CVE-2024-13410

CVE-2024-13410 affects CozyStay <= 1.7.0 and TinySalt

CVE-2024-13899

The Mambo Importer plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 1.0 via deserialization of untrusted input via the $data parameter in the fImportMenu function. This makes it possible for authenticated attackers, with Administrator-level access a...

CVE-2022-3861 Betheme <= 26.5.1.4 - Authenticated (Subscriber+) PHP Object Injection

The Betheme theme for WordPress is vulnerable to PHP Object Injection in versions up to, and including, 26.5.1.4 via deserialization of untrusted input supplied via the import, mfn-items-import-page, and mfn-items-import parameters passed through the mfnbuilderimport, mfnbuilderimportpage,...

Hyland OnBase Information Disclosure Vulnerability

Hyland Software is an American company that develops OnBase, an enterprise content management and process management software suite. The company's suite is used in healthcare, financial institutions, insurance companies, government departments, higher education and manufacturing. Hyland OnBase ha...