CVE-2025-47911 affecting package cni-plugins for versions less than 1.4.0-5

CVE-2025-47911 affecting package cni-plugins for versions less than 1.4.0-5. A patched version of the package is available...

CVE-2025-30204 affecting package application-gateway-kubernetes-ingress for versions less than 1.4.0-27

CVE-2025-30204 affecting package application-gateway-kubernetes-ingress for versions less than 1.4.0-27. A patched version of the package is available...

WordPress Pizza House theme <= 1.4.0 - PHP Object Injection vulnerability

PHP Object Injection vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Pizza House versions = 1.4.0...

AZL-52248 CVE-2024-51744 affecting package application-gateway-kubernetes-ingress for versions less than 1.4.0-25

golang-jwt is a Go implementation of JSON Web Tokens. Unclear documentation of the error behavior in ParseWithClaims can lead to situation where users are potentially not checking errors in the way they should be. Especially, if a token is both expired and invalid, the errors returned by...

CVE-2021-24167

When visiting a site running Web-Stat 1.4.0, the "wtswebstatloadinit" function used the visitor’s browser to send an XMLHttpRequest request to https://wts2.one/ajax.htm?action=lookupWPaccount...

AZL-6953 CVE-2014-9639 affecting package vorbis-tools for versions less than 1.4.0-35

Integer overflow in oggenc in vorbis-tools 1.4.0 allows remote attackers to cause a denial of service crash via a crafted number of channels in a WAV file, which triggers an out-of-bounds memory access...

AZL-6952 CVE-2014-9638 affecting package vorbis-tools for versions less than 1.4.0-35

oggenc in vorbis-tools 1.4.0 allows remote attackers to cause a denial of service divide-by-zero error and crash via a WAV file with the number of channels set to zero...