PT-2026-7315

Name of the Vulnerable Software and Affected Versions IntelR Memory and Storage Tool versions prior to 2.5.2 Description The IntelR Memory and Storage Tool, in versions before 2.5.2, has default permissions that may allow a local escalation of privilege. An authenticated user with a high complexi...

CVE-2023-25695

Generation of Error Message Containing Sensitive Information vulnerability in Apache Software Foundation Apache Airflow.This issue affects Apache Airflow: before 2.5.2...

RSEC-2025-1 Risk of __proto__ pollution Vulnerability

The plotly R package up through the latest 4.11.0 includes plotly.js library 2.11.1. Plotly.js releases prior to version 2.25.2 have a risk of proto being polluted in expandObjectPaths or nestedProperty...

CVE-2025-27010 WordPress Tastyc < 2.5.2 - Local File Inclusion Vulnerability

Path Traversal: '.../...//' vulnerability in bslthemes Tastyc tastyc allows PHP Local File Inclusion.This issue affects Tastyc: from n/a through 2.5.2...

AZL-60894 CVE-2024-58250 affecting package ppp 2.4.7-36

The passprompt plugin in pppd in ppp before 2.5.2 mishandles privileges...

ppp 安全漏洞

ppp is an open source library from Paul PPP Package that implements the peer-to-peer protocol ppp. A security vulnerability exists in versions of ppp prior to 2.5.2 that stems from improper handling of permissions by the passprompt plugin...

WordPress Droip plugin < 2.5.2 - Arbitrary File Deletion vulnerability

Arbitrary File Deletion vulnerability discovered by Dave Jong Patchstack in WordPress Plugin Droip versions 2.5.2...

HackMD CodiMD Security Vulnerabilities

CodiMD is a real-time collaborative note-taking application open-sourced by HackMD. A security vulnerability exists in HackMD CodiMD versions prior to 2.5.2 that stems from vulnerability to denial of service attacks...

Rdiffweb 安全漏洞

Rdiffweb is a web application by Patrik Dufresne, an individual developer in the USA. It provides quick access to your files through an efficient web interface. A security vulnerability exists in Rdiffweb versions prior to 2.5.2, which stems from improper privilege management...

WordPress plugin PublishPress Capabilities 代码问题漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A code issue vulnerability exists i...

CVE-2022-24128

Timescale TimescaleDB 1.x and 2.x before 2.5.2 may allow privilege escalation during extension installation. The installation process uses commands such as CREATE x IF NOT EXIST that allow an unprivileged user to precreate objects. These objects will be used by the installer which executes as...

Facade Ignition for Laravel Authorization Issues Vulnerability

Facade Ignition for Laravel is a customizable error page from Facade Belgium that runs in the Laravel web framework. An authorization issue vulnerability exists in Ignition for Laravel versions prior to 2.5.2, which stems from the program not properly authenticating, and can be exploited by an...