8 matches found
CVE-2026-57759
Unauthenticated Cross Site Request Forgery CSRF in ProfileGrid = 5.9.9.7 versions...
CVE-2026-31859
Craft is a content management system CMS. The fix for CVE-2025-35939 in craftcms/cms introduced a striptags call in src/web/User.php to sanitize return URLs before they are stored in the session. However, striptags only removes HTML tags angle brackets -- it does not inspect or filter URL schemes...
CVE-2026-1316
The Customer Reviews for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'media.href' parameter in all versions up to, and including, 5.97.0 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers if...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004471)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004471 advisory. A slab-out-of-bounds read in fbcon in the Linux kernel before 5.9.7 could be used by local attackers to read privileged information or potentially crash the kernel,...
CVE-2021-3597
creationtimestamp| type| source ---|---|--- 2022-05-24 22:37:07+00:00| seen| https://t.me/cibsecurity/43289 2024-01-28 06:43:46+00:00| seen| https://t.me/arpsyndicate/3237...
Linux kernel slab out-of-bounds read vulnerability
The Linux kernel is a computer operating system kernel written in C and assembly language, compliant with the POSIX standard, and distributed under the GNU General Public License. A slab out-of-bounds read vulnerability exists in fbcon in Linux kernel versions prior to 5.9.7. The vulnerability...
Linux kernel 缓冲区错误漏洞
The Linux kernel is a computer operating system kernel written in C and assembly language, compliant with the POSIX standard, and distributed under the GNU General Public License. A slab out-of-bounds read vulnerability exists in fbcon in Linux kernel versions prior to 5.9.7. The vulnerability...
FTPGetter Code Issue Vulnerability
FTPGetter is a file transfer tool from the FTPGetter team that supports FTP and SFTP protocols. A code issue vulnerability exists in FTPGetter Professional Edition version 5.97.0.223. The vulnerability stems from an improperly designed or implemented code development process for a network system ...