EUVD-2026-2757

Cmder Console Emulator 1.3.18 contains a buffer overflow vulnerability that allows attackers to trigger a denial of service condition through a maliciously crafted .cmd file. Attackers can create a specially constructed .cmd file with repeated characters to overwhelm the console emulator's buffer...

Cmder buffer error vulnerability

Cmder is an open-source cmd command-line software developed by Cmder. Version 1.3.18 of Cmder contains a buffer error vulnerability, which stems from improper handling of a specially crafted cmd file. This vulnerability may lead to a denial-of-service attack...

CVE-2025-49934

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Crocoblock JetBlocks For Elementor jet-blocks allows Stored XSS.This issue affects JetBlocks For Elementor: from n/a through = 1.3.18...

CVE-2025-49934

CVE-2025-49934 affects CrocoBlock JetBlocks For Elementor (WordPress plugin) up to version 1.3.18, with a stored XSS due to improper neutralization of input during web page generation in the jet-blocks component. Potential impact is stored XSS affecting users viewing pages. Remediation: upgrade t...

CVE-2025-49934 WordPress JetBlocks For Elementor plugin <= 1.3.18 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Crocoblock JetBlocks For Elementor jet-blocks allows Stored XSS.This issue affects JetBlocks For Elementor: from n/a through = 1.3.18...

WordPress Plugin JetBlocks For Elementor 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed using the PHP language, with the ability to host personal blog sites on PHP and MySQL based servers.WordPress...

PT-2025-43198

Name of the Vulnerable Software and Affected Versions CrocoBlock JetBlocks For Elementor versions through 1.3.18 Description A flaw exists in CrocoBlock JetBlocks For Elementor that allows for Stored Cross-Site Scripting XSS. This issue involves improper neutralization of input during web page...

EUVD-2025-25330

Malicious code in bioql PyPI...

CVE-2025-53988

Insertion of Sensitive Information Into Sent Data vulnerability in Crocoblock JetBlocks For Elementor jet-blocks allows Retrieve Embedded Sensitive Data.This issue affects JetBlocks For Elementor: from n/a through = 1.3.18...

CVE-2025-53988

Insertion of Sensitive Information Into Sent Data vulnerability in Crocoblock JetBlocks For Elementor jet-blocks allows Retrieve Embedded Sensitive Data.This issue affects JetBlocks For Elementor: from n/a through = 1.3.18...

CVE-2025-53988 WordPress JetBlocks For Elementor <= 1.3.18 - Sensitive Data Exposure Vulnerability

Insertion of Sensitive Information Into Sent Data vulnerability in Crocoblock JetBlocks For Elementor jet-blocks allows Retrieve Embedded Sensitive Data.This issue affects JetBlocks For Elementor: from n/a through = 1.3.18...

CVE-2025-53988 WordPress JetBlocks For Elementor <= 1.3.18 - Sensitive Data Exposure Vulnerability

Insertion of Sensitive Information Into Sent Data vulnerability in Crocoblock JetBlocks For Elementor jet-blocks allows Retrieve Embedded Sensitive Data.This issue affects JetBlocks For Elementor: from n/a through = 1.3.18...

CVE-2025-53988

CVE-2025-53988 affects Crocoblock JetBlocks for Elementor &lt;=1.3.18. The issue is the insertion of sensitive information into sent data, enabling retrieval of embedded sensitive data. Affected: JetBlocks For Elementor

WordPress plugin JetBlocks For Elementor 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

WordPress JetBlocks For Elementor plugin <= 1.3.18 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by stealthcopter in WordPress Plugin JetBlocks For Elementor versions = 1.3.18...

WordPress plugin Icegram Collect – Easy Form, Lead Collection and Subscription plugin 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in WordPress...

Rakuten Turbo 5G 操作系统命令注入漏洞

The Rakuten Turbo 5G is a home router from Rakuten that requires no construction and plugs into a power outlet. An operating system command injection vulnerability exists in Rakuten Turbo 5G V1.3.18 and earlier versions, which stems from the presence of operating system command injection, where a...

Rakuten Turbo 5G 访问控制错误漏洞

The Rakuten Turbo 5G is a home router from Rakuten that requires no construction and plugs into an electrical outlet. An access control error vulnerability exists in Rakuten Turbo 5G V1.3.18 and earlier versions that stems from a lack of authentication for critical functions, where an...

Rakuten Turbo 5G 安全漏洞

Rakuten Turbo 5G is a home router from Rakuten that requires no construction and plugs into an electrical outlet. A security vulnerability exists in Rakuten Turbo 5G V1.3.18 and earlier versions, which arises from the exposure of sensitive system information to unauthorized control, where an...

PT-2024-33257 · Rakuten · Rakuten Turbo 5G

Name of the Vulnerable Software and Affected Versions: Rakuten Turbo 5G firmware versions V1.3.18 and earlier Description: The issue is related to improper neutralization of special elements used in an OS command, also known as 'OS Command Injection'. This could allow a remote authenticated...