Incorrect Authorization

Overview admidio/admidio is a free open source user management system for websites of organizations and groups. Affected versions of this package are vulnerable to Incorrect Authorization through insufficient authorization checks in the renameFile process. An attacker can modify file names and...

Astra Linux - уязвимость в opensc

A vulnerability was found in OpenSC, OpenSC tools, PKCS11 module, minidriver, and CTK. An attacker could use a crafted USB Device or Smart Card, which would present the system with a specially crafted response to APDUs. Insufficient or missing checking of return values of functions leads to...

CVE-2023-20585

Insufficient checks of the RMP on host buffer access in IOMMU may allow an attacker with privileges and a compromised hypervisor to trigger an out of bounds condition without RMP checks, resulting in a potential loss of confidential guest integrity...

Apple macOS 安全漏洞

Apple macOS is a proprietary operating system developed by the American company Apple for Mac computers. Versions of Apple macOS Sequoia 15.1 had a security vulnerability due to insufficient checks, which could allow malicious applications to modify the protected portion of the file system...

Apple macOS 安全漏洞

Apple macOS is a specialized operating system developed by the American company Apple for Mac computers. Versions of Apple macOS Tahoe prior to 26.4 contained a security vulnerability caused by insufficient checks, which could allow applications to access sensitive user data...

PT-2026-27528

Name of the Vulnerable Software and Affected Versions macOS versions prior to Tahoe 26.4 Description A logic issue was addressed with improved checks. This could allow a user to elevate privileges. Recommendations Update to macOS Tahoe 26.4...

Shopware 安全漏洞

Shopware is a set of open-source e-commerce software developed by the German company Shopware GmbH. Versions prior to Shopware 6.7.8.1 and 6.6.10.15 contained security vulnerabilities. These vulnerabilities stemmed from insufficient checks on the filter types of unverified customers, which could...

EUVD-2026-9955

Unauthorized modification of settings due to insufficient authorization checks. The following products are affected: Acronis Cyber Protect 17 Linux, Windows before build 41186...

WordPress plugin Master Addons for Elementor Premium 代码注入漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows users to create personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that extends the...

ROS-20260203-73-0010

A vulnerability in the schdrr.c component of the Linux operating system kernel is related to insufficient state checking of a shared resource. Exploitation of the vulnerability could allow an attacker to affect data integrity...

WordPress plugin Bookingor has a security vulnerability

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. The...

WordPress Plugin The Events Calendar has a security vulnerability

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. There is...

Apple macOS 安全漏洞

Apple macOS is a suite of specialized operating systems developed for Mac computers by Apple Inc. in the United States. A security vulnerability exists in Apple macOS Sonoma prior to 14.8.3 and Sequoia prior to 15.7.3, which stems from an insufficient check and could result in access to sensitive...

PT-2025-51909

Name of the Vulnerable Software and Affected Versions macOS versions prior to 26.2 Description An application may be able to bypass its security sandbox due to insufficient checks. This allows a malicious app to potentially gain broader access to the system than intended. Recommendations Update t...

CVE-2025-13342 Frontend Admin by DynamiApps <= 3.28.20 - Unauthenticated Arbitrary Options Update

The Frontend Admin by DynamiApps plugin for WordPress is vulnerable to unauthorized modification of arbitrary WordPress options in all versions up to, and including, 3.28.20. This is due to insufficient capability checks and input validation in the ActionOptions::run save handler. This makes it...

GHSA-PQ5V-RWP8-P7GM rtvm-interpreter lacks sufficient checks in public API

The affected function is unsound due to insufficient checks on public struct field...

rtvm-interpreter lacks sufficient checks in public API

The affected function is unsound due to insufficient checks on public struct field...

Apple iOS and iPadOS Logic Issues Insufficient Checks Vulnerability

Apple iOS is an operating system developed for mobile devices.Apple iPadOS is an operating system for the iPad tablet computer. Apple iOS and iPadOS contain a logical issue with an insufficiently checked vulnerability that can be exploited by an attacker to view sensitive user information...

WordPress plugin Insert Headers and Footers Code – HT Script 跨站脚本漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

PT-2025-50999

Name of the Vulnerable Software and Affected Versions macOS versions prior to Tahoe 26.1 Description An application could potentially access sensitive user data due to insufficient checks. Recommendations Update to macOS Tahoe 26.1 or later...