JLSEC-2026-382

libexpat before 2.7.5 allows an infinite loop while parsing DTD content...

JLSEC-2026-381

libexpat before 2.7.5 allows a NULL pointer dereference with empty external parameter entity content...

Slackware Linux 15.0 / current expat Multiple Vulnerabilities (SSA:2026-077-01)

The version of expat installed on the remote host is prior to 2.7.5. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2026-077-01 advisory. New expat packages are available for Slackware 15.0 and -current to fix security issues. Tenable has extracted the preceding...

CVE-2026-32778

libexpat before 2.7.5 allows a NULL pointer dereference in the function setContext on retry after an earlier ouf-of-memory condition...

CVE-2026-32778

libexpat before 2.7.5 allows a NULL pointer dereference in the function setContext on retry after an earlier ouf-of-memory condition...

CVE-2026-32777

libexpat before 2.7.5 allows an infinite loop while parsing DTD content...

CVE-2026-32776

libexpat before 2.7.5 allows a NULL pointer dereference with empty external parameter entity content...

CVE-2026-32776

libexpat prior to 2.7.5 contains a NULL pointer dereference in the handling of empty external parameter entity content during XML parsing. Affected component: expat XML parser in versions before 2.7.5. Root cause: NULL pointer dereference inside external parameter entity processing. Impact per CV...

CVE-2025-10543 affecting package influxdb for versions less than 2.7.5-10

CVE-2025-10543 affecting package influxdb for versions less than 2.7.5-10. A patched version of the package is available...

PT-2026-25631

Name of the Vulnerable Software and Affected Versions libexpat versions prior to 2.7.5 Description The software contains a flaw where parsing DTD content can lead to an infinite loop. Recommendations Update libexpat to version 2.7.5 or later...

PT-2023-14954 · WordPress · Video Background

Name of the Vulnerable Software and Affected Versions: Video Background WordPress plugin versions prior to 2.7.5 Description: The issue concerns the Video Background WordPress plugin, which does not properly validate and escape certain shortcode attributes. This could allow users with the...

SUSE CVE-2018-16876

ansible before versions 2.5.14, 2.6.11, 2.7.5 is vulnerable to a information disclosure flaw in vvv+ mode with nolog on that can lead to leakage of sensible data...

Combodo iTop 代码问题漏洞

Combodo iTop is a French company Combodo ITIL-based development and for the daily operation of the IT environment of open source Web applications. The program provides incident management, configuration management and problem management. A code issue exists in Combodo iTop versions prior to 2.7.5...