OPENSUSE-SU-2026:10383-1 cargo1.93-1.93.0-3.1 on GA media

These are all security issues fixed in the cargo1.93-1.93.0-3.1 package on the GA media of openSUSE Tumbleweed...

BIT-APPSMITH-2026-22794 Account Takeover Vulnerability in Appsmith

Appsmith is a platform to build admin panels, internal tools, and dashboards. Prior to 1.93, the server uses the Origin value from the request headers as the email link baseUrl without validation. If an attacker controls the Origin, password reset / email verification links in emails can be...

CVE-2026-22794

Appsmith is a platform to build admin panels, internal tools, and dashboards. Prior to 1.93, the server uses the Origin value from the request headers as the email link baseUrl without validation. If an attacker controls the Origin, password reset / email verification links in emails can be...

EUVD-2026-1997

Appsmith is a platform to build admin panels, internal tools, and dashboards. Prior to 1.93, the server uses the Origin value from the request headers as the email link baseUrl without validation. If an attacker controls the Origin, password reset / email verification links in emails can be...

CVE-2026-22794 Account Takeover Vulnerability in Appsmith

Appsmith is a platform to build admin panels, internal tools, and dashboards. Prior to 1.93, the server uses the Origin value from the request headers as the email link baseUrl without validation. If an attacker controls the Origin, password reset / email verification links in emails can be...

CVE-2026-22794 Account Takeover Vulnerability in Appsmith

Appsmith is a platform to build admin panels, internal tools, and dashboards. Prior to 1.93, the server uses the Origin value from the request headers as the email link baseUrl without validation. If an attacker controls the Origin, password reset / email verification links in emails can be...

EUVD-2000-0624

Malware in sbrugna...

PT-2024-26622 · Unknown · Advanced Woo Labels

Name of the Vulnerable Software and Affected Versions: Advanced Woo Labels versions n/a through 1.93 Description: The issue affects Advanced Woo Labels, allowing Cross-Site Scripting XSS due to improper neutralization of input during web page generation. This enables attackers to inject malicious...

WordPress plugin Advanced Woo Labels Cross-Site Scripting Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL. WordPress plugin is an application plugin. A cross-site scripting vulnerabili...

WordPress Advanced Woo Labels plugin <= 1.93 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Savphill Patchstack Alliance in WordPress Plugin Advanced Woo Labels versions = 1.93...

WordPress Advanced Woo Labels Plugin <= 1.93 is vulnerable to Cross Site Scripting (XSS)

Software Advanced Woo Labels Type Plugin Vulnerable versions = 1.93 Fixed in 1.94 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-35675 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 0ad89d9224a2 Credits savphill Required privilege...

OPENSUSE-SU-2021:1249-1 Security update for gifsicle

This update for gifsicle fixes the following issues: Update to version 1.93: Fix security bug on certain resize operations with --resize-method=box Fix problems with colormapless GIFs. Update to version 1.92 Add --lossy option from Kornel Lipiński. Remove an assertion failure possible with...

Security update for gifsicle (moderate)

openSUSE Security Update: Security update for gifsicle Announcement ID: openSUSE-SU-2021:1249-1 Rating: moderate References: Affected Products: openSUSE Leap 15.2 openSUSE Backports SLE-15-SP3 openSUSE Backports SLE-15-SP2 openSUSE Backports SLE-15-SP1 An update that contains security fixes can n...

MyChat Plus Multiple Vulnerabilities

This host is running MyChat Plus and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbphpmychatplusmultvuln.nasl 5793 2017-03-30 13:40:15Z cfi $ phpMyChat Plus Multiple Vulnerabilities Authors: Antu Sanadi Copyright: Copyright c 2011 Greenbone Networks GmbH,...

CVE-2000-0628

The source.asp example script in the Apache ASP module Apache::ASP 1.93 and earlier allows remote attackers to modify files...