56 matches found
GHSA-8Q4H-8CRM-5CVC
creationtimestamp| type| source ---|---|--- 2026-04-21 11:00:26+00:00| seen| https://bsky.app/profile/getpacketai.bsky.social/post/3mjytdcford24 2026-04-23 21:26:07+00:00| published-proof-of-concept| Telegram/wY3PGk1V7kusFG8GbDK0g0CtGhXXIm9UsDC-frBku-7BiY...
EUVD-2026-3896
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Hossni Mubarak JobWP jobwp allows Stored XSS.This issue affects JobWP: from n/a through = 2.4.5...
EUVD-2026-0394
This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure...
GHSA-MJCP-GPGX-GGCG
creationtimestamp| type| source ---|---|--- 2025-12-10 01:47:43+00:00| seen| https://bsky.app/profile/azu.bsky.social/post/3m7lwvgz5u52x...
PT-2025-50294
CVE-2025-14271 - Rejected reason: This CVE ID has been withdrawn by CVE ID : CVE-2025-14271 Published : Dec. 8, 2025, 4:15 p.m. | 38 minutes ago Description : Rejected reason: This CVE ID has been withdrawn by its CVE Numbering Authority. Severity: 0.0 | NA Visit the link for more details, such a...
EUVD-2025-37599
The Reuse Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'reusebuildersingleposttitle' shortcode in all versions up to, and including, 1.7. This is due to insufficient input sanitization and output escaping on the 'style' attribute. This makes it possible for...
CVE-2025-10458 Bluetooth: le_conn_rsp does not sanitize CID, MTU, MPS values
Parameters are not validated or sanitized, and are later used in various internal operations...
CVE-2025-55370
Incorrect access control in the component \controller\ResourceController.java of jshERP v3.5 allows unauthorized attackers to obtain all the corresponding ID data by modifying the ID value...
CVE-2023-25330
A SQL injection vulnerability in Mybatis plus below 3.5.3.1 allows remote attackers to execute arbitrary SQL commands via the tenant ID valuer. NOTE: the vendor's position is that this can only occur in a misconfigured application; the documentation discusses how to develop applications that avoi...
UBUNTU-CVE-2024-37151
Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Mishandling of multiple fragmented packets using the same IP ID value can lead to packet reassembly failure, which can lead to policy bypass. Upgrade to 7.0.6 or 6.0.20. When usin...
OESA-2023-1998 mybatis security update
The MyBatis data mapper framework makes it easier to use a relational database with object-oriented applications. MyBatis couples objects with stored procedures or SQL statements using a XML descriptor or annotations. Simplicity is the biggest advantage of the MyBatis data mapper over object...
WordPress plugin WpDataTables – Tables & Table Charts premium 安全漏洞
WordPress is a set of blogging platforms developed using the PHP language by the Wordpress Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL.Sprymedia DataTables is a JavaScript library for converting HTML tables to dynamic tables from the UK company...
MS:9A852C9A-33B9-4A23-B056-54CA6C3E0719
...
MS:76A39744-1D59-4143-8210-EEE26C656223
...
MS:077EA34F-933C-4EE4-80C3-98C9AD9AACF7
...
MS:633353F3-E412-4A05-B7B3-EE86ED257C6C
...
MS:7520DE3A-51C5-4F33-AF96-43FCA92416BB
...
MS:60296207-9BD5-4438-8DCF-D80C8327CF97
...
MS:63BFC7D2-7BD1-4ECD-851E-CB9E0AF55BF1
...
MS:76D797C7-989C-4F0D-BC68-D114A3AC59B5
...