EUVD-2025-203899

There is a username enumeration via local user login in Entrinsik Informer v5.10.1 which allows malicious users to enumerate users by entering an OTP code and new password then reviewing application responses...

CVE-2025-65185

Summary: CVE-2025-65185 affects Entrinsik Informer v5.10.1, enabling username enumeration during local login by supplying an OTP code and a new password and observing application responses. The vulnerability's impact is described as low (CVSS v3.1: 2.8, LOCAL access, user interaction required). O...

CVE-2025-49298 WordPress Event post plugin <= 5.10.1 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Bastien Ho Event post event-post allows Stored XSS.This issue affects Event post: from n/a through = 5.10.1...

WordPress WPJobBoard plugin <= 5.10.1 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by Ananda Dhakal Patchstack in WordPress Plugin WPJobBoard versions = 5.10.1...

PT-2024-16177 · Elementor · Element Pack Elementor Addons

Name of the Vulnerable Software and Affected Versions: Element Pack Elementor Addons versions up to, and including, 5.10.1 Description: The vulnerability is a Stored Cross-Site Scripting issue due to insufficient input sanitization and output escaping in the Custom Gallery Widget image title...

PT-2024-39900 · WordPress · Element Pack Elementor Addons

Name of the Vulnerable Software and Affected Versions: The Element Pack Elementor Addons plugin for WordPress versions up to, and including, 5.10.1 Description: The issue is related to Stored Cross-Site Scripting via the url parameter in the Age Gate Widget, caused by insufficient input...

CVE-2023-41037

OpenPGP.js is a JavaScript implementation of the OpenPGP protocol. In affected versions OpenPGP Cleartext Signed Messages are cryptographically signed messages where the signed text is readable without special tools. These messages typically contain a "Hash: ..." header declaring the hash algorit...

TIBCO Security Advisory: June 12, 2018 - TIBCO Administrator - Enterprise Edition -2018-5433

XML eXternal Entity Expansion Vulnerabilities with TIBCO Administrator Original release date: June 12, 2018 Last revised: -- CVE-2018-5433 Source: TIBCOSoftware Inc. XML eXternal Entity Expansion Vulnerabilities with TIBCO Administrator Original release date: June 12, 2018 Last revised: -- Source...

PT-2015-4003 · Apache · Apache Activemq

Name of the Vulnerable Software and Affected Versions: Apache ActiveMQ versions prior to 5.10.1 Description: The issue concerns multiple cross-site scripting XSS vulnerabilities in the web-based administration console. These vulnerabilities allow remote attackers to inject arbitrary web script or...

Perl UTF-8 Regular Expression Processing DoS Vulnerability - Windows

Perl is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...