EUVD-2025-202584

A command injection vulnerability exists in Windscribe for Linux Desktop App that allows a local user who is a member of the windscribe group to execute arbitrary commands as root via the 'adapterName' parameter of the 'changeMTU' function. Fixed in Windscribe v2.18.3-alpha and v2.18.8...

Windscribe for Linux 'changeMTU' local privilege escalation

RISK EVALUATION A command injection vulnerability exists in Windscribe for Linux Desktop App that allows a local user who is a member of the windscribe group to execute arbitrary commands as root via the 'adapterName' parameter of the 'changeMTU' function. Fixed in Windscribe v2.18.3-alpha and...

CVE-2024-7868 affecting package cppcheck for versions less than 2.18.3-1

CVE-2024-7868 affecting package cppcheck for versions less than 2.18.3-1. An upgraded version of the package is available that resolves this issue...

CVE-2023-39070 affecting package cppcheck for versions less than 2.18.3-1

CVE-2023-39070 affecting package cppcheck for versions less than 2.18.3-1. An upgraded version of the package is available that resolves this issue...

WordPress plugin Contact Form by Bit Form 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in WordPress...

PT-2024-27594 · Unknown · Bbpress Notify

Name of the Vulnerable Software and Affected Versions: bbPress Notify versions 2.18.3 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for Reflected XSS. Recommendations: For bbPress...