CVE-2025-26939 WordPress Counters Block plugin <= 1.1.2 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bPlugins Counters Block counters-block allows Stored XSS.This issue affects Counters Block: from n/a through = 1.1.2...

CVE-2025-26939

CVE-2025-26939 affects Counters Block in WordPress. A stored cross-site scripting (XSS) vulnerability exists in Counters Block: from n/a through 1.1.2, caused by improper neutralization of input during web page generation. The issue is present in versions up to 1.1.2 and is mitigated by upgrading...

WordPress plugin Counters Block 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL. WordPress plugin is an application plugin. A cross-site scripting vulnerabili...

PT-2025-7857 · Unknown · Bplugins Counters Block

Name of the Vulnerable Software and Affected Versions: bPlugins Counters Block versions 1.1.2 and earlier Description: The issue is related to improper neutralization of input during web page generation, which leads to a Cross-site Scripting XSS vulnerability. This allows for Stored XSS attacks...

WordPress Counters Block plugin <= 1.1.2 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Logan Cote Patchstack Alliance in WordPress Plugin Counters Block versions = 1.1.2...

CVE-2025-21686

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

CVE-2025-21686

...

CVE-2025-21686

The initial CVE-2025-21686 entry is marked as rejected, but connected sources describe a real Linux kernel issue related to io_uring: when cloning buffers between uring instances A and B that use different memory accounting contexts, closing A before B can decrement B’s pinned memory counters, po...

DEBIAN-CVE-2025-21647

In the Linux kernel, the following vulnerability has been resolved: sched: schcake: add bounds checks to host bulk flow fairness counts Even though we fixed a logic error in the commit cited below, syzbot still managed to trigger an underflow of the per-host bulk flow counters, leading to an out ...

CVE-2024-53215

In the Linux kernel, the following vulnerability has been resolved: svcrdma: fix miss destroy percpucounter in svcrdmaprocinit There's issue as follows: RPC: Registered rdma transport module. RPC: Registered rdma backchannel transport module. RPC: Unregistered rdma transport module. RPC:...

SUSE CVE-2024-53215

In the Linux kernel, the following vulnerability has been resolved: svcrdma: fix miss destroy percpucounter in svcrdmaprocinit There's issue as follows: RPC: Registered rdma transport module. RPC: Registered rdma backchannel transport module. RPC: Unregistered rdma transport module. RPC:...

DEBIAN-CVE-2024-53215

In the Linux kernel, the following vulnerability has been resolved: svcrdma: fix miss destroy percpucounter in svcrdmaprocinit There's issue as follows: RPC: Registered rdma transport module. RPC: Registered rdma backchannel transport module. RPC: Unregistered rdma transport module. RPC:...

UBUNTU-CVE-2024-53215

In the Linux kernel, the following vulnerability has been resolved: svcrdma: fix miss destroy percpucounter in svcrdmaprocinit There's issue as follows: RPC: Registered rdma transport module. RPC: Registered rdma backchannel transport module. RPC: Unregistered rdma transport module. RPC:...

CVE-2024-53215 svcrdma: fix miss destroy percpu_counter in svc_rdma_proc_init()

In the Linux kernel, the following vulnerability has been resolved: svcrdma: fix miss destroy percpucounter in svcrdmaprocinit There's issue as follows: RPC: Registered rdma transport module. RPC: Registered rdma backchannel transport module. RPC: Unregistered rdma transport module. RPC:...

CVE-2024-53215 svcrdma: fix miss destroy percpu_counter in svc_rdma_proc_init()

In the Linux kernel, the following vulnerability has been resolved: svcrdma: fix miss destroy percpucounter in svcrdmaprocinit There's issue as follows: RPC: Registered rdma transport module. RPC: Registered rdma backchannel transport module. RPC: Unregistered rdma transport module. RPC:...

CVE-2024-53215

CVE-2024-53215 concerns the Linux kernel RcRPC/RDMA path (svcrdma) where percpu_counter destruction was mishandled during svc_rdma_proc_init()/svc_rdma_proc_cleanup(). If register_sysctl() returns NULL, percpu counters initialized in svc_rdma_proc_init() may not be destroyed, and on hotplug CPU e...

CVE-2024-11905 Animated Counters <= 2.0 - Authenticated (Contributor+) Stored Cross-Site Scripting

The Animated Counters plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'animatedcounte' shortcode in all versions up to, and including, 2.0 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...

CVE-2024-11905

CVE-2024-11905 – The Animated Counters plugin for WordPress is vulnerable to a Stored XSS via the plugin’s 'animatedcounte' shortcode in all versions up to 2.0 due to insufficient input sanitization and output escaping on user-supplied attributes. This requires an attacker with at least Contribut...

WordPress Animated Counters plugin <= 2.0 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by theviper17y in WordPress Plugin Animated Counters versions = 2.0...

WordPress plugin Animated Counters 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...