CVE-2026-40383

CVE-2026-40383 is a Joomla! Core vulnerability described as an LFI due to improper validation of user-supplied input in the HTMLView layout parameter. NVD lists a high/critical exposed impact with a network attack vector and no user interaction required; separate CVSS 4.0 vector also indicates hi...

EUVD-2023-60214

Zenphoto 1.6 contains a stored cross-site scripting vulnerability in the user postal code field accessible through the admin-users.php interface. When administrators view user information imported as HTML, malicious JavaScript payloads injected into the postal code field execute in their browser...

DEBIAN-CVE-2008-3881

Multiple cross-site scripting XSS vulnerabilities in ZoneMinder 1.23.3 and earlier allow remote attackers to inject arbitrary web script or HTML via unspecified "zmhtmlview.php" files...

GLSA-200407-11 : wv: Buffer overflow vulnerability

The remote host is affected by the vulnerability described in GLSA-200407-11 wv: Buffer overflow vulnerability A use of strcat without proper bounds checking leads to an exploitable buffer overflow. The vulnerable code is executed when wv encounters an unrecognized token, so a specially crafted...

wv: Buffer overflow vulnerability

Background The wv library allows access to MS Word files. It can parse Word files and allow other applications, such as abiword, to import those files into their native formats. Description A use of strcat without proper bounds checking leads to an exploitable buffer overflow. The vulnerable code...