9 matches found
CVE-2025-11502
The Schema & Structured Data for WP & AMP plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'saswptinymultiplefaq' shortcode in all versions up to, and including, 1.51 due to insufficient input sanitization and output escaping on user supplied attributes. This mak...
EUVD-2023-58562
Malicious code in bioql PyPI...
CVE-2025-20071
NULL pointer dereference for some IntelR Graphics Drivers may allow an authenticated user to potentially enable denial of service via local access...
CVE-2020-10746
A flaw was found in Infinispan org.infinispan:infinispan-server-runtime version 10, where it permits local access to controls via both REST and HotRod APIs. This flaw allows a user authenticated to the local machine to perform all operations on the caches, including the creation, update, deletion...
CVE-2011-4350
Yaws 1.91 has a directory traversal vulnerability in the way certain URLs are processed. A remote authenticated user could use this flaw to obtain content of arbitrary local files via specially-crafted URL request...
Libssh Releases Update to Patch 9 New Security Vulnerabilities
Libssh2, a popular open source client-side C library implementing the SSHv2 protocol, has released the latest version of its software to patch a total of nine security vulnerabilities. The Libssh2 library is available for all major distributors of the Linux operating systems, including Ubuntu, Re...
Gespage 7.4.8 Cross Site Scripting Vulnerability
Exploit for php platform in category web applications CVE-2017-7998 Gespage stored cross-site-scripting XSS vulnerability Description Gespage is web solution providing a printer portal. Official Website: http://www.gespage.com/ The web application does not properly filter several parameters sent ...
McAfee LinuxShield remote/local Code Execution Vulnerability
Exploit for unknown platform in category remote exploits ============================================================ McAfee LinuxShield remote/local Code Execution Vulnerability ============================================================ Title: McAfee LinuxShield remote/local code execution...
CVE-2004-2584
frmAddfolder.aspx in SmarterTools SmarterMail 1.6.1511 and 1.6.1529 allows remote authenticated users to create a folder that SmarterMail cannot delete or rename via a folder name with a null byte "%00". NOTE: it is not clear whether this issue poses a vulnerability...