4512 matches found
Linux Distros Unpatched Vulnerability : CVE-2025-30699
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Stored Procedure. Supported versions that are affected are 8.0.0-8.0.41, 8.4.0-8.4....
PT-2025-33491 · Unknown · Gopiplus Vertical Scroll Slideshow Gallery
Name of the Vulnerable Software and Affected Versions: gopiplus Vertical scroll slideshow gallery versions n/a through 9.1 Description: Improper neutralization of special elements used in an SQL command 'SQL Injection' allows for Blind SQL Injection. Recommendations: At the moment, there is no...
Linux Distros Unpatched Vulnerability : CVE-2025-3576
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability in the MIT Kerberos implementation allows GSSAPI-protected messages using RC4-HMAC-MD5 to be spoofed due to weaknesses in the MD5 checksum desig...
Linux Distros Unpatched Vulnerability : CVE-2022-1462
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An out-of-bounds read flaw was found in the Linux kernel's TeleTYpe subsystem. The issue occurs in how a user triggers a race condition using ioctls TIOCSPTLCK...
Linux Distros Unpatched Vulnerability : CVE-2020-6812
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The first time AirPods are connected to an iPhone, they become named after the user's name by default e.g. Jane Doe's AirPods. Websites with camera or microphon...
Linux Distros Unpatched Vulnerability : CVE-2025-50089
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 9.0.0-9.1.0. Easily exploitable...
Linux Distros Unpatched Vulnerability : CVE-2020-1735
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in the Ansible Engine when the fetch module is used. An attacker could intercept the module, inject a new path, and then choose a new destinati...
Linux Distros Unpatched Vulnerability : CVE-2022-20158
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In bdiput and bdiunregister of backing-dev.c, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege wi...
Linux Distros Unpatched Vulnerability : CVE-2021-1076
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - NVIDIA GPU Display Driver for Windows and Linux, all versions, contains a vulnerability in the kernel mode layer nvlddmkm.sys or nvidia.ko where improper access...
Linux Distros Unpatched Vulnerability : CVE-2024-7519
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Insufficient checks when processing graphics shared memory could have led to memory corruption. This could be leveraged by an attacker to perform a sandbox...
Linux Distros Unpatched Vulnerability : CVE-2025-22100
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: drm/panthor: Fix race condition when gathering fdinfo group samples Commit e16635d88fa0...
WordPress flexo-social-gallery Plugin <= 1.0006 - Cross Site Request Forgery (CSRF) Vulnerability
Cross Site Request Forgery CSRF Vulnerability discovered by Chu The Anh Blue Rock in WordPress Plugin flexo-social-gallery versions = 1.0006...
CVE-2025-53631 flaskBlog XSS Vulnerability in postContent
flaskBlog is a blog app built with Flask. In versions 2.8.1 and prior, improper sanitization of postContent when submitting POST requests to /createpost leads to arbitrary JavaScript execution XSS on all pages the post is reflected on including /, /post/ID, /admin/posts, and /user/ID of the user...
PT-2025-33113 · Unknown · 1000 Projects Sales Management System
Name of the Vulnerable Software and Affected Versions: 1000 Projects Sales Management System version 1.0 Description: A cross site scripting issue exists due to the manipulation of the ssalescat argument in the processing of the /superstore/admin/sales.php file. The attack can be initiated remote...
PT-2025-33324 · Cisco · Cisco Secure Firewall Management Center (Fmc)
Name of the Vulnerable Software and Affected Versions: Cisco Secure Firewall Management Center FMC Software affected versions not specified Description: A vulnerability exists in the web-based management interface of Cisco Secure Firewall Management Center FMC Software that could allow an...
WordPress WP Airdrop Manager plugin <= 1.0.5 - Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability discovered by Nabil Irawan Patchstack Alliance in WordPress Plugin WP Airdrop Manager versions = 1.0.5...
WordPress SoundSt SEO Search plugin <= 1.2.3 - Reflected Cross Site Scripting (XSS) vulnerability
Reflected Cross Site Scripting XSS vulnerability discovered by Jieun Kim Patchstack Alliance in WordPress Plugin SoundSt SEO Search versions = 1.2.3...
Linux Distros Unpatched Vulnerability : CVE-2025-22067
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: spi: cadence: Fix out-of-bounds array access in cdnsmrvlxspisetupclock If requestedclk 128,...
Linux Distros Unpatched Vulnerability : CVE-2024-2608
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - AppendEncodedAttributeValue, ExtraSpaceNeededForAttrEncoding and AppendEncodedCharacters could have experienced integer overflows, causing underallocation of an...
Linux Distros Unpatched Vulnerability : CVE-2025-54352
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - WordPress 3.5 through 6.8.2 allows remote attackers to guess titles of private and draft posts via pingback.ping XML-RPC requests. NOTE: the Supplier is not...