CVE-2026-5776

The CVE concerns the Email Encoder WordPress plugin prior to version 2.4.7. The root cause is failure to escape email addresses retrieved from user input, enabling unauthenticated stored XSS when affected data is rendered. Affected product: Email Encoder plugin for WordPress; vulnerable component...

MiracleLinux 3 : freetype-2.2.1-28.1.0.2.AXS3 (AXSA:2011-339:01)

The remote MiracleLinux 3 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2011-339:01 advisory. The FreeType engine is a free and portable font rendering engine, developed to provide advanced font support for a variety of platforms and environments...

CVE-2024-7801

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Microchip TimeProvider 4100 Data plot modules allows SQL Injection.This issue affects TimeProvider 4100: from 1.0 before 2.4.7...

CVE-2024-43687

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Microchip TimeProvider 4100 banner config modules allows Cross-Site Scripting XSS.This issue affects TimeProvider 4100: from 1.0 before 2.4.7...

CVE-2024-7801

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Microchip TimeProvider 4100 Data plot modules allows SQL Injection.This issue affects TimeProvider 4100: from 1.0 before 2.4.7...

CVE-2023-6843 easy.jobs < 2.4.7 - Subscriber+ Arbitrary Settings Update

The easy.jobs- Best Recruitment Plugin for Job Board Listing, Manager, Career Page for Elementor & Gutenberg WordPress plugin before 2.4.7 does not properly secure some of its AJAX actions, allowing any logged-in users to modify its settings...

Adobe Commerce Security Breach

Adobe Commerce is a leading global digital commerce solution for merchants and brands from Adobe. A security vulnerability exists in Adobe Commerce prior to version 2.4.7, which is affected by an incorrect input validation vulnerability. An authenticated attacker could trigger an insecure direct...

Adobe Commerce SQL Injection Vulnerability

Adobe Commerce is a leading global digital commerce solution for merchants and brands from Adobe. A SQL injection vulnerability exists in Adobe Commerce prior to version 2.4.7, which stems from being affected by a SQL injection vulnerability that could allow an attacker authenticated with...

Adobe Commerce Input Validation Error Vulnerability

Adobe Commerce is a leading global digital commerce solution for merchants and brands from Adobe. An input validation error vulnerability exists in Adobe Commerce prior to version 2.4.7, which stems from being affected by an incorrect input validation vulnerability that could allow an attacker...