PT-2025-38123

Name of the Vulnerable Software and Affected Versions: StoreEngine – Powerful WordPress eCommerce Plugin for Payments, Memberships, Affiliates, Sales & More versions prior to 1.5.1 Description: The StoreEngine WordPress plugin is susceptible to arbitrary file uploads due to the absence of file ty...

TYPO3 跨站脚本漏洞

TYPO3 is a free and open source content management system framework CMS/CMF from the Swiss TYPO3 Association. A cross-site scripting vulnerability exists in TYPO3 HTML Sanitizer, which originates from a vulnerability that allows an attacker to bypass the cross-site scripting protections in HTML...

kippo-graph 跨站脚本漏洞

kippo-graph is a full-featured script by the individual developer Ioannis Koniaris. It is used to visualize statistics for Kippo-based SSH honeypots. A security vulnerability exists in kippo-graph versions prior to 1.5.1, which stems from a cross-site scripting vulnerability in xssclean in...

Draytek Vigor3900, Vigor2960 and Vigor300B Buffer Overflow Vulnerability (CNVD-2020-29578)

DrayTek Vigor3900 and others are products of DrayTek Taiwan, China.DrayTek Vigor3900 is a broadband router/VPN gateway appliance.Vigor2960 is a load-balancing router and VPN gateway appliance.Vigor300B is a load-balancing router. A buffer overflow vulnerability exists in the /cgi-bin/activate.cgi...

ALPINE-CVE-2016-7947

Multiple integer overflows in X.org libXrandr before 1.5.1 allow remote X servers to trigger out-of-bounds write operations via a crafted response...