CVE-2026-8903

The Two-factor authentication formerly IP Vault plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.1. This is due to missing or incorrect nonce validation on the ipvsavechanges function. This makes it possible for unauthenticated attackers to...

CVE-2026-8903 Two-factor authentication (formerly IP Vault) <= 2.1 - Cross-Site Request Forgery to Settings Update

The Two-factor authentication formerly IP Vault plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.1. This is due to missing or incorrect nonce validation on the ipvsavechanges function. This makes it possible for unauthenticated attackers to...

CVE-2026-8903 Two-factor authentication (formerly IP Vault) <= 2.1 - Cross-Site Request Forgery to Settings Update

The Two-factor authentication formerly IP Vault plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.1. This is due to missing or incorrect nonce validation on the ipvsavechanges function. This makes it possible for unauthenticated attackers to...

PT-2026-43532

The Two-factor authentication formerly IP Vault plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.1. This is due to missing or incorrect nonce validation on the ipv save changes function. This makes it possible for unauthenticated attackers t...

PT-2026-41149

Discovered through manual source code review. Verified by PoC execution against a local dbt-mcp v1.15.1 installation. Summary DbtMCP.call tool in src/dbt mcp/mcp/server.py logs the complete raw arguments dictionary at INFO level on every tool invocation line 67 and again at ERROR level if the cal...

EUVD-2013-1242

Malware in sbrugna...

CVE-2025-49009

Para is a multitenant backend server/framework for object persistence and retrieval. A vulnerability that exists in versions prior to 1.50.8 in FacebookAuthFilter.java results in a full request URL being logged during a failed request to a Facebook user profile. The log includes the user's access...

CVE-2013-1202

Cisco ACE A23.6 allows log retention DoS...

Configure the Rotate Policy in rsyslog

rsyslog collects logs from the system and records them in files. logrotate copies and compresses log files periodically and quantitatively to ensure that log files do not occupy too many drive resources or even cannot be maintained. If the rotate policy is not configured for log files, they will...

CVE-2024-12292

Removed by vendor...

Microsoft Expands Free Logging Capabilities for all U.S. Federal Agencies

Microsoft has expanded free logging capabilities to all U.S. federal agencies using Microsoft Purview Audit irrespective of the license tier, more than six months after a China-linked cyber espionage campaign targeting two dozen organizations came to light. "Microsoft will automatically enable th...

CVE-2013-1202

Cisco ACE A23.6 allows log retention DoS...

Design/Logic Flaw

Cisco ACE A23.6 allows log retention DoS...

CVE-2013-1202

Cisco ACE A2(3.6) is affected by a log-retention Denial of Service vulnerability (CVE-2013-1202). The flaw occurs in the SSL logging daemon where logs are not rotated, exhausting disk space and leading to DoS. An unauthenticated, remote attacker could exploit by opening many SSL connections to th...

CVE-2013-1202

Cisco ACE A23.6 allows log retention DoS...

CVE-2013-1202

Cisco ACE A23.6 allows log retention DoS...

Cisco Prime Security Manager Log Retention DoS (cisco-sa-20120912-asacx)

According to its self-reported version number, the version of Cisco Prime Security Manager running on the remote is affected by a denial of service vulnerability. Making unspecified requests can cause log files to exhaust the /var/log partition. A remote, unauthenticated attacker can exploit this...

Cisco ASA-CX and Cisco PRSM Log Retention Denial of Service Vulnerability

Cisco ASA-CX Context-Aware Security appliance and Cisco Prime Security Manager PRSM contain a denial of service DoS vulnerability in versions prior to 9.0.2-103. Successful exploitation of this vulnerability on the Cisco ASA-CX could cause the device to stop processing user traffic and prevent...