163 matches found
CVE-2025-10648
The YourMembership Single Sign On – YM SSO Login plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the 'moymdisplaytestattributes' function in all versions up to, and including, 1.1.7. This makes it possible for unauthenticated attackers to rea...
CVE-2025-10648
The YourMembership Single Sign On – YM SSO Login plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the 'moymdisplaytestattributes' function in all versions up to, and including, 1.1.7. This makes it possible for unauthenticated attackers to rea...
CVE-2025-10648 Login with YourMembership - YM SSO Login <= 1.1.7 - Missing Authorization to Unauthenticated Sensitive Information Exposure via 'moym_display_test_attributes'
The YourMembership Single Sign On – YM SSO Login plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the 'moymdisplaytestattributes' function in all versions up to, and including, 1.1.7. This makes it possible for unauthenticated attackers to rea...
CVE-2025-10648
CVE-2025-10648 concerns the WordPress plugin “Login with YourMembership – YM SSO Login”. The vulnerability arises from a missing capability check in the moym_display_test_attributes function, affecting all versions up to and including 1.1.7, enabling unauthenticated attackers to read the profile ...
EUVD-2025-34569
The YourMembership Single Sign On – YM SSO Login plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the 'moymdisplaytestattributes' function in all versions up to, and including, 1.1.7. This makes it possible for unauthenticated attackers to rea...
CVE-2025-10648 Login with YourMembership - YM SSO Login <= 1.1.7 - Missing Authorization to Unauthenticated Sensitive Information Exposure via 'moym_display_test_attributes'
The YourMembership Single Sign On – YM SSO Login plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the 'moymdisplaytestattributes' function in all versions up to, and including, 1.1.7. This makes it possible for unauthenticated attackers to rea...
CVE-2025-21050
Improper input validiation in Contacts prior to SMR Oct-2025 Release 1 allows local attackers to access data across multiple user profiles...
CVE-2025-21050
CVE-2025-21050 affects Samsung Mobile devices in the Contacts component prior to SMR Oct-2025 Release 1. The root cause is improper input validation, enabling a local attacker to access data across multiple user profiles. Impact is confidentiality-focused (high), with local, low-complexity access...
SAMSUNG Mobile devices 安全漏洞
SAMSUNG Mobile devices are a range of Samsung mobile devices, including cell phones, tablets, etc., from the South Korean company Samsung SAMSUNG. A security vulnerability exists in SAMSUNG Mobile devices versions prior to SMR Oct-2025 Release 1, which stems from improper input validation and cou...
EUVD-2018-20219
Malware in sbrugna...
EUVD-2020-12316
Malware in sbrugna...
EUVD-2017-12100
Malware in sbrugna...
EUVD-2015-7118
Malware in sbrugna...
EUVD-2018-20018
Malware in sbrugna...
EUVD-2020-12397
Malware in sbrugna...
EUVD-2017-8865
Malware in sbrugna...
EUVD-2025-13693
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2013-1830
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - user/view.php in Moodle through 2.1.10, 2.2.x before 2.2.8, 2.3.x before 2.3.5, and 2.4.x before 2.4.2 does not enforce the forceloginforprofiles setting, which...
CVE-2025-21035
Improper access control in Samsung Calendar prior to version 12.5.06.5 in Android 14 and 12.6.01.12 in Android 15 allows physical attackers to access data across multiple user profiles...
CVE-2025-21035
CVE-2025-21035 describes an improper access control in Samsung Calendar. The vulnerability affects Samsung Calendar versions prior to 12.5.06.5 on Android 14 and prior to 12.6.01.12 on Android 15, potentially allowing a physical attacker to access data across multiple user profiles. Root cause is...