CVE-2025-11928

The CSS & JavaScript Toolbox plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 12.0.5 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level...

WordPress plugin CSS & JavaScript Toolbox 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin.... A cross-site...

CVE-2025-46752

A insertion of sensitive information into log file in Fortinet FortiDLP 12.0.0 through 12.0.5, 11.5.1, 11.4.6, 11.4.5 allows attacker to information disclosure via re-using the enrollment code...

Drupal 安全漏洞

Drupal is an open source content management system developed in the PHP language by the Drupal community. A security vulnerability exists in Drupal Open Social prior to version 12.0.5, which stems from the inclusion of an improper authorization vulnerability...

PT-2023-6090 · Adobe · Bridge

Name of the Vulnerable Software and Affected Versions: Adobe Bridge versions 12.0.4 and earlier Adobe Bridge versions 13.0.3 and earlier Description: The issue is related to an out-of-bounds read vulnerability in Adobe Bridge when processing embedded fonts. This could allow an attacker to gain...

CVE-2021-43803

Next.js is a React framework. In versions of Next.js prior to 12.0.5 or 11.1.3, invalid or malformed URLs could lead to a server crash. In order to be affected by this issue, the deployment must use Next.js versions above 11.1.0 and below 12.0.5, Node.js above 15.0.0, and next start or a custom...

Unspecified Vulnerability in Intel Active Management Technology

Intel Active Management Technology AMT is an embedded system from the U.S. company Intel Intel that is integrated into the Intel chip and uses active management technology. A security vulnerability exists in the TLS implementation in Intel AMT versions prior to 12.0.5. An attacker could exploit t...

Intel Active Management Technology Multiple Vulnerabilities (INTEL-SA-00141)

Multiple vulnerabilities in Intel Active Management Technology AMT in Intel CSME firmware may allow arbitrary code execution, a partial denial of service DoS or information disclosure. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, a...

PT-2018-1596 · Intel · Intel Csme +1

Name of the Vulnerable Software and Affected Versions: Intel CSME firmware versions prior to 12.0.5 Description: The issue is caused by multiple buffer overflows in Intel AMT in Intel CSME firmware, which may allow a privileged user to potentially execute arbitrary code with Intel AMT execution...

Nextcloud Server Design Vulnerability

Nextcloud is a set of open source self-hosted file synchronization and sharing communication application platform from Nextcloud, Germany. Nextcloud Server is a server version of it. A security vulnerability exists in Nextcloud Server versions prior to 11.0.7 and prior to 12.0.5. An attacker coul...