Lucene search
K

163 matches found

RedhatCVE
RedhatCVE
added 2025/10/16 8:33 a.m.10 views

CVE-2025-10648

The YourMembership Single Sign On – YM SSO Login plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the 'moymdisplaytestattributes' function in all versions up to, and including, 1.1.7. This makes it possible for unauthenticated attackers to rea...

5.3CVSS5.2AI score0.00286EPSS
Exploits0References1
NVD
NVD
added 2025/10/15 9:15 a.m.11 views

CVE-2025-10648

The YourMembership Single Sign On – YM SSO Login plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the 'moymdisplaytestattributes' function in all versions up to, and including, 1.1.7. This makes it possible for unauthenticated attackers to rea...

5.3CVSS0.00286EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/10/15 8:25 a.m.10 views

CVE-2025-10648 Login with YourMembership - YM SSO Login <= 1.1.7 - Missing Authorization to Unauthenticated Sensitive Information Exposure via 'moym_display_test_attributes'

The YourMembership Single Sign On – YM SSO Login plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the 'moymdisplaytestattributes' function in all versions up to, and including, 1.1.7. This makes it possible for unauthenticated attackers to rea...

5.3CVSS0.00286EPSS
Exploits0References4
CVE
CVE
added 2025/10/15 8:25 a.m.23 views

CVE-2025-10648

CVE-2025-10648 concerns the WordPress plugin “Login with YourMembership – YM SSO Login”. The vulnerability arises from a missing capability check in the moym_display_test_attributes function, affecting all versions up to and including 1.1.7, enabling unauthenticated attackers to read the profile ...

5.3CVSS4.9AI score0.00286EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/15 8:25 a.m.5 views

EUVD-2025-34569

The YourMembership Single Sign On – YM SSO Login plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the 'moymdisplaytestattributes' function in all versions up to, and including, 1.1.7. This makes it possible for unauthenticated attackers to rea...

5.3CVSS4.9AI score0.00286EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/10/15 8:25 a.m.4 views

CVE-2025-10648 Login with YourMembership - YM SSO Login <= 1.1.7 - Missing Authorization to Unauthenticated Sensitive Information Exposure via 'moym_display_test_attributes'

The YourMembership Single Sign On – YM SSO Login plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the 'moymdisplaytestattributes' function in all versions up to, and including, 1.1.7. This makes it possible for unauthenticated attackers to rea...

5.3CVSS4.9AI score0.00286EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/10/11 7:23 a.m.4 views

CVE-2025-21050

Improper input validiation in Contacts prior to SMR Oct-2025 Release 1 allows local attackers to access data across multiple user profiles...

7.1CVSS6.5AI score0.0012EPSS
Exploits0References1
CVE
CVE
added 2025/10/10 6:41 a.m.17 views

CVE-2025-21050

CVE-2025-21050 affects Samsung Mobile devices in the Contacts component prior to SMR Oct-2025 Release 1. The root cause is improper input validation, enabling a local attacker to access data across multiple user profiles. Impact is confidentiality-focused (high), with local, low-complexity access...

7.1CVSS6.1AI score0.0012EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2025/10/10 12:0 a.m.4 views

SAMSUNG Mobile devices 安全漏洞

SAMSUNG Mobile devices are a range of Samsung mobile devices, including cell phones, tablets, etc., from the South Korean company Samsung SAMSUNG. A security vulnerability exists in SAMSUNG Mobile devices versions prior to SMR Oct-2025 Release 1, which stems from improper input validation and cou...

7.1CVSS6.2AI score0.0012EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-20219

Malware in sbrugna...

4.3CVSS4.9AI score0.02618EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-12316

Malware in sbrugna...

6.3CVSS6.8AI score0.01773EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2017-12100

Malware in sbrugna...

9.3CVSS8.6AI score0.11472EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2015-7118

Malware in sbrugna...

4.3CVSS9.2AI score0.01532EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-20018

Malware in sbrugna...

4.3CVSS5.1AI score0.03024EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2020-12397

Malware in sbrugna...

8.9CVSS8.6AI score0.02174EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2017-8865

Malware in sbrugna...

4.3CVSS4.8AI score0.00584EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-13693

Malicious code in bioql PyPI...

4.6CVSS6.6AI score0.00174EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/09/04 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2013-1830

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - user/view.php in Moodle through 2.1.10, 2.2.x before 2.2.8, 2.3.x before 2.3.5, and 2.4.x before 2.4.2 does not enforce the forceloginforprofiles setting, which...

5CVSS5.5AI score0.01577EPSS
Exploits0References2
OSV
OSV
added 2025/09/03 6:15 a.m.4 views

CVE-2025-21035

Improper access control in Samsung Calendar prior to version 12.5.06.5 in Android 14 and 12.6.01.12 in Android 15 allows physical attackers to access data across multiple user profiles...

4.6CVSS5.8AI score0.00208EPSS
Exploits0References1
CVE
CVE
added 2025/09/03 6:5 a.m.16 views

CVE-2025-21035

CVE-2025-21035 describes an improper access control in Samsung Calendar. The vulnerability affects Samsung Calendar versions prior to 12.5.06.5 on Android 14 and prior to 12.6.01.12 on Android 15, potentially allowing a physical attacker to access data across multiple user profiles. Root cause is...

4.6CVSS5.9AI score0.00208EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder