WordPress plugin Binary MLM Plan 安全漏洞

WordPress Binary MLM Plan plugin is a WordPress plugin designed for network marketing, mainly used to simplify the operational process of multi-level marketing MLM business. WordPress Binary MLM Plan plugin suffers from an elevation of privilege vulnerability that stems from the bmpuser role...

EUVD-2025-34379

Heap-based buffer overflow in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally...

EUVD-2025-34392

Improper access control in Network Connection Status Indicator NCSI allows an authorized attacker to elevate privileges locally...

EUVD-2025-34395

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows SSDP Service allows an authorized attacker to elevate privileges locally...

EUVD-2025-34321

Improper access control in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally...

EUVD-2025-34406

Improper input validation in Microsoft Windows Speech allows an authorized attacker to elevate privileges locally...

EUVD-2025-34415

Untrusted pointer dereference in Windows Device Association Broker service allows an authorized attacker to elevate privileges locally...

EUVD-2025-34414

Out-of-bounds read in Windows DWM allows an authorized attacker to elevate privileges locally...

EUVD-2025-34353

Reliance on untrusted inputs in a security decision in Windows Virtualization-Based Security VBS Enclave allows an authorized attacker to elevate privileges locally...

EUVD-2025-34378

Use after free in Microsoft Graphics Component allows an authorized attacker to elevate privileges over a network...

CVE-2025-59281

Improper link resolution before file access 'link following' in XBox Gaming Services allows an authorized attacker to elevate privileges locally...

CVE-2025-59249

Weak authentication in Microsoft Exchange Server allows an authorized attacker to elevate privileges over a network...

CVE-2025-59213

Improper neutralization of special elements used in an sql command 'sql injection' in Microsoft Configuration Manager allows an unauthorized attacker to elevate privileges over an adjacent network...

CVE-2025-59207

Untrusted pointer dereference in Windows Kernel allows an authorized attacker to elevate privileges locally...

CVE-2025-59205

Concurrent execution using shared resource with improper synchronization 'race condition' in Microsoft Graphics Component allows an authorized attacker to elevate privileges locally...

CVE-2025-59206

Windows Resilient File System ReFS Deduplication Service Elevation of Privilege Vulnerability...

CVE-2025-59199

Improper access control in Software Protection Platform SPP allows an authorized attacker to elevate privileges locally...

CVE-2025-59194

Use of uninitialized resource in Windows Kernel allows an authorized attacker to elevate privileges locally...

CVE-2025-58726

Improper access control in Windows SMB Server allows an authorized attacker to elevate privileges over a network...

CVE-2025-58725

Heap-based buffer overflow in Windows COM allows an authorized attacker to elevate privileges locally...