WordPress WP-CalDav2ICS plugin <= 1.3.4 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Muhammad Nur Ibnu Hubab in WordPress Plugin WP-CalDav2ICS versions = 1.3.4...

WordPress MAS Videos plugin <= 1.3.4 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Muhammad Yudha - DJ in WordPress Plugin MAS Videos versions = 1.3.4...

WordPress Appointify plugin <= 1.0.8 - SQL Injection vulnerability

SQL Injection vulnerability discovered by 0xVenus in WordPress Plugin Appointify versions = 1.0.8...

EUVD-2023-60373

In the Linux kernel, the following vulnerability has been resolved: debugobjects: Don't wake up kswapd from fillpool syzbot is reporting a lockdep warning in fillpool because the allocation from debugobjects is using GFPATOMIC, which is GFPHIGH | GFPKSWAPDRECLAIM and therefore tries to wake up...

CVE-2023-54268

In the Linux kernel, the following vulnerability has been resolved: debugobjects: Don't wake up kswapd from fillpool syzbot is reporting a lockdep warning in fillpool because the allocation from debugobjects is using GFPATOMIC, which is GFPHIGH | GFPKSWAPDRECLAIM and therefore tries to wake up...

CVE-2023-54268

The CVE-2023-54268 entry concerns a Linux kernel fix for debugobjects: avoid waking kswapd from fill_pool() when GFP_ATOMIC allocations trigger kswapd_wait::lock. The root cause is using GFP_ATOMIC (effectively GFP_HIGH | GFP_KSWAPD_RECLAIM), which can wake up kswapd during fill_pool() as it may ...

CVE-2023-54268 debugobjects: Don't wake up kswapd from fill_pool()

In the Linux kernel, the following vulnerability has been resolved: debugobjects: Don't wake up kswapd from fillpool syzbot is reporting a lockdep warning in fillpool because the allocation from debugobjects is using GFPATOMIC, which is GFPHIGH | GFPKSWAPDRECLAIM and therefore tries to wake up...

PT-2025-54097

In the Linux kernel, the following vulnerability has been resolved: debugobjects: Don't wake up kswapd from fill pool syzbot is reporting a lockdep warning in fill pool because the allocation from debugobjects is using GFP ATOMIC, which is GFP HIGH | GFP KSWAPD RECLAIM and therefore tries to wake...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992663)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992663 advisory. In the Linux kernel, the following vulnerability has been resolved: netsched: skbprio: Remove overly strict queue assertions In the current implementation, skbprio...

Priority Web 代码问题漏洞

Priority Web is the Web side of an enterprise resource planning system from Priority Israel. A code issue vulnerability exists in Priority Web that stems from an unrestricted upload of a dangerous type of file, which could lead to an arbitrary file upload attack...

Priority Web 跨站脚本漏洞

Priority Web is the Web side of an Enterprise Resource Planning system from Priority Israel. A cross-site scripting vulnerability exists in Priority Web that stems from improper input neutralization and could lead to a cross-site scripting attack...

Priority Web 跨站脚本漏洞

Priority Web is the Web side of an Enterprise Resource Planning system from Priority Israel. A cross-site scripting vulnerability exists in Priority Web that stems from improper input neutralization and could lead to a cross-site scripting attack...

Priority Web 输入验证错误漏洞

Priority Web is the Web side of an enterprise resource planning system from Priority Israel. Priority Web suffers from an input validation error vulnerability that originates from a URL redirection to an untrusted site, which could lead to an open redirection attack...

Priority Web 跨站脚本漏洞

Priority Web is the Web side of an Enterprise Resource Planning system from Priority Israel. A cross-site scripting vulnerability exists in Priority Web that stems from improper input neutralization and could lead to a cross-site scripting attack...

WordPress Discussion Board plugin <= 2.5.7 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Nabil Irawan in WordPress Plugin Discussion Board versions = 2.5.7...

WordPress Shortcodes and extra features for Phlox theme plugin <= 2.17.15 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Legion Hunter in WordPress Plugin Shortcodes and extra features for Phlox theme versions = 2.17.15...

WordPress CookieHint WP plugin <= 1.0.0 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Nguyen Xuan Chien in WordPress Plugin CookieHint WP versions = 1.0.0...

WordPress Link Library plugin <= 7.8.7 - Server Side Request Forgery (SSRF) vulnerability

Server Side Request Forgery SSRF vulnerability discovered by Krissaphat Jankaew in WordPress Plugin Link Library versions = 7.8.7...

WordPress Cooked plugin <= 1.11.3 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Legion Hunter in WordPress Plugin Cooked versions = 1.11.3...

WordPress Chakra test plugin <= 1.0.1 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Jitlada in WordPress Plugin Chakra test versions = 1.0.1...