CVE-2026-30289

An arbitrary file overwrite vulnerability in Tinybeans Private Family Album App v5.9.5-prod allows attackers to overwrite critical internal files via the file import process, leading to arbitrary code execution or information exposure...

ALPINE-CVE-2025-68615

net-snmp is a SNMP application library, tools and daemon. Prior to versions 5.9.5 and 5.10.pre2, a specially crafted packet to an net-snmp snmptrapd daemon can cause a buffer overflow and the daemon to crash. This issue has been patched in versions 5.9.5 and 5.10.pre2...

AZL-72901 CVE-2025-68615 affecting package net-snmp for versions less than 5.9.5.2-1

net-snmp is a SNMP application library, tools and daemon. Prior to versions 5.9.5 and 5.10.pre2, a specially crafted packet to an net-snmp snmptrapd daemon can cause a buffer overflow and the daemon to crash. This issue has been patched in versions 5.9.5 and 5.10.pre2...

CVE-2025-68615 Net-SNMP snmptrapd crash

net-snmp is a SNMP application library, tools and daemon. Prior to versions 5.9.5 and 5.10.pre2, a specially crafted packet to an net-snmp snmptrapd daemon can cause a buffer overflow and the daemon to crash. This issue has been patched in versions 5.9.5 and 5.10.pre2...

Diebold Nixdorf Vynamic View Console 信息泄露漏洞

Diebold Nixdorf Vynamic View Console is a Diebold Nixdorf system that allows remote changes to all PC-based devices via Intel Active Management Technology AMT BIOS management. An information disclosure vulnerability exists in Diebold Nixdorf Vynamic View Console versions prior to 5.9.5, which ste...

WordPress plugin Event post path traversal vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A path traversal...

CVE-2021-45079 affecting package strongswan for versions less than 5.9.5-1

CVE-2021-45079 affecting package strongswan for versions less than 5.9.5-1. An upgraded version of the package is available that resolves this issue...

CVE-2021-41991 affecting package strongswan for versions less than 5.9.5-1

CVE-2021-41991 affecting package strongswan for versions less than 5.9.5-1. An upgraded version of the package is available that resolves this issue...

WordPress events-manager plugin cross-site scripting vulnerability (CNVD-2020-28770)

WordPress is the WordPress Foundation's set of blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. events-manager is an events management plugin used in it. Cross-site scripting vulnerability exists in WordPress events-manager...

Debian DLA-1854-1 : libonig security update

A use-after-free in onignewdeluxe in regext.c allows attackers to potentially cause information disclosure, denial of service, or possibly code execution by providing a crafted regular expression. The attacker provides a pair of a regex pattern and a string, with a multi-byte encoding that gets...

Debian: Security Advisory (DLA-1854-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

AcyMailing, 5.9.5, CSV Injection

AcyMailing by Acyba, versions 5.9.5 and previous, CSV Injection see https://vel.joomla.org/articles/2140-introducing-csv-injection Resolution: update to 5.9.6 update notice: https://www.acyba.com/acymailing/change-log.html...