6 matches found
PT-2026-49504
Unauthenticated SQL Injection in Advanced 301 and 302 Redirect = 1.6.9 versions...
PT-2026-48929
Name of the Vulnerable Software and Affected Versions NanaZip versions 3.0.1000.0 through 6.0.1697.0 Description A heap out-of-bounds read exists in the Android Verified Boot AVB vbmeta image parser via the upstream 7-Zip AvbHandler. An unsigned integer underflow in a bounds check allows an...
CVE-2025-69079
CVE-2025-69079 describes a Deserialization of Untrusted Data vulnerability in ThemeREX Sound | Musicplace WordPress theme (Sound | Musical Instruments Online Store) that allows Object Injection. Affected software: Theme musicplace WordPress theme versions from n/a up to and including 1.6.9. Root ...
EUVD-2025-200034
A denial of service vulnerability exists in the Modbus TCP and Modbus RTU over TCP functionality of Socomec DIRIS Digiware M-70 1.6.9. A specially crafted series of network requests can lead to a denial of service. An attacker can send a sequence of unauthenticated packets to trigger this...
PT-2024-25409 · Elementor · Opal Widgets For Elementor
Name of the Vulnerable Software and Affected Versions: Opal Widgets For Elementor versions 1.6.9 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, which allows Stored XSS. This means an attacker can...
MISP 跨站脚本漏洞
MISP is an open source software solution. The product is used to collect, store, distribute, and share cybersecurity metrics and has features such as threat cybersecurity event analysis and malware analysis. A security vulnerability exists in MISP versions prior to 2.4.169. An attacker exploited...