Portainer 安全漏洞

Portainer is a lightweight user management interface developed by Portainer, open source, for managing Docker environments and Docker hosts. There were security vulnerabilities in versions of Portainer from 2.33.0 to 2.33.8, as well as in versions before 2.39.2 and 2.41.0. These vulnerabilities...

CVE-2025-68835 WordPress Ravpage plugin <= 2.33 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in matiskiba Ravpage ravpage allows Reflected XSS.This issue affects Ravpage: from n/a through = 2.33...

CVE-2025-67542 WordPress Multi-Step Checkout for WooCommerce plugin <= 2.33 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in SilkyPress Multi-Step Checkout for WooCommerce wp-multi-step-checkout allows DOM-Based XSS.This issue affects Multi-Step Checkout for WooCommerce: from n/a through = 2.33...

CVE-2025-67542 WordPress Multi-Step Checkout for WooCommerce plugin <= 2.33 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in SilkyPress Multi-Step Checkout for WooCommerce wp-multi-step-checkout allows DOM-Based XSS.This issue affects Multi-Step Checkout for WooCommerce: from n/a through = 2.33...

EUVD-2024-24862

Malicious code in bioql PyPI...

WordPress plugin PiwigoPress 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site...

WordPress PiwigoPress plugin <= 2.33 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by muhammad yudha Patchstack Alliance in WordPress Plugin PiwigoPress versions = 2.33...

PT-2024-21984 · Unknown · Flusity-Cms

Name of the Vulnerable Software and Affected Versions: Flusity-CMS version 2.33 Description: The issue concerns Cross Site Scripting XSS in 'Custom Blocks.' Recommendations: For Flusity-CMS version 2.33, at the moment, there is no information about a newer version that contains a fix for this...

Cross site request forgery (csrf)

flusity-CMS v2.33 was discovered to contain a Cross-Site Request Forgery CSRF via the component /core/tools/addplaces.php...

flusity CMS Security Vulnerability

flusity CMS is a user interaction interface solution where code can be easily changed or added. A security vulnerability exists in flusity CMS version v2.33, which was discovered to contain a cross-site request forgery CSRF vulnerability via the component /core/tools/updatecontactformsettings.php...

Cross site request forgery (csrf)

flusity-CMS v2.33 was discovered to contain a Cross-Site Request Forgery CSRF via the component /core/tools/deletemenu.php...

PT-2024-20410 · Unknown · Flusity-Cms

Name of the Vulnerable Software and Affected Versions: flusity-CMS version 2.33 Description: A Cross Site Request Forgery issue allows a remote attacker to execute arbitrary code via the delete post.php endpoint. Recommendations: For flusity-CMS version 2.33, consider disabling access to the dele...

PT-2024-20409 · Unknown · Flusity-Cms

Name of the Vulnerable Software and Affected Versions: flusity-CMS version 2.33 Description: A Cross Site Request Forgery issue allows a remote attacker to execute arbitrary code via the "add customblock.php" endpoint. Recommendations: For flusity-CMS version 2.33, consider disabling access to th...

PT-2024-2362 · Unknown · Flusity-Cms

Name of the Vulnerable Software and Affected Versions: flusity-CMS version 2.33 Description: The issue is related to a Cross-Site Request Forgery CSRF in the /core/tools/add translation.php component. This could allow an attacker to perform a CSRF attack. Recommendations: For flusity-CMS version...

PT-2024-20434 · Unknown · Flusity-Cms

Name of the Vulnerable Software and Affected Versions: flusity-CMS version 2.33 Description: A Cross Site Request Forgery CSRF issue allows remote attackers to execute arbitrary code via the add menu.php component. This enables attackers to perform unauthorized actions on behalf of a legitimate...

PT-2023-10165 · Bestwebsoft · Bestwebsoft Facebook Like Button

Name of the Vulnerable Software and Affected Versions: BestWebSoft Facebook Like Button versions up to 2.33 Description: A problematic issue was found, affecting the function fcbkbttn settings page of the file facebook-button-plugin.php. This leads to cross-site scripting and can be launched...

UBUNTU-CVE-2021-33574

The mqnotify function in the GNU C Library aka glibc versions 2.32 and 2.33 has a use-after-free. It may use the notification thread attributes object passed through its struct sigevent parameter after it has been freed by the caller, leading to a denial of service application crash or possibly...

PT-2021-5558 · Gnu +7 · Glibc +7

Name of the Vulnerable Software and Affected Versions: glibc versions 2.32 and 2.33 Description: The issue is related to the mq notify function in the GNU C Library, which has a use-after-free problem. This occurs when the function uses the notification thread attributes object, passed through it...

DEBIAN-CVE-2016-5119

The automatic update feature in KeePass 2.33 and earlier allows man-in-the-middle attackers to execute arbitrary code by spoofing the version check response and supplying a crafted update...

MailEnable IMAPD Enterprise 2.32 2.34 - Remote Buffer Overflow

MailEnable IMAPD Enterprise 2.32 2.34 - Remote Buffer Overflow !/usr/bin/perl maildisable-v3.pl Mail Enable Professional/Enterprise v2.32-4 win32 remote exploit by mu-b - Thu Nov 23 2006 - Tested on: Mail Enable Professional v2.32 win32 - with HOTFIX Mail Enable Professional v2.33 win32 Mail Enab...