CVE-2026-24939

Missing Authorization vulnerability in WP Chill Modula Image Gallery modula-best-grid-gallery allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Modula Image Gallery: from n/a through = 2.13.6...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002676)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002676 advisory. drivers/usb/core/config.c in the Linux kernel before 4.13.6 allows local users to cause a denial of service out-of-bounds read and system crash or possibly have...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002225)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002225 advisory. net/netfilter/nfconntrackprotodccp.c in the Linux kernel through 3.13.6 uses a DCCP header pointer incorrectly, which allows remote attackers to cause a denial of...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003380)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003380 advisory. The uas driver in the Linux kernel before 4.13.6 allows local users to cause a denial of service out-of- bounds read and system crash or possibly have unspecified...

EUVD-2025-200257

Entrust nShield Connect XC, nShield 5c, and nShield HSMi through 13.6.11, or 13.7, allow a physically proximate attacker to escalate privileges by editing the Legacy GRUB bootloader configuration to start a root shell upon boot of the host OS. This is called F06...

EUVD-2025-200255

Entrust nShield Connect XC, nShield 5c, and nShield HSMi through 13.6.11, or 13.7, allow a physically proximate attacker to escalate privileges by booting from a USB device with a valid root filesystem. This occurs because of insecure default settings in the Legacy GRUB Bootloader...

EUVD-2025-200256

Entrust nShield Connect XC, nShield 5c, and nShield HSMi through 13.6.11, or 13.7, might allow a physically proximate attacker to gain access to the EOL legacy bootloader...

CVE-2025-59695

Entrust nShield Connect XC, nShield 5c, and nShield HSMi through 13.6.11, or 13.7, allow a user with OS root access to alter firmware on the Chassis Management Board without Authentication. This is called F04...

CVE-2025-59698

Entrust nShield Connect XC, nShield 5c, and nShield HSMi through 13.6.11, or 13.7, might allow a physically proximate attacker to gain access to the EOL legacy bootloader...

Linux Distros Unpatched Vulnerability : CVE-2023-39039

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An information leak in Camp Style Project Line v13.6.1 allows attackers to obtain the channel access token and send crafted messages. CVE-2023-39039 Note that...

EulerOS 2.0 SP11 : perl (EulerOS-SA-2025-1938)

According to the versions of the perl packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : Perl threads have a working directory race condition where file operations may target unintended paths. If a directory handle is open at thread...

WordPress WPBot Pro Wordpress Chatbot plugin <= 13.6.5 - Arbitrary File Deletion vulnerability

Arbitrary File Deletion vulnerability discovered by Tran Nguyen Bao KhanhVCI - VNPT in WordPress Plugin WPBot Pro Wordpress Chatbot versions = 13.6.5...

WordPress plugin WPBot Pro Wordpress Chatbot 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

CVE-2024-40829

The issue was addressed with improved checks. This issue is fixed in watchOS 10.6, iOS 17.6 and iPadOS 17.6, iOS 16.7.9 and iPadOS 16.7.9, macOS Ventura 13.6.8. An attacker may be able to view restricted content from the lock screen...

PT-2024-29040 · Apple · Apple Macos

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 12.7.6 macOS versions prior to 13.6.8 macOS versions prior to 14.6 Description: The issue allows a local attacker to potentially elevate their privileges. It was addressed with improved checks. Recommendations: For mac...

PT-2024-19769 · Apple · Apple Macos

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 12.7.4 macOS versions prior to 13.6.5 macOS versions prior to 14.4 Description: A race condition was addressed with additional validation. This issue may allow an app to access protected user data. Recommendations: For...

CVE-2023-44000

An issue in Otakara lapis totuka mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token...

Line Security Breach

Line is an instant messaging platform from Line Inc. A security vulnerability exists in Line mokumoku chohu mini-app version v13.6.1, which stems from a vulnerability that allows an attacker to send a crafted malicious notification by revealing a channel access token...

PT-2024-13157 · Stockman · Stockman Group Mini-App On Line

Name of the Vulnerable Software and Affected Versions: STOCKMAN GROUP mini-app on Line version 13.6.1 Description: An issue in the STOCKMAN GROUP mini-app on Line allows attackers to send crafted malicious notifications via leakage of the channel access token. This leakage enables attackers to...

Line Security Breach

Line is an instant messaging platform from Line Inc. A security vulnerability exists in Line version v13.6.1, which stems from a vulnerability that allows an attacker to send a crafted malicious notification by compromising a channel access token...