CVE-2026-12089 WS Optimize – All-in-One Speed Booster & Cache Tools <= 3.3.19 - Authenticated (Editor+) Arbitrary File Read

The LWS Optimize – All-in-One Speed Booster & Cache Tools plugin for WordPress is vulnerable to Arbitrary File Read in versions up to, and including, 3.3.19. This is due to the combinecurrentcss function trusting values harvested from page HTML and converting same-site URLs to absolute filesystem...

CVE-2022-48430

In JetBrains IntelliJ IDEA before 2023.1 file content could be disclosed via an external stylesheet path in Markdown preview...

CVE-2022-48430

In JetBrains IntelliJ IDEA before 2023.1 file content could be disclosed via an external stylesheet path in Markdown preview...

Design/Logic Flaw

In JetBrains IntelliJ IDEA before 2023.1 file content could be disclosed via an external stylesheet path in Markdown preview...

CVE-2022-48430

Vulnerability CVE-2022-48430 affects JetBrains IntelliJ IDEA prior to 2023.1. The issue allows disclosing file content via an external stylesheet path used in Markdown preview, due to the way the preview handles stylesheet references. Impact: potential exposure of local file contents (confidentia...

PT-2023-15774 · Jetbrains · Intellij Idea

Name of the Vulnerable Software and Affected Versions: JetBrains IntelliJ IDEA versions prior to 2023.1 Description: The issue allows file content to be disclosed via an external stylesheet path in Markdown preview. Recommendations: For versions prior to 2023.1, update to version 2023.1 or later ...