CVE-2025-53466 WordPress Better Find and Replace Plugin <= 1.7.6 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in CodeSolz Better Find and Replace allows Stored XSS. This issue affects Better Find and Replace: from n/a through 1.7.6...

CVE-2025-53466 WordPress Better Find and Replace Plugin <= 1.7.6 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in CodeSolz Better Find and Replace real-time-auto-find-and-replace allows Stored XSS.This issue affects Better Find and Replace: from n/a through = 1.7.6...

WordPress plugin Better Find and Replace 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin.... A cross-site scripting...

PT-2025-39002

Name of the Vulnerable Software and Affected Versions CodeSolz Better Find and Replace versions through 1.7.6 Description The software contains a flaw related to improper input handling during web page generation, which can lead to Stored Cross-site Scripting XSS. This allows an attacker to injec...

CVE-2023-53380

CVE-2023-53380 affects the Linux kernel md/raid10 code. A null pointer dereference could occur in raid10_sync_request when a faulty mreplace is set between two checks. The fix merges the two checks into one and replaces the two variables with a single mreplace determination, preventing the race c...

UBUNTU-CVE-2022-50273

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to do sanity check on destination blkaddr during recovery As Wenqing Liu reported in bugzilla: https://bugzilla.kernel.org/showbug.cgi?id=216456 loop5: detected capacity change from 0 to 131072 F2FS-fs loop5:...

[SECURITY] Fedora 41 Update: ruff-0.11.5-7.fc41

An extremely fast Python linter and code formatter, written in Rust. Ruff aims to be orders of magnitude faster than alternative tools while integrating more functionality behind a single, common interface. Ruff can be used to replace Flake8 plus dozens of plugins, Black, isort, pydocstyle,...

Linux Distros Unpatched Vulnerability : CVE-2025-27789

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Babel is a compiler for writing next generation JavaScript. When using versions of Babel prior to 7.26.10 and 8.0.0-alpha.17 to compile regular expression named...

smb/server: avoid deadlock when linking with ReplaceIfExists

...

Malicious code in heart-replace-whistle (npm)

The package heart-replace-whistle was found to contain malicious code...

MAL-2025-44549 Malicious code in heart-replace-whistle (npm)

The package heart-replace-whistle was found to contain malicious code...

SUSE CVE-2025-38711

In the Linux kernel, the following vulnerability has been resolved: smb/server: avoid deadlock when linking with ReplaceIfExists If smb2createlink is called with ReplaceIfExists set and the name does exist then a deadlock will happen. ksmbdvfskernpathlocked will return with success and the parent...

CVE-2025-38711

In the Linux kernel, the following vulnerability has been resolved: smb/server: avoid deadlock when linking with ReplaceIfExists If smb2createlink is called with ReplaceIfExists set and the name does exist then a deadlock will happen. ksmbdvfskernpathlocked will return with success and the parent...

DEBIAN-CVE-2025-38711

In the Linux kernel, the following vulnerability has been resolved: smb/server: avoid deadlock when linking with ReplaceIfExists If smb2createlink is called with ReplaceIfExists set and the name does exist then a deadlock will happen. ksmbdvfskernpathlocked will return with success and the parent...

AZL-66872 CVE-2025-38711 affecting package kernel for versions less than 6.6.104.2-1

In the Linux kernel, the following vulnerability has been resolved: smb/server: avoid deadlock when linking with ReplaceIfExists If smb2createlink is called with ReplaceIfExists set and the name does exist then a deadlock will happen. ksmbdvfskernpathlocked will return with success and the parent...

CVE-2025-38711

CVE-2025-38711 : Linux kernel vulnerability fixed in smb/server deadlock scenario when linking with ReplaceIfExists. If smb2_create_link() is called with ReplaceIfExists and the target name exists, ksmbd_vfs_kern_path_locked() locks the parent, then ksmbd_vfs_remove_file() deletes the file, and k...

CVE-2025-38711 smb/server: avoid deadlock when linking with ReplaceIfExists

In the Linux kernel, the following vulnerability has been resolved: smb/server: avoid deadlock when linking with ReplaceIfExists If smb2createlink is called with ReplaceIfExists set and the name does exist then a deadlock will happen. ksmbdvfskernpathlocked will return with success and the parent...

CVE-2025-38711 smb/server: avoid deadlock when linking with ReplaceIfExists

In the Linux kernel, the following vulnerability has been resolved: smb/server: avoid deadlock when linking with ReplaceIfExists If smb2createlink is called with ReplaceIfExists set and the name does exist then a deadlock will happen. ksmbdvfskernpathlocked will return with success and the parent...

SunPower PVS6

RISK EVALUATION Successful exploitation of this vulnerability could allow attackers to gain full access to the device, enabling them to replace firmware, modify settings, disable the device, create SSH tunnels, and manipulate attached devices. 2. RECOMMENDED PRACTICES CISA recommends users take...

Linux Distros Unpatched Vulnerability : CVE-2025-3408

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was found in Nothings stb up to f056911. It has been rated as critical. Affected by this issue is the function stbdupreplace. The manipulation...