9 matches found
CVE-2026-54838
Subscriber SQL Injection in WC Vendors Marketplace = 2.6.8 versions...
CVE-2026-25210 affecting package expat for versions less than 2.6.4-4
CVE-2026-25210 affecting package expat for versions less than 2.6.4-4. A patched version of the package is available...
PT-2025-53872
Name of the Vulnerable Software and Affected Versions DesignThemes LMS Addon versions prior to and including 2.6 Description An authorization issue exists in the DesignThemes LMS Addon due to incorrectly configured access control security levels. This allows for potential exploitation of the...
CVE-2023-0440
Observable Discrepancy in GitHub repository healthchecks/healthchecks prior to v2.6...
WordPress ApplyOnline plugin <= 2.6.7.1 - Broken Access Control vulnerability
Broken Access Control vulnerability discovered by Trương Hữu Phúc truonghuuphuc in WordPress Plugin ApplyOnline versions = 2.6.7.1...
alwakeupword (=1.0.0), armadillin (>=0.0.2 <=0.53.0) +42 more potentially affected by CVE-2022-21726 via tensorflow (>=2.6.0 <=2.6.2)
tensorflow PYPI version =2.6.0, =0.0.2, =1.0.1, =0.0.9, =0.2.0, =4.4.0, =1.1.2, =0.2.0, =0.0.1, =1.0.0, =1.1.2 - imgtovar =0.8.5 and more Source cves: CVE-2022-21726 Source advisory: OSV:GHSA-23HM-7W47-XW72...
com.comcast.money:money-kafka_2.13 (>=0.9.1 <=0.15.1), com.consol.citrus:citrus-kafka (>=3.0.0-M2 <=3.0.0-M3) +57 more potentially affected by CVE-2021-38153 via org.apache.kafka:kafka_2.13 (>=2.4.0 <=2.6.2)
org.apache.kafka:kafka2.13 MAVEN version =2.4.0, =0.9.1, =3.0.0-M2, =1.7, =2.1.0, =3.5.1, =2.4.0, =2.5.1.2 - com.revivebird.finagle:finatra-kafka-streams-prerestore2.13 =25.11.0 and more Source cves: CVE-2021-38153 Source advisory: OSV:GHSA-3J6G-HXX5-3Q26...
wpa_supplicant: Unauthenticated EAPOL-Key decryption in wpa_supplicant
An issue was discovered in rsnsupp/wpa.c in wpasupplicant 2.0 through 2.6. Under certain conditions, the integrity of EAPOL-Key messages is not checked, leading to a decryption oracle. An attacker within range of the Access Point and client can abuse the vulnerability to recover sensitive...
UBUNTU-CVE-2018-14526
An issue was discovered in rsnsupp/wpa.c in wpasupplicant 2.0 through 2.6. Under certain conditions, the integrity of EAPOL-Key messages is not checked, leading to a decryption oracle. An attacker within range of the Access Point and client can abuse the vulnerability to recover sensitive...