CVE-2018-25281 iCash 7.6.5 Denial of Service via Connect to Server

iCash 7.6.5 contains a buffer overflow vulnerability that allows local attackers to crash the application by supplying an oversized payload through the Connect to Server dialog. Attackers can paste a 7000-byte string into the Host field and click Connect to trigger an application crash...

CVE-2025-13696

The Zigaform plugin for WordPress is vulnerable to Sensitive Information Exposure in versions up to, and including, 7.6.5. This is due to the plugin exposing a public AJAX endpoint that retrieves form submission data without performing authorization checks to verify ownership or access rights. Th...

CVE-2023-2982

The WordPress Social Login and Register Discord, Google, Twitter, LinkedIn plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 7.6.4. This is due to insufficient encryption on the user being supplied during a login validated through the plugin. This makes...

CVE-2024-13319

The Themify Builder plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of addqueryarg without appropriate escaping on the URL in all versions up to, and including, 7.6.5. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages...

WordPress plugin Themify Builder 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. WordPress plugin Themify...

Authentication flaw

The WordPress Social Login and Register Discord, Google, Twitter, LinkedIn plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 7.6.4. This is due to insufficient encryption on the user being supplied during a login validated through the plugin. This makes...

WordPress Social Login and Register < 7.6.5 Authentication Bypass Vulnerability

The WordPress plugin SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

CVE-2020-15086

In TYPO3 installations with the "mediace" extension from version 7.6.2 and before version 7.6.5, it has been discovered that an internal verification mechanism can be used to generate arbitrary checksums. The allows to inject arbitrary data having a valid cryptographic message authentication code...

Atlassian JIRA 7.6.5 / 7.7.x < 7.7.4 / 7.8.x < 7.8.4 / 7.9.x < 7.9.2 Multiple Vulnerabilities (SB18-141)

According to its self-reported version number, the instance of Atlassian JIRA hosted on the remote web server is potentially affected by multiple vulnerabilities: - Atlassian JIRA contains a flaw that allows a reflected cross-site scripting XSS attack. This flaw exists because the issue collector...

SafeNet Sentinel Keys Server Crash PoC

No description provided by source. Exploit Title: SafeNet Sentinel Keys Server DoS Date: 10 Sep 2012 Exploit Author: retset https://twitter.com/ret5et Vendor Homepage: http://www.safenet-inc.com/ Version: Sentinel Protection Installer v7.6.5 sntlkeyssrvr.exe ver. 1.3.1.3 Download link:...

SafeNet Sentinel Keys Server - Crash (PoC)

SafeNet Sentinel Keys Server - Crash PoC Exploit Title: SafeNet Sentinel Keys Server DoS Date: 10 Sep 2012 Exploit Author: retset https://twitter.com/ret5et Vendor Homepage: http://www.safenet-inc.com/ Version: Sentinel Protection Installer v7.6.5 sntlkeyssrvr.exe ver. 1.3.1.3 Download link:...