CVE-2018-25116

MyBB Thread Redirect Plugin 0.2.1 contains a cross-site scripting vulnerability in the custom text input field for thread redirects. Attackers can inject malicious SVG scripts that will execute when other users view the thread, allowing arbitrary script execution...

Linux Kernel Security Vulnerabilities

The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the improper closure of the IRQ working thread when removing devices, potentially leading to crashes...

trends-widget Cross-Site Scripting Vulnerability

Trends-Widget is a plugin developed by Zain Ali, a personal developer for MyBB. Version 1.2 of Trends-Widget contains a cross-site scripting vulnerability. This vulnerability stems from insufficient input validation for thread titles, which may lead to cross-site scripting attacks...

PT-2026-4502

MyBB Trending Widget Plugin 1.2 contains a cross-site scripting vulnerability that allows attackers to inject malicious scripts through thread titles. Attackers can modify thread titles with script payloads that will execute when other users view the trending widget...

Thread Redirect plugin for MyBB – Cross-site scripting vulnerabilities

The Thread Redirect plugin for MyBB is a plugin developed by Jamie Sage, an individual developer. The Thread Redirect plugin for MyBB version 0.2.1 has a cross-site scripting vulnerability. This vulnerability stems from improper cleaning of custom text input fields, which may lead to cross-site...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: curl (UTSA-2026-004928)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004928 advisory. When doing multi-threaded LDAPS transfers LDAP over TLS with libcurl, changing TLS options in one thread would inadvertently change them globally and therefore...

Exploit for CVE-2026-24061

CVE-2026-24061 CVE-2026-24061 Batch Scanning Tool How to us...

MAL-2026-449 Malicious code in icloudprocessor (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 67b215e1995682b83e1afa8c297ecbdfe93d12db8cc11341b6bda84116d95814 During importing, the package starts a thread that exfiltrates user's files --- Category: MALICIOUS - The campaign has clearly malicious intent, like...

Malicious code in icloudprocessor (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 67b215e1995682b83e1afa8c297ecbdfe93d12db8cc11341b6bda84116d95814 During importing, the package starts a thread that exfiltrates user's files --- Category: MALICIOUS - The campaign has clearly malicious intent, like...

SUSE CVE-2021-47865

ProFTPD 1.3.7a contains a denial of service vulnerability that allows attackers to overwhelm the server by creating multiple simultaneous FTP connections. Attackers can repeatedly establish connections using threading to exhaust server connection limits and block legitimate user access...

Azure Linux 3.0 Security Update: hyperv-daemons (CVE-2024-35794)

The version of hyperv-daemons installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-35794 advisory. - In the Linux kernel, the following vulnerability has been resolved: dm-raid: really frozen syncthrea...

Azure Linux 3.0 Security Update: kernel (CVE-2024-57834)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-57834 advisory. - In the Linux kernel, the following vulnerability has been resolved: media: vidtv: Fix a null-ptr-deref in...

CVE-2026-21964

Oracle CPU describes the issue as following: Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Thread Pooling. Supported versions that are affected are 8.0.0-8.0.44, 8.4.0-8.4.7 and 9.0.0-9.5.0. Easily exploitable vulnerability allows high privileged attacker with netwo...

EUVD-2026-3548

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Thread Pooling. Supported versions that are affected are 8.0.0-8.0.44, 8.4.0-8.4.7 and 9.0.0-9.5.0. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromis...

ROS-20260121-73-0019

A vulnerability in the syscall.c component of the Linux operating system kernel is related to thread blocking errors. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

Allocation of Resources Without Limits or Throttling

Overview Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling via the Thread Pooling component. An attacker can cause the application to hang or crash repeatedly by sending specially crafted requests over the network with high privileges...

CVE-2026-21964

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Thread Pooling. Supported versions that are affected are 8.0.0-8.0.44, 8.4.0-8.4.7 and 9.0.0-9.5.0. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromis...

AZL-74949 CVE-2026-21964 affecting package mysql for versions less than 8.0.45-1

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Thread Pooling. Supported versions that are affected are 8.0.0-8.0.44, 8.4.0-8.4.7 and 9.0.0-9.5.0. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromis...

CVE-2026-21964

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Thread Pooling. Supported versions that are affected are 8.0.0-8.0.44, 8.4.0-8.4.7 and 9.0.0-9.5.0. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromis...

AZL-75008 CVE-2026-21964 affecting package mysql for versions less than 8.0.45-1

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Thread Pooling. Supported versions that are affected are 8.0.0-8.0.44, 8.4.0-8.4.7 and 9.0.0-9.5.0. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromis...