EUVD-2024-48342

Malicious code in bioql PyPI...

CVE-2024-7416

The Reveal Template plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, and including, 3.7. This is due to the plugin allowing direct access to the bootstrap.php file which has displayerrors on. This makes it possible for unauthenticated attackers to retrieve the ful...

CVE-2024-7415

The Remember Me Controls plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, and including, 2.0.1. This is due to the plugin allowing direct access to the bootstrap.php file which has displayerrors on. This makes it possible for unauthenticated attackers to retrieve...

CVE-2018-12918

In libpbc.a in PBC through 2017-03-02, there is a Segmentation fault in pbcBregisterfields in bootstrap.c...

PT-2024-38328 · WordPress · No Update Nag

Name of the Vulnerable Software and Affected Versions: No Update Nag plugin for WordPress versions up to, and including, 1.4.12 Description: The issue allows unauthenticated attackers to retrieve the full path of the web application, which can aid other attacks. This is due to the plugin allowing...

PBC denial of service vulnerability

PBC is a Google protocol buffer library written in C. A denial of service vulnerability exists in the 'pbcBregisterfields' function in the bootstrap.c file of the libpbc.a static link library in PBC 2017-03-02 and earlier versions. An attacker can exploit this vulnerability to cause a denial of...

Error When Booting Target Devices: "vDisk file access permission denied"

Booting target device to a vDisk was showing the following error after downloading the bootstrap file: "Server IP Address:6930: vDisk file access permission denied."...

Information disclosure

lib/phpunit/bootstrap.php in Moodle 2.6.x before 2.6.6 and 2.7.x before 2.7.3 allows remote attackers to obtain sensitive information via a direct request, which reveals the full path in an error message...