UBUNTU-CVE-2022-49164

In the Linux kernel, the following vulnerability has been resolved: powerpc/tm: Fix more userspace r13 corruption Commit cf13435b730a "powerpc/tm: Fix userspace r13 corruption" fixes a problem in treclaim where a SLB miss can occur on the threadstruct-ckptregs while SCRATCH0 is live with the save...

CVE-2022-49675

In the Linux kernel, the following vulnerability has been resolved: tick/nohz: unexport init-annotated ticknohzfullsetup EXPORTSYMBOL and init is a bad combination because the .init.text section is freed up after the initialization. Hence, modules cannot use symbols annotated init. The access to ...

GNU elfutils Buffer Overflow Vulnerability

GNU elfutils is an open source toolset for working with binaries, target files and shared libraries in the ELF Executable and Linkable Format format. GNU elfutils suffers from a buffer overflow vulnerability that stems from improper handling of z/x parameters by the...

CVE-2025-26949

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bPlugins Team Section Block team-section allows Stored XSS.This issue affects Team Section Block: from n/a through = 1.0.9...

CVE-2025-26947

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bPlugins Services Section block services-section allows Stored XSS.This issue affects Services Section block: from n/a through = 1.3.4...

CVE-2025-26949 WordPress Team Section Block plugin <= 1.0.9 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bPlugins Team Section Block team-section allows Stored XSS.This issue affects Team Section Block: from n/a through = 1.0.9...

CVE-2025-26949

CVE-2025-26949 is a stored XSS vulnerability in the WordPress plugin “Team Section block” (bPlugins Team Section Block). The Initial Description states an improper neutralization of input during web page generation, enabling Stored XSS, affecting Team Section Block versions from unspecified earli...

CVE-2025-26947

CVE-2025-26947 is a Stored XSS in the Services Section block (WordPress plugin) caused by improper input neutralization during web page generation. Affected: Services Section block

CVE-2025-26947 WordPress Services Section block plugin <= 1.3.4 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bPlugins Services Section block services-section allows Stored XSS.This issue affects Services Section block: from n/a through = 1.3.4...

CVE-2025-26947 WordPress Services Section block plugin <= 1.3.4 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bPlugins Services Section block services-section allows Stored XSS.This issue affects Services Section block: from n/a through = 1.3.4...

WordPress plugin Team Section Block 跨站脚本漏洞

WordPress and the WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed in the PHP language. WordPress plugin is an application plugin that supports personal blogs on PHP and MySQL servers. A cross-site scripting vulnerability exists in WordPre...

PT-2025-7861 · Bplugins · Bplugins Services Section Block

Name of the Vulnerable Software and Affected Versions: bPlugins Services Section block versions 1.3.4 and earlier Description: The issue is related to improper neutralization of input during web page generation, which leads to a Stored XSS vulnerability in the Services Section block. This allows...

WordPress plugin Services Section block 跨站脚本漏洞

WordPress and the WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed in the PHP language. WordPress plugin is an application plugin that supports personal blogs on PHP and MySQL servers. A cross-site scripting vulnerability exists in WordPre...

PT-2025-7863 · Unknown · Bplugins Team Section Block

Name of the Vulnerable Software and Affected Versions: bPlugins Team Section Block versions 1.0.0 through 1.0.9 Description: The issue is related to improper neutralization of input during web page generation, which leads to a Stored XSS vulnerability. This allows for the storage of malicious...

WordPress Services Section block plugin <= 1.3.4 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Logan Cote Patchstack Alliance in WordPress Plugin Services Section block versions = 1.3.4...

WordPress Team Section Block plugin <= 1.0.9 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Logan Cote Patchstack Alliance in WordPress Plugin Team Section Block versions = 1.0.9...

CVE-2023-51312

PHPJabbers Restaurant Booking System v3.0 is vulnerable to Reflected Cross-Site Scripting XSS in Reservations menu, Schedule section date parameter...

Cross-site Scripting (XSS)

Overview Affected versions of this package are vulnerable to Cross-site Scripting XSS via the overdue section due to improper input sanitization. An attacker can inject malicious scripts and compromise user data, session tokens, and potentially execute unauthorized actions on behalf of users by...

Namada-apps allows Excessive Computation in Mempool Validation

Impact A malicious transaction may cause an expensive computation in mempool validation. A transaction with multiple repeated sections causes the section hash calculation used for signature validation to grow exponentially and potentially even cubic in proportion to number of sections. This may b...

CVE-2023-51336

PHPJabbers Meeting Room Booking System v1.0 is vulnerable to CSV Injection vulnerability which allows an attacker to execute remote code. The vulnerability exists due to insufficient input validation on Languages section Labels any parameters field in System Options that is used to construct CSV...