SUSE CVE-2026-33019

libsixel is a SIXEL encoder/decoder implementation derived from kmiya's sixel. Versions 1.8.7 and prior contain an integer overflow leading to an out-of-bounds heap read in the --crop option handling of img2sixel, where positive coordinates up to INTMAX are accepted without overflow-safe bounds...

WordPress MangBoard WP plugin <= 1.8.6 - Authenticated (Administrator+) Stored Cross-Site Scripting via Board Header And Footer vulnerability

Authenticated Administrator+ Stored Cross-Site Scripting via Board Header And Footer vulnerability discovered by nquangit in WordPress Plugin Mang Board WP versions = 1.8.6...