PT-2026-4616

The Hustle – Email Marketing, Lead Generation, Optins, Popups plugin for WordPress is vulnerable to arbitrary file uploads due to incorrect file type validation in the action import module function in all versions up to, and including, 7.8.9.2. This makes it possible for authenticated attackers,...

CVE-2026-0775

npm cli Incorrect Permission Assignment Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of npm cli. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploi...

Huawei HarmonyOS 安全漏洞

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. A privilege control vulnerability exists in Huawei HarmonyOS, which stems from improper privilege control of the Wi-Fi module and can be exploited by an...

Huawei HarmonyOS 安全漏洞

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. A privilege control vulnerability exists in Huawei HarmonyOS, which stems from improper privilege control of the Notepad module, and can be exploited by an...

EUVD-2012-1606

Malware in sbrugna...

EUVD-2025-29541

Malicious code in bioql PyPI...

CVE-2025-26711

CVE-2025-26711 affects the ZTE T5400, with an unauthorized access vulnerability in the Web module interface due to improper permission control. An attacker with adjacent access and low privileges can obtain sensitive information through that interface. The CVSS v3.1 base score is 5.7 (Medium); im...

CVE-2025-26709 Unauthorized Access Vulnerability in ZTE F50

There is an unauthorized access vulnerability in ZTE F50. Due to improper permission control of the Web module interface, an unauthorized attacker can obtain sensitive information through the interface...

Huawei HarmonyOS 安全漏洞

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. Huawei HarmonyOS suffers from a security vulnerability that stems from incorrect permission checks on WIFI modules. An attacker exploited the vulnerability t...

Huawei HarmonyOS 安全漏洞

Huawei HarmonyOS is an operating system from Huawei China. It provides a microkernel-based distributed operating system. Huawei HarmonyOS is vulnerable to an authorization issue, which stems from a lax verification of power module permissions. An attacker could exploit the vulnerability to cause...

HUAWEI HarmonyOS License Issue Vulnerability (CNVD-2022-41788)

HUAWEI HarmonyOS is an operating system from the Chinese company Huawei HUAWEI. It provides a full-scenario distributed operating system based on a microkernel. An authorization issue vulnerability exists in the HUAWEI HarmonyOS kernel, which stems from improper control of permissions in the...

USN-1928-1: Puppet vulnerabilities

It was discovered that Puppet incorrectly handled the resourcetype service. A local attacker on the primary server could use this issue to execute arbitrary Ruby files. CVE-2013-4761 It was discovered that Puppet incorrectly handled permissions on the modules it installed. Modules could be...

Fedora 17 : qemu-1.0.1-2.fc17 (2012-15740)

Remove comma from 1.0.1 version number - CVE-2012-3515 VT100 emulation vulnerability bz 854600, bz 851252 - Fix slirp crash bz 845795 - Fix KVM module permissions after install bz 863374 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora...

SA-CONTRIB-2012-020 - Faster Permissions - Access bypass

CVE: CVE-2012-1643 This module enables you to configure the permissions of a specific module on a separate page. This is especially handy for sites with a large list of permissions. The module doesn't sufficiently check for the required permissions when the provided permission administration is...

CVE-2008-6381

SQL injection vulnerability in modules/adresses/viewcat.php in bcoos 1.0.13, and possibly earlier, allows remote authenticated users with Addresses module permissions to execute arbitrary SQL commands via the cid parameter...