CVE-2026-0618

Cross-site Scripting vulnerability in Devolutions PowerShell Universal.This issue affects Powershell Universal: before 4.5.6, before 5.6.13...

CVE-2025-66027 Rallly Information Disclosure Vulnerability in Participant API Leaks Names and Emails Despite Pro Privacy Settings

Rallly is an open-source scheduling and collaboration tool. Prior to version 4.5.6, an information disclosure vulnerability exposes participant details, including names and email addresses through the /api/trpc/polls.get,polls.participants.list endpoint, even when Pro privacy features are enabled...

CVE-2025-59578

CVE-2025-59578 describes a Sensitive Data Exposure in the WordPress plugin ShopMagic (ShopMagic for WooCommerce)

CVE-2025-47610 WordPress WooCommerce Fortnox Integration <= 4.5.6 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Wetail WooCommerce Fortnox Integration allows Stored XSS. This issue affects WooCommerce Fortnox Integration: from n/a through 4.5.6...

PT-2024-21913 · Wondershare · Wondershare Filmora +1

Name of the Vulnerable Software and Affected Versions: Wondershare MobileTrans version 4.5.6 and lower Wondershare Filmora versions 4.5.6 and lower Description: The issue allows attackers to escalate privileges due to multiple unquoted service paths. Recommendations: For Wondershare MobileTrans...

WordPress ChatBot Plugin < 4.5.6 is vulnerable to Cross Site Scripting (XSS)

Software ChatBot Type Plugin Vulnerable versions 4.5.6 Fixed in 4.5.6 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-2811 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID eb7005b63455 Credits NGO VAN TU Required privilege...

WordPress Page Builder Sandwich – Front-End Page Builder plugin <= 4.5.5 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress Page Builder Sandwich – Front-End Page Builder plugin versions = 4.5.5. Solution Update the WordPress Page Builder Sandwich – Front-End Page Builder plugin to the latest available version at least 4.5.6...

WordPress Email Subscribers & Newsletters plugin <= 4.5.5 - Unauthenticated email forgery/spoofing vulnerability

Unauthenticated email forgery/spoofing vulnerability found by Alex Peña in WordPress Email Subscribers & Newsletters plugin versions = 4.5.5. Solution Update the WordPress Email Subscribers & Newsletters plugin to the latest available version at least 4.5.6...

CVE-2017-11301

An issue was discovered in Adobe Digital Editions 4.5.6 and earlier versions. An exploitable memory corruption vulnerability exists, which could lead to disclosure of memory addresses...

CVE-2017-11297

An issue was discovered in Adobe Digital Editions 4.5.6 and earlier versions. An exploitable memory corruption vulnerability exists, which could lead to disclosure of memory addresses...

Adobe Digital Editions out-of-bounds memory read vulnerability (CNVD-2017-37097)

Adobe Digital Editions software offers an engaging way to help you view and manage eBooks and other digital publications. An out-of-bounds memory read vulnerability exists in Adobe Digital Editions versions 4.5.6 and earlier. An attacker could exploit this vulnerability to view memory address...

Bugzilla < 4.0.16 / 4.1.1 < 4.2.12 / 4.3 < 4.4.7 / 4.5 < 4.5.6 Command Injection

Binary data 8913.prm...

ownCloud PHP Remote Code Execution Vulnerabilities (Apr 2014)

ownCloud is prone to multiple remote code execution RCE vulnerabilities. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

TYPO3 Unspecified SQL Injection Vulnerability

TYPO3 is prone to an SQL injection SQLi vulnerability. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:typo3:typo3"; ifdescriptio...