CVE-2026-3210

Incorrect Authorization vulnerability in Drupal Material Icons allows Forceful Browsing.This issue affects Material Icons: from 0.0.0 before 2.0.4...

CVE-2023-0777

Authentication Bypass by Primary Weakness in GitHub repository modoboa/modoboa prior to 2.0.4...

CVE-2025-3733

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Drupal baguetteBox.Js allows Cross-Site Scripting XSS.This issue affects baguetteBox.Js: from 0.0.0 before 2.0.4, from 3.0.0 before 3.0.1...

JSONata Security Vulnerabilities

JSONata is a JSON query and transformation language. A security vulnerability exists in JSONata versions 1.4.0 through prior to 2.0.4, which stems from a malicious expression that can override attributes on object constructors and prototypes using conversion operators, which could result in a...

modoboa 跨站请求伪造漏洞

modoboa is an email hosting and management platform for individual developers. modoboa versions prior to 2.0.4 are vulnerable to cross-site request forgery. An attacker could exploit this vulnerability to perform cross-site request forgery CSRF attacks...

WordPress Ultimate Member plugin path traversal vulnerability (CNVD-2018-09595)

WordPress is the WordPress Software Foundation's set of blogging platform developed using the PHP language, which supports personal blog sites on servers with PHP and MySQL.Ultimate Member is one of the plug-ins used to create a membership site or online community. A directory traversal...