7 matches found
Astra Linux – Vulnerability in Node-Elliptic
The verify function in lib/elliptic/eddsa/index.js within the Elliptic package, as of version 6.5.6 for Node.js, omits the validation of the condition “sig.S.gtesig.eddsa.curve.n || sig.S.isNeg”...
CVE-2026-39535
Missing Authorization vulnerability in fullworks Display Eventbrite Events widget-for-eventbrite-api allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Display Eventbrite Events: from n/a through = 6.5.6...
Fedora 43 : fetchmail (2025-891d4dd5d6)
The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-891d4dd5d6 advisory. Update to fetchmail-6.5.6 CVE-2025-61962 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus h...
UBUNTU-CVE-2024-48949
The verify function in lib/elliptic/eddsa/index.js in the Elliptic package before 6.5.6 for Node.js omits "sig.S.gtesig.eddsa.curve.n || sig.S.isNeg" validation...
PT-2024-28211 · Unknown · Webappick Ctx Feed
Name of the Vulnerable Software and Affected Versions: WebAppick CTX Feed versions n/a through 6.5.6 Description: The issue is related to Improper Privilege Management in WebAppick CTX Feed, allowing Privilege Escalation. Recommendations: For versions n/a through 6.5.6, update to a version that...
CVE-2024-1219
The Easy Social Feed WordPress plugin before 6.5.6 does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks which could be used against high...
PT-2019-11104 · Apc · Apc Ups Network Management Card 2
Name of the Vulnerable Software and Affected Versions: APC UPS Network Management Card 2 AOS version 6.5.6 Description: A Credentials Management issue exists, which could cause Remote Monitoring Credentials to be viewed in plaintext when Remote Monitoring is enabled and then disabled...