15 matches found
CVE-2026-25314
Missing Authorization vulnerability in WP Messiah TOP Table Of Contents top-table-of-contents allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects TOP Table Of Contents: from n/a through = 1.3.31...
CVE-2026-25314
Missing Authorization vulnerability in WP Messiah TOP Table Of Contents top-table-of-contents allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects TOP Table Of Contents: from n/a through = 1.3.31...
CVE-2026-25314
Missing Authorization vulnerability in WP Messiah TOP Table Of Contents top-table-of-contents allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects TOP Table Of Contents: from n/a through = 1.3.31...
CVE-2026-25314
CVE-2026-25314 impacts the WordPress plugin “TOP Table Of Contents” (TOP Table Of Contents: WordPress plugin). The Red Hat and CVE feeds, NVD and CVE List entries indicate a missing authorization vulnerability described as broken access control in TOP Table Of Contents versions up to and includin...
CVE-2026-25314 WordPress TOP Table Of Contents plugin <= 1.3.31 - Broken Access Control vulnerability
Missing Authorization vulnerability in WP Messiah TOP Table Of Contents top-table-of-contents allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects TOP Table Of Contents: from n/a through = 1.3.31...
PT-2026-20685
Missing Authorization vulnerability in WP Messiah TOP Table Of Contents top-table-of-contents allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects TOP Table Of Contents: from n/a through = 1.3.31...
WordPress plugin TOP Table Of Contents 安全漏洞
WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be added t...
WordPress TOP Table Of Contents plugin <= 1.3.31 - Broken Access Control vulnerability
Broken Access Control vulnerability discovered by Nabil Irawan in WordPress Plugin TOP Table Of Contents versions = 1.3.31...
Use of Hard-coded Credentials
Overview Affected versions of this package are vulnerable to Use of Hard-coded Credentials in the AuthN implementation. An attacker can gain unauthorized access to sensitive information, escalate privileges, and tamper with data by leveraging hard-coded credentials. Remediation Upgrade...
Missing Authorization
Overview Affected versions of this package are vulnerable to Missing Authorization in the AuthN implementation. An attacker can access sensitive information by sending unauthorized requests. Remediation Upgrade github.com/NVIDIA/aistore/api/authn to version 1.3.31 or higher. References - GitHub...
Use of Hard-coded Credentials
Overview Affected versions of this package are vulnerable to Use of Hard-coded Credentials in the AuthN implementation. An attacker can gain unauthorized access to sensitive information, escalate privileges, and tamper with data by leveraging hard-coded credentials. Remediation Upgrade...
WordPress Contact Form Email Plugin <= 1.3.31 is vulnerable to Other Vulnerability Type
Software Contact Form Email Type Plugin Vulnerable versions = 1.3.31 Fixed in 1.3.32 OWASP Top 10 A5: Broken Access Control Classification Other Vulnerability Type CVE CVE-2023-28494 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 1b66482cfee4 Credits István Márton Require...
PT-2018-3481 · Graphicsmagick +3 · Graphicsmagick +3
Name of the Vulnerable Software and Affected Versions: GraphicsMagick version 1.3.31 Description: The issue is related to the ReadDIBImage function in GraphicsMagick, which lacks proper input validation. This can be exploited by a remote attacker using a specially crafted dib file, potentially...
Apache HTTP Server Connection Blocking Denial of Service Vulnerability
The remote web server appears to be running a version of Apache HTTP Server that is less that 2.0.49 or 1.3.31. These versions are vulnerable to a denial of service attack where a remote attacker can block new connections to the server by connecting to a listening socket on a rarely accessed port...
httpd mod_digest nonce not verified
moddigest for Apache before 1.3.31 does not properly verify the nonce of a client response by using a AuthNonce secret...