WordPress ACME Divi Modules plugin <= 1.3.5 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Trương Hữu Phúc truonghuuphuc in WordPress Plugin ACME Divi Modules versions = 1.3.5...

CVE-2025-31540

Missing Authorization vulnerability in acmemediakits ACME Divi Modules acme-divi-modules allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects ACME Divi Modules: from n/a through = 1.3.5...

CVE-2025-31540 WordPress ACME Divi Modules plugin <= 1.3.5 - Broken Access Control vulnerability

Missing Authorization vulnerability in acmemediakits ACME Divi Modules allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects ACME Divi Modules: from n/a through 1.3.5...

CVE-2025-31540 WordPress ACME Divi Modules plugin <= 1.3.5 - Broken Access Control vulnerability

Missing Authorization vulnerability in acmemediakits ACME Divi Modules acme-divi-modules allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects ACME Divi Modules: from n/a through = 1.3.5...

CVE-2025-31540

Technical details for CVE-2025-31540 are not publicly available in the provided documents; there is no explicit affected product/version, root cause, impact, or fix in these sources. Monitor for updates.

WordPress plugin ACME Divi Modules 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

io.micronaut.testresources:micronaut-test-resources-infinispan (>=3.0.0-M5 <=4.0.0-M1), io.quarkus:quarkus-test-infinispan-client (>=2.5.0.CR1 <=3.2.0.Final) +54 more potentially affected by CVE-2024-6875 via org.infinispan:infinispan-server-rest (>=10.0.0.Alpha1 <=9.4.9.Final)

org.infinispan:infinispan-server-rest MAVEN version =10.0.0.Alpha1, =3.0.0-M5, =2.5.0.CR1, =8.0.0.Beta1, =7.0.0.CR1, =15.0.14.Final, =9.3.0.CR1, =9.3.0.CR1, =8.0.0.Alpha1, =9.0.0.Beta1, =9.0.0.Beta1, =15.0.0.CR1, =15.0.0.CR1, =12.1.1.Final, =12.1.1.Final, =16.2.0.Dev02 and more Source cves:...

GHSA-MMWX-RJ87-VFGR vulnerabilities

Vulnerabilities for packages: druid, hadoop-client-modules...

RHEL 9 : kpatch-patch-5_14_0-427_13_1, kpatch-patch-5_14_0-427_31_1, kpatch-patch-5_14_0-427_44_1, and kpatch-patch-5_14_0-427_55_1 (RHSA-2025:3097)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:3097 advisory. This is a kernel live patch module which can be loaded by the kpatch command line utility to modify the code of a running kernel. This patch module i...

RHEL 8 : kpatch-patch-4_18_0-305_120_1, kpatch-patch-4_18_0-305_138_1, kpatch-patch-4_18_0-305_145_1, and kpatch-patch-4_18_0-305_150_1 (RHSA-2025:3093)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:3093 advisory. This is a kernel live patch module which can be loaded by the kpatch command line utility to modify the code of a running kernel. This patch module i...

CVE-2025-29217

Tenda W18E v2.0 v16.01.0.11 was discovered to contain a stack overflow in the wifiSSID parameter at /goform/setModules. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted POST request...

Arbitrary Command Injection

Overview lollms is a python library for AI personality definition Affected versions of this package are vulnerable to Arbitrary Command Injection in the calculate function, which uses the eval function without sufficient protection. An attacker can execute commands on the server by injecting...

Tenda W18E 安全漏洞

The Tenda W18E is a wireless router from the Chinese company Tenda. A stack overflow vulnerability exists in the Tenda W18E /goform/setModules handling of the wifiSSID parameter, which can be exploited by an attacker to submit a special request that can crash the application and cause a denial of...

Tenda W18E 安全漏洞

The Tenda W18E is a wireless router from the Chinese company Tenda. A stack overflow vulnerability exists in the Tenda W18E /goform/setModules handling of the wifiPwd parameter, which can be exploited by an attacker to submit a special request that can crash the application and cause a denial of...

Malicious code in pb-node-modules (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 13f6ed4f1be7aaf5a813cae62ab02bae6da785284b44b4ec1ef18522f3c0f7a4 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

The vulnerability of the system-mounted module in operating systems such as Synology BeeStation Manager (BSM), Synology DiskStation Manager (DSM), and the enterprise-level server Synology Unified Controller allows a perpetrator to execute arbitrary code.

The vulnerability of the system-mounted modules of the Synology BeeStation Manager BSM, Synology DiskStation Manager DSM, and the corporate-level server Synology Unified Controller lies in the lack of mechanisms for encoding or shielding output data. Exploiting this vulnerability allows a remote...

[SECURITY] Fedora 42 Update: libxml2-2.12.10-1.fc42

This library allows to manipulate XML files. It includes support to read, modify and write XML and HTML files. There is DTDs support this includes parsing and validation even with complex DtDs, either at parse time or later once the document has been modified. The output can be a simple SAX strea...

CVE-2025-29779

The CVE describes a fault-injection countermeasure weakness in the Python implementation of Post-Quantum Secure Feldman’s Verifiable Secret Sharing (VSS) in PostQuantum-Feldman-VSS, specifically the secure_redundant_execution function. Affected versions up to 0.8.0b2 are vulnerable because Python...

Malicious code in kamino-modules (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2ecb59e56c69eee3911cd10b7de6d341cf4d2f2f41bab590b44428c5bfd8348b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-2388 Malicious code in kamino-modules (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2ecb59e56c69eee3911cd10b7de6d341cf4d2f2f41bab590b44428c5bfd8348b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...