13 matches found
CVE-2025-65086
An Out-of-Bounds Write vulnerability is present in Ashlar-Vellum Cobalt, Xenon, Argon, Lithium, and Cobalt Share versions 12.6.1204.216 and prior that could allow an attacker to execute arbitrary code when a specially crafted VC6 file is being parsed...
WordPress The7 Theme <= 12.6.0 is vulnerable to Cross Site Scripting (XSS)
Software The7 Type Theme Vulnerable versions = 12.6.0 Fixed in 12.7.0 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2025-7726 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 79f4fdafca8f Credits Webbernaut Required privilege...
CVE-2019-16148
Sakai through 12.6 allows XSS via a chat user name...
CVE-2024-54046
Adobe Connect versions 12.6, 11.4.7 and earlier are affected by a reflected Cross-Site Scripting XSS vulnerability. If an unauthenticated attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the...
WordPress plugin Ultimate Membership Pro 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...
部分Apple产品 安全漏洞
Apple macOS Big Sur and others are products of Apple Inc. in the U.S. Apple macOS Big Sur is the 17th major version of Apple's macOS for the MAC operating system. apple macOS Monterey is the 18th major version of macOS for the McIntosh desktop operating system. Apple macOS Ventura is a desktop...
GitLab 输入验证错误漏洞
GitLab is a Ruby on Rails-developed, self-hosted, Git version control system project repository application from the American company GitLab. The program can be used to view a project's file contents, commit history, bug lists, and more. An input validation error vulnerability exists in GitLab,...
SeaCMS 跨站脚本漏洞
SeaCMS is a free and open source web content management system written in PHP. The system is primarily designed to manage video-on-demand resources. A security vulnerability exists in SeaCMS, which stems from a cross-site scripting XSS vulnerability in SeaCMS 12.6 via the 1 v company and 2 v tvs...
PT-2021-14889 · Gitlab · Gitlab Ce/Ee +2
Name of the Vulnerable Software and Affected Versions: GitLab CE/EE versions 12.6.0 and above Description: A potential Denial of Service DoS issue was identified in gitlab-shell, allowing an attacker to increase server resource utilization via the gitlab-shell command. Recommendations: For GitLab...
GitLab CE/EE Denial of Service Vulnerability (CNVD-2020-65166)
GitLab is a Ruby on Rails-developed, self-hosted, Git version control system project repository application from the American company GitLab. The program can be used to access a project's file contents, commit history, bug lists, and more. A security vulnerability exists in GitLab CE/EE 12.6 and...
CVE-2016-8529
A Remote Arbitrary Command Execution vulnerability in HPE StoreVirtual 4000 Storage and StoreVirtual VSA Software running LeftHand OS version v12.5 and earlier was found. The problem was resolved in LeftHand OS v12.6 or any subsequent version...
CVE-2013-3778
Unspecified vulnerability in the Oracle Applications Technology Stack component in Oracle E-Business Suite 12.0.6 and 12.1.3 allows remote attackers to affect integrity via unknown vectors related to Help...
Visual Studio 2022 version 17.12.6 update
This security update applies to all editions of Visual Studio 2022, and will update client machines on the LTSC channel to version 17.12.6. The client machines must be enabled to receive this administrator update, and by default Visual Studio must be closed on the client in order for the update t...