1712 matches found
CVE-2024-6546
The One Click Close Comments plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, and including, 2.7.1. This is due to the plugin utilizing bootstrap and leaving test files with displayerrors on. This makes it possible for unauthenticated attackers to retrieve the ful...
CVE-2023-38434
xHTTP 72f812d has a double free in closeconnection in xhttp.c via a malformed HTTP request method...
CVE-2023-1125
The Ruby Help Desk WordPress plugin before 1.3.4 does not ensure that the ticket being modified belongs to the user making the request, allowing an attacker to close and/or add files and replies to tickets other than their own...
CVE-2020-14546
Vulnerability in the Hyperion Financial Close Management product of Oracle Hyperion component: Close Manager. The supported version that is affected is 11.1.2.4. Difficult to exploit vulnerability allows high privileged attacker with network access via HTTP to compromise Hyperion Financial Close...
CVE-2020-2563
Vulnerability in the Hyperion Financial Close Management product of Oracle Hyperion component: Close Manager. The supported version that is affected is 11.1.2.4. Difficult to exploit vulnerability allows high privileged attacker with network access via HTTP to compromise Hyperion Financial Close...
CVE-2020-14541
Vulnerability in the Hyperion Financial Close Management product of Oracle Hyperion component: Close Manager. The supported version that is affected is 11.1.2.4. Difficult to exploit vulnerability allows high privileged attacker with network access via HTTP to compromise Hyperion Financial Close...
CVE-2010-2836
Memory leak in the SSL VPN feature in Cisco IOS 12.4, 15.0, and 15.1, when HTTP port redirection is enabled, allows remote attackers to cause a denial of service memory consumption by improperly disconnecting SSL sessions, leading to connections that remain in the CLOSE-WAIT state, aka Bug ID...
CVE-2009-2128
SQL injection vulnerability in closebug.php in Elvin before 1.2.1 allows remote attackers to execute arbitrary SQL commands via the title aka subject field...
CVE-2025-37926
In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free in ksmbdsessionrpcopen A UAF issue can occur due to a race condition between ksmbdsessionrpcopen and sessionrpcclose. Add rpclock to the session to protect it...
UBUNTU-CVE-2025-37926
In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free in ksmbdsessionrpcopen A UAF issue can occur due to a race condition between ksmbdsessionrpcopen and sessionrpcclose. Add rpclock to the session to protect it...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that originates from post-release reuse in closefiletableids...
kernel: tpm: Clean up TPM space after command failure
In the Linux kernel, the following vulnerability has been resolved: tpm: Clean up TPM space after command failure tpmdevtransmit prepares the TPM space before attempting command transmission. However if the command fails no rollback of this preparation is done. This can result in transient handle...
kernel: bpf, sockmap: Fix race between element replace and close()
In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Fix race between element replace and close Element replace with a socket different from the one stored may race with socket's close link popping & unlinking. sockmapdelete unconditionally unrefs the wrong element: /...
CVE-2025-47649
Path Traversal: '.../...//' vulnerability in StackWC Open Close WooCommerce Store woc-open-close allows PHP Local File Inclusion.This issue affects Open Close WooCommerce Store: from n/a through = 5.0.0...
CVE-2025-47649
Path Traversal: '.../...//' vulnerability in StackWC Open Close WooCommerce Store woc-open-close allows PHP Local File Inclusion.This issue affects Open Close WooCommerce Store: from n/a through = 4.9.9...
WordPress Open Close WooCommerce Store plugin <= 4.9.9 - Local File Inclusion vulnerability
Local File Inclusion vulnerability discovered by Muhammad Yudha - DJ in WordPress Plugin Open Close WooCommerce Store versions = 4.9.9...
CVE-2025-47649 WordPress Open Close WooCommerce Store plugin <= 4.9.9 - Local File Inclusion vulnerability
Path Traversal: '.../...//' vulnerability in StackWC Open Close WooCommerce Store woc-open-close allows PHP Local File Inclusion.This issue affects Open Close WooCommerce Store: from n/a through = 4.9.9...
CVE-2025-47649 WordPress Open Close WooCommerce Store <= 4.9.5 - Local File Inclusion Vulnerability
Path Traversal vulnerability in ilmosys Open Close WooCommerce Store allows PHP Local File Inclusion. This issue affects Open Close WooCommerce Store: from n/a through 4.9.5...
CVE-2025-47649
CVE-2025-47649 : Path traversal leading to PHP Local File Inclusion in the WordPress plugin “Open Close WooCommerce Store” (ilmosys). Affected: Open Close WooCommerce Store
cifs: Fix integer overflow while processing closetimeo mount option
...