Lucene search
K

88 matches found

NVD
NVD
added yesterday7 views

CVE-2026-13347

The Hide My WP Lite plugin for WordPress is vulnerable to Arbitrary File Read in versions up to and including 1.3 via the hewrapperjs and hewrappercss query parameters processed by the elementorassetsfilter function. This is due to the function concatenating user-supplied input directly onto...

7.5CVSS0.00512EPSS
Exploits0References3
CVE
CVE
added yesterday14 views

CVE-2026-13347

The CVE-2026-13347 entry documents an unauthenticated Arbitrary File Read in WordPress Hide My WP Lite (versions ≤ 1.3) via the he_wrapper_js and he_wrapper_css parameters. The vulnerability stems from elementor_assets_filter() concatenating user input onto ABSPATH and passing it to file_get_cont...

7.5CVSS6.1AI score0.00512EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added yesterday5 views

CVE-2026-13347

The Hide My WP Lite plugin for WordPress is vulnerable to Arbitrary File Read in versions up to and including 1.3 via the hewrapperjs and hewrappercss query parameters processed by the elementorassetsfilter function. This is due to the function concatenating user-supplied input directly onto...

7.5CVSS6.1AI score0.00512EPSS
Exploits0References4
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/04/20 6:15 a.m.10 views

Malicious code in turbo-he (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1da17bf1f37303e3d91056c1ce674462279861bc896e413f1d262548ff6b3647 The package turbo-he was found to contain malicious code. Source: ghsa-malware 6bd9985ec0cf97c08347814d88b84c1c12cd8f22507a76e2a78cacb06c6840a6 Any...

5.7AI score
Exploits0References1
OSV
OSV
added 2026/04/20 6:15 a.m.9 views

MAL-2026-2943 Malicious code in turbo-he (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1da17bf1f37303e3d91056c1ce674462279861bc896e413f1d262548ff6b3647 The package turbo-he was found to contain malicious code. Source: ghsa-malware 6bd9985ec0cf97c08347814d88b84c1c12cd8f22507a76e2a78cacb06c6840a6 Any...

5.7AI score
Exploits0References1
Snyk
Snyk
added 2026/04/20 6:15 a.m.8 views

Malicious Package

Overview turbo-he is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package authorship...

9.8CVSS5.7AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/12/24 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2025-68380

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - wifi: ath11k: fix peer HE MCS assignment In ath11kwmisendpeerassoccmd, peer's transmit MCS is sent to firmware as receive MCS while peer's receive MCS sent as...

6.1AI score0.00168EPSS
Exploits0References3
EUVD
EUVD
added 2025/11/12 4:47 p.m.1 views

EUVD-2025-147694

Malicious code in tobrut-he-nubliesp npm...

6.6AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/11/05 12:0 a.m.4 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-989972)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989972 advisory. In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: handle 2x996 RU allocation in cfg80211calculatebitratehe Currently...

5.5CVSS6.2AI score0.00218EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/11/05 12:0 a.m.4 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990255)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990255 advisory. In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: handle 2x996 RU allocation in cfg80211calculatebitratehe Currently...

5.5CVSS6.2AI score0.00218EPSS
Exploits0References4
AstraLinux
AstraLinux
added 2025/10/31 4:38 p.m.4 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: fix NULL dereference at band check in starting tx ba session In MLD connection, linkdata/linkconf are dynamically allocated. They don't point to vif-bssconf. So, there will be no chanreq assigned to vif-bssconf an...

5.5CVSS6.3AI score0.00225EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2017-16608

Malware in sbrugna...

7.8CVSS7.6AI score0.01475EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2017-16609

Malware in sbrugna...

7.8CVSS7.6AI score0.01475EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2017-16610

Malware in sbrugna...

7.8CVSS7.6AI score0.01506EPSS
Exploits1References4
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/09/05 5:10 p.m.5 views

Malicious code in storm-he-cassandra-shishi-fenxi (npm)

The package storm-he-cassandra-shishi-fenxi was found to contain malicious code...

7AI score
Exploits0
OSV
OSV
added 2025/09/05 5:10 p.m.3 views

MAL-2025-46145 Malicious code in storm-he-cassandra-shishi-fenxi (npm)

The package storm-he-cassandra-shishi-fenxi was found to contain malicious code...

7AI score
Exploits0
OSV
OSV
added 2025/08/16 2:15 p.m.4 views

UBUNTU-CVE-2023-4515

In the Linux kernel, the following vulnerability has been resolved: ksmbd: validate command request size In commit 2b9b8f3b68ed "ksmbd: validate command payload size", except for SMB2OPLOCKBREAKHE command, the request size of other commands is not checked, it's not expected. Fix it by add check f...

5.5CVSS5.7AI score0.00135EPSS
Exploits0References7
OSV
OSV
added 2025/08/16 11:15 a.m.8 views

UBUNTU-CVE-2025-38509

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: reject VHT opmode for unsupported channel widths VHT operating mode notifications are not defined for channel widths below 20 MHz. In particular, 5 MHz and 10 MHz are not valid under the VHT specification and must...

5.5CVSS5.7AI score0.00119EPSS
Exploits0References11
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/08/14 6:52 p.m.5 views

Malicious code in @zalastax/nolb-_he (npm)

The package @zalastax/nolb-he was found to contain malicious code...

7AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 6:15 a.m.4 views

CVE-2024-48540

Incorrect access control in XIAO HE Smart 4.3.1 allows attackers to access sensitive information by analyzing the code and data within the APK file...

6.2CVSS6.8AI score0.00188EPSS
Exploits0References1
Rows per page
Query Builder