MediaWiki - ProofreadPage Extension 安全漏洞

MediaWiki - ProofreadPage Extension is an open-source documentation comparison plugin for MediaWiki. The MediaWiki - ProofreadPage Extension has a security vulnerability, which stems from improper input during page generation. This vulnerability may lead to cross-site scripting attacks targeting...

WordPress plugin LambertGroup - AllInOne - Banner with Thumbnails 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

CVE-2025-68843

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Bas Schuiling FeedWordPress Advanced Filters faf allows Reflected XSS.This issue affects FeedWordPress Advanced Filters: from n/a through = 0.6.2...

Fedora 43 : chromium (2026-443f9ace49)

The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-443f9ace49 advisory. Update to 145.0.7632.75 CVE-2026-2441: Use after free in CSS CVE-2026-2313: Use after free in CSS CVE-2026-2314: Heap buffer overflow in Codecs...

Xerox CentreWare 安全漏洞

Xerox CentreWare is a network management software developed by the American company Xerox. Versions of Xerox CentreWare 7.0.6 and earlier contained security vulnerabilities, which were caused by improper input handling. These vulnerabilities could lead to stored-xss attacks...

Wikimedia VisualEditor 安全漏洞

Wikimedia VisualEditor is a visual editor developed by the Wikimedia Foundation. Versions of Wikimedia VisualEditor prior to 1.39.14, 1.43.4, and 1.44.1 contained security vulnerabilities due to improper input handling, which could lead to cross-site scripting attacks...

MediaWiki 安全漏洞

MediaWiki is a free and open-source wiki engine developed by the Wikimedia Foundation in the United States. This product can be used to deploy internal knowledge management and content management systems. Versions of MediaWiki prior to 1.39.15, 1.43.5, and 1.44.2 contain security vulnerabilities...

WordPress plugin Team Showcase 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A cross-site scripting...

WordPress plugin Zenost Shortcodes 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A cross-site scripting...

WordPress plugin visualslider Sldier 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting vulnerabilit...

WordPress plugin Useinfluence 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists in...

WordPress plugin Schema & Structured Data for WP & AMP 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

WordPress plugin ProfilePress security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exists in...

PT-2023-1914 · Aruba · Arubaos

Name of the Vulnerable Software and Affected Versions: ArubaOS affected versions not specified Description: The issue exists due to the lack of neutralization of special elements used in the operating system command. This allows a remote attacker to execute arbitrary commands on the underlying...

USN-5740-1 xorg-server, xorg-server-hwe-16.04, xorg-server-hwe-18.04, xwayland vulnerabilities

It was discovered that X.Org X Server incorrectly handled certain inputs. An attacker could use these issues to cause the server to crash, resulting in a denial of service, or possibly execute arbitrary code...

The vulnerability of the DNS server service in Windows Server operating systems allows a perpetrator to trigger a distributed service failure.

The vulnerability of the DNS server service in Windows Server operating systems is related to errors in processing input data. Exploiting this vulnerability can allow a malicious actor to trigger a distributed service failure remotely...

USN-4168-1 libidn2 vulnerabilities

It was discovered that Libidn2 incorrectly handled certain inputs. A attacker could possibly use this issue to impersonate domains. CVE-2019-12290 It was discovered that Libidn2 incorrectly handled certain inputs. An attacker could possibly use this issue to execute arbitrary code. CVE-2019-18224...

USN-4155-1 aspell vulnerability

It was discovered that Aspell incorrectly handled certain inputs. An attacker could potentially access sensitive information...

Junos Space Network Management Platform SNMP Answer Forgery Cross-Site Scripting Vulnerability

Junos Space Network Management Platform is a network management platform solution. Junos Space Network Management Platform fails to properly process inputs, allows SNMP answer spoofing, and allows remote attackers to exploit vulnerabilities to inject malicious script or HTML code that can be used...

Multiple Vulnerabilities in Fortinet FortiClient

Fortinet FortiClient is a unified standard security software agent for PCs and smartphones. Fortinet FortiClient has multiple security vulnerabilities due to the program failing to properly process user-supplied input. This vulnerability could be exploited by an attacker to bypass certain securit...