531 matches found
EUVD-2026-43302
The Joomla extension Helix Ultimate is vulnerable to an unauthenticated stored XSS...
EUVD-2026-43303
The Joomla extension Helix Ultimate is vulnerable to an unauthenticated arbitrary file deletion...
CVE-2026-57830
The Joomla extension Helix Ultimate is vulnerable to an unauthenticated arbitrary file deletion...
CVE-2026-57829
The Joomla extension Helix Ultimate is vulnerable to an unauthenticated stored XSS...
CVE-2026-57830
CVE-2026-57830 affects the Joomla extension Helix Ultimate (JoomShaper). The exposed vulnerability is unauthenticated, enabling arbitrary deletion of files (and recursive folder deletion) via the site-side path handling in the vulnerable media-related actions (delete-media, view-media). The root ...
CVE-2026-57830 Joomla Extension - joomshaper.com - Unauthenticated arbitrary file deletion in Helix Ultimate < 2.2.7
The Joomla extension Helix Ultimate is vulnerable to an unauthenticated arbitrary file deletion...
CVE-2026-57830
The Joomla extension Helix Ultimate is vulnerable to an unauthenticated arbitrary file deletion...
CVE-2026-57830 Joomla Extension - joomshaper.com - Unauthenticated arbitrary file deletion in Helix Ultimate < 2.2.7
The Joomla extension Helix Ultimate is vulnerable to an unauthenticated arbitrary file deletion...
CVE-2026-57829 Joomla Extension - joomshaper.com - Unauthenticated stored XSS in Helix Ultimate < 2.2.7
The Joomla extension Helix Ultimate is vulnerable to an unauthenticated stored XSS...
CVE-2026-57829
The CVE concerns the Joomla extension Helix Ultimate (vulnerable component: the Helix Ultimate plugin) with an unauthenticated stored XSS in versions prior to 2.2.7. According to the shared metrics, the vulnerability has a CVSS 4.0 base score of 8.7 (HIGH) with network access, low attack complexi...
CVE-2026-57111
Permissive Cross-Origin Resource Sharing CORS in the REST API helix-rest, org.apache.helix.rest.server.filters.CORSFilter in Apache Helix through 2.0.0 on all platforms allows a remote attacker controlling a web page visited by an authorized user to read responses from and issue cross-origin...
CVE-2026-57111
CVE-2026-57111 describes a permissive CORS configuration in Apache Helix REST (helix-rest; org.apache.helix.rest.server.filters.CORSFilter) up to version 2.0.0. The filter returns Access-Control-Allow-Origin: * and Access-Control-Allow-Credentials: true, and reflects arbitrary preflight values, a...
EUVD-2026-42529
Permissive Cross-Origin Resource Sharing CORS in the REST API helix-rest, org.apache.helix.rest.server.filters.CORSFilter in Apache Helix through 2.0.0 on all platforms allows a remote attacker controlling a web page visited by an authorized user to read responses from and issue cross-origin...
CVE-2026-57111
Permissive Cross-Origin Resource Sharing CORS in the REST API helix-rest, org.apache.helix.rest.server.filters.CORSFilter in Apache Helix through 2.0.0 on all platforms allows a remote attacker controlling a web page visited by an authorized user to read responses from and issue cross-origin...
CVE-2026-6902
A Remote Code Execution vulnerability in P4 Helix Core Server's Command-Line Client, prior to the 2025.2 Patch 2, has been fixed to address potential security risks...
CVE-2026-6902 Code Injection in Perforce P4 (Helix Core)
A Remote Code Execution vulnerability in P4 Helix Core Server's Command-Line Client, prior to the 2025.2 Patch 2, has been fixed to address potential security risks...
CVE-2026-6902 Code Injection in Perforce P4 (Helix Core)
A Remote Code Execution vulnerability in P4 Helix Core Server's Command-Line Client, prior to the 2025.2 Patch 2, has been fixed to address potential security risks...
CVE-2026-6902
CVE-2026-6902 affects the Command-Line Client in Perforce P4 Server (Helix Core). The vulnerability is described as a code-injection issue in the Command-Line Client prior to the 2025.2 Patch 2 release, with fixes implemented in P4 Server to address the risk. The connected documents identify the ...
Fedora 45 : helix / rust-asyncgit / rust-cargo / rust-cargo-deny / rust-dua-cli / etc (2026-a843eb2666)
The remote Fedora 45 host has packages installed that are affected by a vulnerability as referenced in the FEDORA-2026-a843eb2666 advisory. Update gix to version 0.83 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested...
Perforce Helix Core Server 安全漏洞
Perforce Helix Core Server is a centralized version control server offered by Perforce Corporation, designed for managing large-scale code and digital assets. Versions of Perforce Helix Core Server prior to 2026.1 contained security vulnerabilities. These vulnerabilities stemmed from insecure...