CVE-2026-7505

A flaw has been found in nextlevelbuilder GoClaw and GoClaw Lite up to 3.8.5. This affects an unknown function of the component RPC Handler. This manipulation causes improper authorization. The attack may be initiated remotely. The exploit has been published and may be used. Upgrading to version...

CVE-2023-38561

Improper access control in some IntelR XTU software before version 7.12.0.29 may allow an authenticated user to potentially enable escalation of privilege via local access...

CVE-2023-38565

A path handling issue was addressed with improved validation. This issue is fixed in macOS Monterey 12.6.8, iOS 16.6 and iPadOS 16.6, macOS Big Sur 11.7.9, macOS Ventura 13.5, watchOS 9.6. An app may be able to gain root privileges...

WordPress Plugin WooCommerce Ship to Multiple Addresses 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forger...

CVE-2022-3853

creationtimestamp| type| source ---|---|--- 2022-12-12 20:21:03+00:00| seen| https://t.me/cibsecurity/54340 2025-04-22 15:03:32+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/12856...

guake 安全漏洞

guake is a python-based drop-down terminal designed for the GNOME desktop environment. A security vulnerability exists in guake that stems from guake exposing the executecommand and executecommandbyuuid methods via the d-bus interface, which allows a malicious user to run arbitrary commands via t...

PT-2020-16161 · Moodle +1 · Moodle +1

Name of the Vulnerable Software and Affected Versions: moodle versions 3.5 to 3.5.14 moodle versions 3.7 to 3.7.8 moodle versions 3.8 to 3.8.5 moodle versions 3.9 to 3.9.2 Description: Insufficient capability checks in moodle could lead to users with the ability to course restore adding additiona...