Security update for php7

This update for php7 fixes the following issues CVE-2026-6722: use-after-free in SOAP using Apache map can lead to remote code execution bsc1264776. CVE-2026-6735: improper validation of the request URI within the PHP-FPM status page can lead to XSS bsc1264775. CVE-2026-7258: signed char values...

Linux Distros Unpatched Vulnerability : CVE-2022-23518

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - rails-html-sanitizer is responsible for sanitizing HTML fragments in Rails applications. Versions = 1.0.3, = 2.1.0. This issue is patched in version 1.4.4...

Judge.me : Stored XSS in Public Profile Reviews

A stored XSS vulnerability was found in the public profile review section of a platform. Attackers could add a product description with a data URI XSS payload in HTML format, which would execute when a user clicked on the HTML tag. This could lead to the execution of arbitrary code in the victim'...

WP Super Cache 1.3 - trunk/plugins/searchengine.php URI XSS

The WP Super Cache WordPress plugin was affected by a trunk/plugins/searchengine.php URI XSS security vulnerability...

WP Super Cache 1.3 - trunk/plugins/wptouch.php URI XSS

The WP Super Cache WordPress plugin was affected by a trunk/plugins/wptouch.php URI XSS security vulnerability...

Yahoo!: information disclosure (LOAD BALANCER + URI XSS)

Thank you for your submission to the Yahoo Bug Bounty program. We were able to reproduce the issue you reported and have implemented appropriate fixes. We appreciate your adherence to responsible disclosure guidelines and look forward to your future participation in the program...

opera to 12.10 (important)

This Opera 12.10 security update fixes following security issues: -an issue that could cause Opera not to correctly check for certificate revocation; -an issue where CORS requests could incorrectly retrieve contents of cross origin pages; -an issue where data URIs could be used to facilitate...

PaoBacheca 2.1 Cross Site Scripting

/ | | \ \ / / | | \ \ / / | |\ \ /\ / / | | | | | | \ V /| | | \ V V / | | || | || / ||| // ,|, | |/ | | | |/ / | ' \ | | / | | | | | | | |||,|| || || PaoBacheca 2.1 Remote URI XSS Vulnerabilities Discovered By : Moudi Contact : Download : http://zenas.org Greetings : Mizoz, Zuka, str0ke,...

Mozilla Product(s) 'javascript:' URI XSS Vulnerability - Sep09 (Windows)

This host is installed with Mozilla Products and is prone to Cross-Site Scripting vulnerability. OpenVAS Vulnerability Test $Id: gbmozillaprdtsjsurixssvulnsep09win.nasl 6468 2017-06-28 14:05:02Z cfischer $ Mozilla Products 'javascript:' URI XSS Vulnerability - Sep09 Windows Authors: Sharath S...

427bb 2.3.1 - SQL Injection Cross-Site Scripting

427bb 2.3.1 - SQL Injection Cross-Site Scripting ============================================================ 427BB 2.3.1 SQL/XSS Multiple Remote Vulnerabilities ============================================================ ,--^----------,--------,-----,-------^--, | ||||||||| --------' | O .. CWH...