Lucene search
K

8338 matches found

Amazon
Amazon
added 2025/08/18 12:0 a.m.4 views

Medium: cni-plugins

Issue Overview: Calling Verify with a VerifyOptions.KeyUsages that contains ExtKeyUsageAny unintentionally disabledpolicy validation. This only affected certificate chains which contain policy graphs, which are rather uncommon. CVE-2025-22874 Proxy-Authorization and Proxy-Authenticate headers...

7.5CVSS6.8AI score0.0056EPSS
Exploits0
CNVD
CNVD
added 2025/08/18 12:0 a.m.4 views

Grav CMS Remote Code Execution Vulnerability

Grav CMS is Grav open source a flat file-based content management system . Grav CMS suffers from a remote code execution vulnerability that originates from allowing authenticated administrators to upload malicious plugins via the admin/tools/direct-install interface, which can be exploited by an...

8.1CVSS8.2AI score0.0871EPSS
Exploits7References1
Tenable Nessus
Tenable Nessus
added 2025/08/18 12:0 a.m.3 views

Amazon Linux 2023 : cni-plugins (ALAS2023-2025-1143)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2025-1143 advisory. Calling Verify with a VerifyOptions.KeyUsages that contains ExtKeyUsageAny unintentionally disabledpolicy validation. This only affected certificate chains which contain policy graphs, which a...

7.5CVSS6.5AI score0.0056EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2025/08/18 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2024-43805

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - jupyterlab is an extensible environment for interactive and reproducible computing, based on the Jupyter Notebook Architecture. This vulnerability depends on us...

7.6CVSS5.9AI score0.00373EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/18 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2025-43715

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Nullsoft Scriptable Install System NSIS before 3.11 on Windows allows local users to escalate privileges to SYSTEM during an installation, because the temporary...

8.1CVSS5.8AI score0.00166EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/08/17 3:28 a.m.15 views

CVE-2025-8676

The B Slider- Gutenberg Slider Block for WP plugin for WordPress is vulnerable to Sensitive Information Exposure in versions less than, or equal to, 2.0.0 via the getactiveplugins function. This makes it possible for authenticated attackers, with subscriber-level access and above to extract...

4.3CVSS6.8AI score0.00326EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/08/16 7:23 p.m.11 views

CVE-2025-54717

Missing Authorization vulnerability in e-plugins WP Membership wp-membership allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Membership: from n/a through = 1.6.3...

5.4CVSS5.9AI score0.00202EPSS
Exploits0References1
OPENSUSE Linux
OPENSUSE Linux
added 2025/08/16 12:0 a.m.2 views

gstreamer-plugins-rs-1.26.5+git11.949807a4-1.1 on GA media (moderate)

gstreamer-plugins-rs-1.26.5+git11.949807a4-1.1 on GA media Announcement ID: openSUSE-SU-2025:15447-1 Rating: moderate Cross-References: CVE-2025-55159 CVSS scores: CVE-2025-55159 SUSE : 5.8 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:H CVE-2025-55159 SUSE : 5.8...

5.8CVSS7.3AI score0.00156EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/08/15 4:34 a.m.6 views

CVE-2025-7384

The Database for Contact Form 7, WPforms, Elementor forms plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 1.4.3 via deserialization of untrusted input in the getleaddetail function. This makes it possible for unauthenticated attackers to inject a P...

9.8CVSS8.8AI score0.01589EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/08/15 4:34 a.m.7 views

CVE-2025-0818

Several WordPress plugins using elFinder versions 2.1.64 and prior are vulnerable to Directory Traversal in various versions. This makes it possible for unauthenticated attackers to delete arbitrary files. Successful exploitation of this vulnerability requires a site owner to explicitly make an...

6.5CVSS7.2AI score0.00697EPSS
Exploits0References1
NVD
NVD
added 2025/08/15 3:15 a.m.3 views

CVE-2025-8676

The B Slider- Gutenberg Slider Block for WP plugin for WordPress is vulnerable to Sensitive Information Exposure in versions less than, or equal to, 2.0.0 via the getactiveplugins function. This makes it possible for authenticated attackers, with subscriber-level access and above to extract...

4.3CVSS0.00326EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/08/15 2:24 a.m.8 views

CVE-2025-8676 B Slider - Gutenberg Slider Block for WP <= 2.0.0 - Authenticated (Subscriber+) Sensitive Information Exposure

The B Slider- Gutenberg Slider Block for WP plugin for WordPress is vulnerable to Sensitive Information Exposure in versions less than, or equal to, 2.0.0 via the getactiveplugins function. This makes it possible for authenticated attackers, with subscriber-level access and above to extract...

4.3CVSS0.00326EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/08/15 2:24 a.m.2 views

CVE-2025-8676 B Slider - Gutenberg Slider Block for WP <= 2.0.0 - Authenticated (Subscriber+) Sensitive Information Exposure

The B Slider- Gutenberg Slider Block for WP plugin for WordPress is vulnerable to Sensitive Information Exposure in versions less than, or equal to, 2.0.0 via the getactiveplugins function. This makes it possible for authenticated attackers, with subscriber-level access and above to extract...

4.3CVSS6.7AI score0.00326EPSS
Exploits0References3
CVE
CVE
added 2025/08/15 2:24 a.m.23 views

CVE-2025-8676

CVE-2025-8676 concerns the WordPress plugin B Slider – Gutenberg Slider Block for WP (vulnerable:

4.3CVSS6.7AI score0.00326EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/08/15 12:0 a.m.5 views

PT-2025-33429 · WordPress · B Slider- Gutenberg Slider Block

Name of the Vulnerable Software and Affected Versions: B Slider- Gutenberg Slider Block for WP plugin for WordPress versions prior to 2.1.0 Description: The B Slider- Gutenberg Slider Block for WP plugin for WordPress is vulnerable to Sensitive Information Exposure via the get active plugins...

4.3CVSS6.2AI score0.00326EPSS
Exploits0References6
CNNVD
CNNVD
added 2025/08/15 12:0 a.m.2 views

WordPress plugin B Slider 信息泄露漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress plugin is an application plugin. WordPress B Slider plugin has an information disclosure vulnerability, the vulnerability stems from a sensitive information disclosure in the getactiveplugins function, which ca...

4.3CVSS6.2AI score0.00326EPSS
Exploits0References5
OSV
OSV
added 2025/08/15 12:0 a.m.2 views

OPENSUSE-SU-2025:15446-1 gstreamer-plugins-rs-1.26.5+git11.949807a4-1.1 on GA media

These are all security issues fixed in the gstreamer-plugins-rs-1.26.5+git11.949807a4-1.1 package on the GA media of openSUSE Tumbleweed...

5.1CVSS5.8AI score0.00156EPSS
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/08/14 6:52 p.m.2 views

Malicious code in @amber-team/router5-plugins (npm)

The package @amber-team/router5-plugins was found to contain malicious code...

7AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/08/14 6:52 p.m.2 views

Malicious code in belmgr-plugins (npm)

The package belmgr-plugins was found to contain malicious code...

7AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/08/14 6:52 p.m.3 views

Malicious code in cb-serverless-plugins (npm)

The package cb-serverless-plugins was found to contain malicious code...

7AI score
Exploits0
Rows per page
Query Builder