CVE-2026-7252

The WP-Optimize – Cache, Compress images, Minify & Clean database to boost page speed & performance plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the unscheduledoriginalfiledeletion function in all versions up to, and including, 4.5.2 Th...

PT-2026-38342

The WP-Optimize – Cache, Compress images, Minify & Clean database to boost page speed & performance plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the unscheduled original file deletion function in all versions up to, and including, 4.5.2...

Directory Traversal

Overview dbgpt is a DB-GPT is an experimental open-source project that uses localized GPT large models to interact with your data and environment. With this solution, you can beassured that there is no risk of data leakage, and your data is 100% private and secure. Affected versions of this packa...

CVE-2022-3284

Download key for a file in a vault was passed in an insecure way that could easily be logged in M-Files New Web in M-Files before 22.11.12011.0. This issue affects M-Files New Web: before 22.11.12011.0...

IBM Cognos Analytics 日志信息泄露漏洞

IBM Cognos Analytics is a suite of business intelligence software from IBM in the United States. The software includes reports, dashboards, and scorecards, and can assist companies in adjusting their decisions by analyzing such things as key factors and key people. A sensitive information...

Nextcloud: Improper confidentiality protection of server-side encryption keys

This vulnerability is related to the Improper integrity protection of server-side encryption keys vulnerability but leverages a different attack vector. While the previous attack broke the confidentiality of encrypted files because the public keys are not integrity-protected, this new attack brea...

Multiple Lenovo Products Information Disclosure Vulnerability

The Lenovo Flex System x240 M4, among others, is a server from the Chinese company Lenovo. A security vulnerability exists in a number of Lenovo products, which stems from FFDC recording the private key of a web server in a log file. An attacker could exploit the vulnerability to disclose...

The popular WordPress caching plugin WP-Super-Cache aeration high-risk security vulnerabilities-vulnerability warning-the black bar safety net

The popular WordPress caching plugin WP-Super-Cache recently exposed high-risk vulnerability, the attacker may be in a page to inject malicious code, which makes millions of WordPress websites in danger. WP Super Cache is a classic veteran and a good cache plugin can greatly improve website...

WordPress WP Super Cache Plugin Security Vulnerability Patch

A persistent cross-site scripting XSS vulnerability exists in some versions of a popular WordPress caching engine plugin. The issue – since fixed – exposes vulnerable sites to takeover. From there, attackers could inject malicious scripts, backdoors and so forth. The plugin, WP Super Cache, has...

CVE-2007-4549

Multiple buffer overflows in ALPass 2.7 English and 3.02 Korean allow user-assisted remote attackers to execute arbitrary code via an ALPass DB APW file containing 1 a long file-key or 2 a "Site Information and Folder entry" with a ciphertextlength value much larger than the plaintextlength value...