EUVD-2026-1334

The Unify plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'init' action in all versions up to, and including, 3.4.9. This makes it possible for unauthenticated attackers to delete specific plugin options via the 'unifyplugindowngrad...

CVE-2017-8152

Huawei Honor 5S smart phones with software the versions before TAG-TL00C01B173 have a Factory Reset Protection FRP bypass security vulnerability due to the improper design. An attacker can access factory reset page without authorization by only dial with special code. The attacker can exploit thi...

Authorization

Huawei Honor 5S smart phones with software the versions before TAG-TL00C01B173 have a Factory Reset Protection FRP bypass security vulnerability due to the improper design. An attacker can access factory reset page without authorization by only dial with special code. The attacker can exploit thi...

Phabricator: The special code in editor has no Authority control and can lead to Information Disclosure

Here is your keyword:mongoose Details: - Summary: Uploaded file will be showed as a special code Fxxx in Phabricator editor,but it has no Authority control. - Reproduce steps: 1.Open two different browsers to simulate two different users 2.browser A:login as user "toma" 3.browser B:login a user...