59 matches found
EUVD-2026-15885
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Northern Beaches Websites WP Custom Admin Interface wp-custom-admin-interface allows DOM-Based XSS.This issue affects WP Custom Admin Interface: from n/a through = 7.42...
EUVD-2026-14148
Missing Authorization vulnerability in Northern Beaches Websites WP Custom Admin Interface wp-custom-admin-interface allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Custom Admin Interface: from n/a through = 7.41...
WordPress WP Custom Admin Interface plugin <= 7.42 - Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability discovered by hhhai in WordPress Plugin WP Custom Admin Interface versions = 7.42...
CVE-2026-25011 WordPress WP Custom Admin Interface plugin <= 7.41 - Broken Access Control vulnerability
Missing Authorization vulnerability in Northern Beaches Websites WP Custom Admin Interface wp-custom-admin-interface allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Custom Admin Interface: from n/a through = 7.41...
CVE-2026-25011 WordPress WP Custom Admin Interface plugin <= 7.41 - Broken Access Control vulnerability
Missing Authorization vulnerability in Northern Beaches Websites WP Custom Admin Interface wp-custom-admin-interface allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Custom Admin Interface: from n/a through = 7.41...
CVE-2026-25011
CVE-2026-25011: The WP Custom Admin Interface plugin (wp-custom-admin-interface) has Missing Authorization (Broken Access Control) affecting versions up to and including 7.41. Root cause: misconfigured access control security levels enabling unauthorized access. Impact: potential privilege-relate...
EUVD-2026-5296
Missing Authorization vulnerability in Northern Beaches Websites WP Custom Admin Interface wp-custom-admin-interface allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Custom Admin Interface: from n/a through = 7.41...
PT-2026-6245
Name of the Vulnerable Software and Affected Versions Northern Beaches Websites WP Custom Admin Interface versions through 7.41 Description A missing authorization issue exists in the WP Custom Admin Interface, allowing exploitation of incorrectly configured access control security levels...
CVE-2025-63038
Missing Authorization vulnerability in Northern Beaches Websites WP Custom Admin Interface wp-custom-admin-interface allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Custom Admin Interface: from n/a through = 7.40...
CVE-2025-63038 WordPress WP Custom Admin Interface plugin <= 7.40 - Broken Access Control vulnerability
Missing Authorization vulnerability in Northern Beaches Websites WP Custom Admin Interface wp-custom-admin-interface allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Custom Admin Interface: from n/a through = 7.40...
WordPress plugin WP Custom Admin Interface 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security vulnerabili...
Linux Distros Unpatched Vulnerability : CVE-2023-21840
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the MySQL Server product of Oracle MySQL component: Server: PS. Supported versions that are affected are 5.7.40 and prior. Easily exploitable...
Linux Distros Unpatched Vulnerability : CVE-2016-6211
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The User module in Drupal 7.x before 7.44 allows remote authenticated users to gain privileges via vectors involving contributed or custom code that triggers a...
Linux Distros Unpatched Vulnerability : CVE-2023-22015
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 5.7.42 and prior and 8.0.31 and...
Linux Distros Unpatched Vulnerability : CVE-2016-3169
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The User module in Drupal 6.x before 6.38 and 7.x before 7.43 allows remote attackers to gain privileges by leveraging contributed or custom code that calls the...
mysql: InnoDB unspecified vulnerability (CPU Oct 2023)
Vulnerability in the MySQL Server product of Oracle MySQL component: InnoDB. Supported versions that are affected are 5.7.43 and prior, 8.0.34 and prior and 8.1.0. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Serve...
PT-2025-3422 · Otcms · Otcms
Name of the Vulnerable Software and Affected Versions: OtCMS versions =7.46 Description: The issue allows for Server-Side Request Forgery SSRF in the "/admin/read.php" API endpoint, enabling arbitrary system file reads. Recommendations: For OtCMS versions =7.46, as a temporary workaround, conside...
WordPress Email Subscribers plugin < 5.7.44 - Admin+ SQL Injection vulnerability
Admin+ SQL Injection vulnerability discovered by Dmitrii Ignatyev in WordPress Plugin Email Subscribers & Newsletters versions 5.7.44...
Image Access Scan2Net 安全漏洞
Image Access Scan2Net is a scanning software from the German company Image Access. A security vulnerability in Image Access Scan2Net versions 7.40 and earlier, 7.42 and earlier, and 7.42B and earlier stems from a flaw in the self-developed session management, which allows an attacker to take over...
Image Access Scan2Net 安全漏洞
Image Access Scan2Net is a scanning software from Image Access Germany. A security vulnerability exists in Image Access Scan2Net versions 7.40 and earlier, 7.42 and earlier, and 7.42B and earlier, which originates from an unauthenticated attacker who can perform a SQL injection by accessing the...