EUVD-2026-4347

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in PluginOps Landing Page Builder page-builder-add allows Stored XSS.This issue affects Landing Page Builder: from n/a through = 1.5.3.3...

EUVD-2025-206245

Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. In Coolify versions prior to and including v4.0.0-beta.434, low privileged users are able to see the private key of the root user on the Coolify instance. This allows them to ssh to the server and...

Coolify 安全漏洞

Coolify is an open source and self-hosted Heroku/Netlify/Vercel replacement from coolLabs Open Source. A security vulnerability exists in Coolify v4.0.0-beta.434 and earlier versions, which stems from a low-privileged user being able to use an invitation link sent to an administrator, potentially...

PT-2025-51053

Name of the Vulnerable Software and Affected Versions Export WP Page to Static HTML & PDF plugin for WordPress versions up to and including 4.3.4 Description The software is susceptible to sensitive information exposure due to publicly exposed cookies.txt files containing authentication cookies...

Fedora 43 : singularity-ce (2025-a6641a44f2)

The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-a6641a44f2 advisory. Upgrade to 4.3.4 upstream version. Go 1.25.2 for build fixes multiple go CVEs. BZ2408346 BZ2408744 BZ2409819 BZ2410769 BZ2411665 Tenable has extract...

TIBCO ActiveMatrix Administrator 安全漏洞

TIBCO ActiveMatrix Administrator is a utility program from TIBCO USA for creating, configuring, monitoring and managing objects in the TIBCO ActiveMatrix runtime. A security vulnerability exists in TIBCO ActiveMatrix Administrator versions prior to 4.3.4, which stems from stored cross-site...

SUSE CVE-2025-1866

Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in warmcat libwebsockets allows Pointer Manipulation, potentially leading to out-of-bounds memory access. This issue affects libwebsockets before 4.3.4 and is present in code built specifically for the Win32...

QNAP Systems TS-870 Cross-Site Scripting Vulnerability (CNVD-2020-62488)

QNAP Systems TS-870 is a NAS Network Attached Storage appliance from China Weilian QNAP Systems. A cross-site scripting vulnerability exists in the QNAP Systems TS-870 using firmware version 4.3.4.0486. The vulnerability stems from a lack of proper validation of client data by the WEB application...

CVE-2017-13072

Cross-site scripting XSS vulnerability in App Center in QNAP QTS 4.2.6 build 20171208, QTS 4.3.3 build 20171213, QTS 4.3.4 build 20171223, and their earlier versions could allow remote attackers to inject Javascript code...

Vulnerabilities of the Red Hat Enterprise Linux operating system, which allow a remote attacker to compromise the confidentiality and accessibility of protected information

The kdelibs-4.3.4 package has multiple vulnerabilities in the Red Hat Enterprise Linux operating system. Exploitation of these vulnerabilities may lead to breaches of confidentiality and accessibility of protected information. These vulnerabilities can be exploited remotely...

Vulnerabilities of the Red Hat Enterprise Linux operating system, which allow a remote attacker to compromise the confidentiality and accessibility of protected information

The kdelibs-4.3.4 package has multiple vulnerabilities in the Red Hat Enterprise Linux operating system. Exploitation of these vulnerabilities may lead to breaches of confidentiality and accessibility of protected information. These vulnerabilities can be exploited remotely...