CVE-2021-31828

An SSRF issue in Open Distro for Elasticsearch ODFE before 1.13.1.0 allows an existing privileged user to enumerate listening services or interact with configured resources via HTTP requests exceeding the Alerting plugin's intended scope...

EUVD-2014-1160

Malware in sbrugna...

EUVD-2021-11164

Malware in sbrugna...

EUVD-2015-9261

Malware in sbrugna...

EUVD-2016-2003

Malware in sbrugna...

EUVD-2023-59668

Malicious code in bioql PyPI...

EUVD-2023-12783

Malicious code in bioql PyPI...

EUVD-2023-29012

Malicious code in bioql PyPI...

CVE-2025-32578

CVE-2025-32578 is a Reflected XSS in the WordPress plugin Coming Soon Countdown (vulnerable up to and including 2.2). The vulnerability arises during web page generation where user-controlled input is improperly neutralized, enabling reflected scripts. The CVE entry notes the impact as cross-site...

CVE-2025-31886 WordPress Social proof testimonials and reviews by Repuso plugin <= 5.21 - Broken Access Control vulnerability

Missing Authorization vulnerability in Repuso Social proof testimonials and reviews by Repuso social-testimonials-and-reviews-widget allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Social proof testimonials and reviews by Repuso: from n/a through = 5.21...

Linux Distros Unpatched Vulnerability : CVE-2022-39201

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Grafana is an open source observability and data visualization platform. Starting with version 5.0.0-beta1 and prior to versions 8.5.14 and 9.1.8, Grafana could...

CVE-2024-9234

The GutenKit – Page Builder Blocks, Patterns, and Templates for Gutenberg Block Editor plugin for WordPress is vulnerable to arbitrary file uploads due to a missing capability check on the installandactivatepluginfromexternal function install-active-plugin REST API endpoint in all versions up to,...

CVE-2022-3994 Authenticator < 1.3.1 - Subscriber+ Denial of Service via Feed Token Disclosure

The Authenticator WordPress plugin before 1.3.1 does not prevent subscribers from updating a site's feed access token, which may deny other users access to the functionality in certain configurations...

EPA fails after Chrome/Edge version 98 update

NOTE: It’s recommended to have latest version of EPA and Gateway Plugins to get optimum User experience as several items have been addressed in recent versions such as disconnection on reboot and standalone setup for plugin. Few of the issues in feedback , “disconnection on reboot”, and “standalo...

OPENSUSE-SU-2021:0822-1 Security update for gstreamer, gstreamer-plugins-bad, gstreamer-plugins-base, gstreamer-plugins-good, gstreamer-plugins-ugly

This update for gstreamer, gstreamer-plugins-bad, gstreamer-plugins-base, gstreamer-plugins-good, gstreamer-plugins-ugly fixes the following issues: gstreamer was updated to version 1.16.3 bsc1181255: - delay creation of threadpools - bin: Fix deep-element-removed log message - buffer: fix meta...

SUSE-SU-2016:2891-1 Security update for sudo

This update for sudo fixes the following issues: - Fix two security vulnerabilities that allowed users to bypass sudo's NOEXEC functionality: noexec bypass via system and popen CVE-2016-7032, bsc1007766 noexec bypass via wordexp CVE-2016-7076, bsc1007501 - The SSSD plugin would occasionally crash...

openSUSE Security Update : Firefox (openSUSE-2016-1019)

This update includes Firefox 48.0.1 to fix a few regressions and a security issue : - Fix an audio regression impacting some major websites - Fix a top crash in the JavaScript engine - Fix a startup crash issue caused by Websense - Fix a different behavior with e10s / non-e10s on select and mouse...