp Vault and Vault Enterprise versions prior to 1.5.7 HashiCorp Vault and Vault Enterprise versions prior to 1.6.2 Description: The issue allows the disclosure of the internal IP address of the Vault node when responding to some invali...
PT-2020-12432 · Memcached +1 · Memcached +1
Name of the Vulnerable Software and Affected Versions: memcached versions 1.6.x before 1.6.2 Description: The issue allows remote attackers to cause a denial of service, resulting in a daemon crash. This is achieved by sending a crafted binary protocol header to the try read command binary functi...
PT-2015-6104
Name of the Vulnerable Software and Affected Versions Rack versions prior to 1.5.4 Rack versions 1.6.x prior to 1.6.2 Description The issue allows remote attackers to cause a denial of service, resulting in a SystemStackError, via a request with a large parameter depth. This affects products that...
Qemu: block: possible crash due signed types or logic error
Qemu before 1.6.2 block diver for the various disk image formats used by Bochs and for the QCOW version 2 format, are vulnerable to a possible crash caused by signed data types or a logic error while creating QCOW2 snapshots, which leads to incorrectly calling updaterefcount routine...