Lucene search
K

985 matches found

Debian CVE
Debian CVE
added 2026/02/24 9:15 p.m.5 views

CVE-2026-27195

Wasmtime is a runtime for WebAssembly. Starting with Wasmtime 39.0.0, the component-model-async feature became the default, which brought with it a new implementation of TypedFunc::callasync which made it capable of calling async-typed guest export functions. However, that implementation had a bu...

7.5CVSS5.3AI score0.00362EPSS
Exploits0
OSV
OSV
added 2026/02/24 9:15 p.m.7 views

CVE-2026-27195 Wasmtime is vulnerable to panic when dropping a `[Typed]Func::call_async` future

Wasmtime is a runtime for WebAssembly. Starting with Wasmtime 39.0.0, the component-model-async feature became the default, which brought with it a new implementation of TypedFunc::callasync which made it capable of calling async-typed guest export functions. However, that implementation had a bu...

6.9CVSS5.4AI score0.00362EPSS
Exploits0References8
Github Security Blog
Github Security Blog
added 2026/02/24 8:44 p.m.10 views

Wasmtime is vulnerable to panic when dropping a `[Typed]Func::call_async` future

The affected versions of Wasmtime can panic if the host embedder drops the future returned by wasmtime::component::TypedFunc::callasync before it resolves. Details Starting with Wasmtime 39.0.0, the component-model-async feature became the default, which brought with it a new implementation of...

7.5CVSS5.3AI score0.00362EPSS
Exploits0References9Affected Software1
OSV
OSV
added 2026/02/24 8:44 p.m.7 views

GHSA-XJHV-V822-PF94 Wasmtime is vulnerable to panic when dropping a `[Typed]Func::call_async` future

The affected versions of Wasmtime can panic if the host embedder drops the future returned by wasmtime::component::TypedFunc::callasync before it resolves. Details Starting with Wasmtime 39.0.0, the component-model-async feature became the default, which brought with it a new implementation of...

6.9CVSS5.4AI score0.00362EPSS
Exploits0References9
Positive Technologies
Positive Technologies
added 2026/02/24 12:0 a.m.6 views

PT-2026-21804

Name of the Vulnerable Software and Affected Versions Wasmtime versions 39.0.0 through 41.0.3 Description Wasmtime, a runtime for WebAssembly, can experience a panic when the host embedder drops the future returned by wasmtime::component::TypedFunc::call async before it resolves, and then calls t...

6.9CVSS5.2AI score0.00362EPSS
Exploits0References15
GithubExploit
GithubExploit
added 2026/02/20 10:12 p.m.167 views

Exploit for CVE-2026-1405

CVE-2026-1405 Slider Future = 1.0.5 - Unauthenticated Arbi...

9.8CVSS6.5AI score0.03177EPSS
Exploits2
RedhatCVE
RedhatCVE
added 2026/02/20 7:21 a.m.10 views

CVE-2026-1405

The Slider Future plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'sliderfuturehandleimageupload' function in all versions up to, and including, 1.0.5. This makes it possible for unauthenticated attackers to upload arbitrary files on the...

9.8CVSS6.6AI score0.03177EPSS
Exploits2References1
Patchstack
Patchstack
added 2026/02/19 7:53 a.m.12 views

WordPress Slider Future plugin <= 1.0.5 - Unauthenticated Arbitrary File Upload vulnerability

Unauthenticated Arbitrary File Upload vulnerability discovered by ZAST.AI - ZAST.AI in WordPress Plugin Slider Future versions = 1.0.5...

9.8CVSS5.5AI score0.03177EPSS
Exploits2References1Affected Software1
NVD
NVD
added 2026/02/19 7:17 a.m.8 views

CVE-2026-1405

The Slider Future plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'sliderfuturehandleimageupload' function in all versions up to, and including, 1.0.5. This makes it possible for unauthenticated attackers to upload arbitrary files on the...

9.8CVSS0.03177EPSS
Exploits2References2
Cvelist
Cvelist
added 2026/02/19 4:36 a.m.32 views

CVE-2026-1405 Slider Future <= 1.0.5 - Unauthenticated Arbitrary File Upload

The Slider Future plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'sliderfuturehandleimageupload' function in all versions up to, and including, 1.0.5. This makes it possible for unauthenticated attackers to upload arbitrary files on the...

9.8CVSS0.03177EPSS
Exploits2References2
CVE
CVE
added 2026/02/19 4:36 a.m.25 views

CVE-2026-1405

WordPress Slider Future plugin (versions ≤ 1.0.5) is vulnerable to an Unauthenticated Arbitrary File Upload due to missing file type validation in slider_future_handle_image_upload. This allows unauthenticated attackers to upload arbitrary files to the server, with potential for remote code execu...

9.8CVSS6.6AI score0.03177EPSS
In wildExploits2References2
Vulnrichment
Vulnrichment
added 2026/02/19 4:36 a.m.8 views

CVE-2026-1405 Slider Future <= 1.0.5 - Unauthenticated Arbitrary File Upload

The Slider Future plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'sliderfuturehandleimageupload' function in all versions up to, and including, 1.0.5. This makes it possible for unauthenticated attackers to upload arbitrary files on the...

9.8CVSS6.6AI score0.03177EPSS
Exploits2References2
CNNVD
CNNVD
added 2026/02/19 12:0 a.m.9 views

WordPress plugin Slider Future 代码问题漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

9.8CVSS6AI score0.03177EPSS
Exploits2References2
ATTACKERKB
ATTACKERKB
added 2026/02/18 7:28 p.m.3 views

CVE-2013-5633

DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: A public posting on 20130831 referenced this ID for a specific issue, but that issue had not been assigned this ID by any CNA. Notes: The posting will later have IDs assigned in accordance with CVE content decisions...

5.5AI score
Exploits5References1
ATTACKERKB
ATTACKERKB
added 2026/02/18 7:27 p.m.3 views

CVE-2013-5620

DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: A public posting on 20130831 referenced this ID for a specific issue, but that issue had not been assigned this ID by any CNA. Notes: The posting will later have IDs assigned in accordance with CVE content decisions...

5.5AI score
Exploits5References1
Microsoft Secure
Microsoft Secure
added 2026/02/11 5:0 p.m.8 views

The strategic SIEM buyer’s guide: Choosing an AI-ready platform for the agentic era

As the agentic era reshapes security operations, leaders face a strategic inflection point: legacy security information and event management SIEM solutions and fragmented toolchains can no longer keep pace with the scale, speed, and complexity of modern cyberthreats. Organizations can choose to...

5.7AI score
Exploits0
Veeam
Veeam
added 2026/02/10 12:0 a.m.160 views

How to Change Where Logs are Stored on the Veeam Appliances

Changing Log Location Will Break Automated Log Collection The automated log collection tools built into both the Veeam Backup & Replication Web UI of the Veeam Software Appliance and the "Create support bundle" function within the Host Management Console collect logs only from the default log...

5.5AI score
Exploits0Affected Software1
Packet Storm News
Packet Storm News
added 2026/01/28 12:0 a.m.2 views

A High-Performance Fractal Encryption Framework and Modern Innovations for Secure Image Transmission

The current digital era, driven by growing threats to data security, requires a robust image encryption technique. Classical encryption algorithms suffer from a trade-off among security, image fidelity, and computational efficiency. This paper aims to enhance the performance and efficiency of ima...

5.9AI score
Exploits0
Microsoft Secure
Microsoft Secure
added 2026/01/26 5:0 p.m.6 views

Security strategies for safeguarding governmental data

The Deputy CISO blog series is where Microsoft Deputy Chief Information Security Officers CISOs share their thoughts on what is most important in their respective domains. In this series, you will get practical advice, tactics to start and stop deploying, forward-looking commentary on where the...

5.9AI score
Exploits0
Microsoft Secure
Microsoft Secure
added 2026/01/26 5:0 p.m.6 views

Security strategies for safeguarding governmental data

The Deputy CISO blog series is where Microsoft Deputy Chief Information Security Officers CISOs share their thoughts on what is most important in their respective domains. In this series, you will get practical advice, tactics to start and stop deploying, forward-looking commentary on where the...

5.9AI score
Exploits0
Rows per page
Query Builder