CVE-2026-9284 WooCommerce PayPal Payments <= 4.0.1 - Missing Authorization to Unauthenticated Order Manipulation and Information Disclosure

The WooCommerce PayPal Payments plugin for WordPress is vulnerable to unauthorized order manipulation and information disclosure due to missing authorization checks on the ppc-create-order and ppc-get-order WC-AJAX endpoints in all versions up to, and including, 4.0.1. The ppc-create-order endpoi...

Astra Linux - уязвимость в linux-5.10, linux

In the Linux kernel, the following vulnerability has been resolved: usb: host: Fixed the refcount leak in ehcihcdppcofprobe. offindcompatiblenode returns a node pointer with a refcount incremented. We should use ofnodeput on it after processing. Add the missing ofnodeput call to avoid the refcoun...

Astra Linux - уязвимость в linux, linux-5.10

In the Linux kernel, the following vulnerability has been resolved: KVM: PPC: Fix kvmarchvcpuioctl vcpuload leak vcpuput is not called if the user copy fails. This can result in preempt notifier corruption and crashes, among other issues...

MINI-PFH2-5PPC-5C33

Bulletin has no description...

CVE-2025-70545

A stored cross-site scripting XSS vulnerability exists in the web management interface of the PPC Belden ONT 2K05X router running firmware v1.1.9206L. The Common Gateway Interface CGI component improperly handles user-supplied input, allowing a remote, unauthenticated attacker to inject arbitrary...

PPC 2K05X 安全漏洞

The PPC 2K05X is an industrial router produced by the American company PPC. The PPC 2K05X v1.1.9206L version contains a security vulnerability. This vulnerability stems from improper handling of user input by the Universal Gateway Interface component, which may lead to storage-based cross-site...

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-004847)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004847 advisory. In the Linux kernel, the following vulnerability has been resolved: usb: host: ohci-ppc-of: Fix refcount leak bug In ohcihcdppcofprobe, offindcompatiblenode will...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-993015)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-993015 advisory. In the Linux kernel, the following vulnerability has been resolved: usb: host: Fix refcount leak in ehcihcdppcofprobe offindcompatiblenode returns a node pointer wit...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-993069)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-993069 advisory. In the Linux kernel, the following vulnerability has been resolved: usb: host: ohci-ppc-of: Fix refcount leak bug In ohcihcdppcofprobe, offindcompatiblenode will...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992253)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992253 advisory. In the Linux kernel, the following vulnerability has been resolved: usb: host: Fix refcount leak in ehcihcdppcofprobe offindcompatiblenode returns a node pointer wit...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992495)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992495 advisory. In the Linux kernel, the following vulnerability has been resolved: usb: host: ohci-ppc-of: Fix refcount leak bug In ohcihcdppcofprobe, offindcompatiblenode will...

SUSE-SU-2025:21212-1 Security update for grub2

This update for grub2 fixes the following issues: Changes in grub2: - CVE-2025-54771: Fixed grubfileclose does not properly controls the fs refcount bsc1252931 - CVE-2025-54770: Fixed missing unregister call for netsetvlan command may lead to use-after-free bsc1252930 - CVE-2025-61662: Fixed...

SUSE-SU-2025:4305-1 Security update for grub2

This update for grub2 fixes the following issues: - CVE-2025-54771: Fixed rubfileclose does not properly controls the fs refcount bsc1252931 - CVE-2025-54770: Fixed missing unregister call for netsetvlan command may lead to use-after-free bsc1252930 - CVE-2025-61662: Fixed missing unregister call...

Security update for grub2

This update for grub2 fixes the following issues: CVE-2025-54770: Fixed missing unregister call for netsetvlan command may lead to use-after-free bsc1252930 CVE-2025-54771: Fixed rubfileclose does not properly controls the fs refcount bsc1252931 CVE-2025-61661: Fixed out-of-bounds write in...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989195)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989195 advisory. In the Linux kernel, the following vulnerability has been resolved: KVM: PPC: Fix kvmarchvcpuioctl vcpuload leak vcpuput is not called if the user copy fails. This c...

EUVD-2009-3206

Malware in sbrugna...

EUVD-2006-0223

Malware in sbrugna...

CVE-2025-10546

This vulnerability exist in PPC 2K15X Router, due to improper input validation for the Common Gateway Interface CGI parameters at its web management portal. A remote attacker could exploit this vulnerability by injecting malicious JavaScript into the vulnerable parameter, leading to a reflected...

PPC 2K15X Router 跨站脚本漏洞

The PPC 2K15X Router is a home gateway device from PPC USA. A cross-site scripting vulnerability exists in the PPC 2K15X Router that stems from improper validation of inputs to CGI parameters in the Web Management Portal, which could lead to a reflective cross-site scripting attack...

DEBIAN-CVE-2022-50153

In the Linux kernel, the following vulnerability has been resolved: usb: host: Fix refcount leak in ehcihcdppcofprobe offindcompatiblenode returns a node pointer with refcount incremented, we should use ofnodeput on it when done. Add missing ofnodeput to avoid refcount leak...