EUVD-2026-11663

Shopware is an open commerce platform. /api/info/config route exposes information about licenses. This vulnerability is fixed in 7.8.1 and 6.10.15...

CVE-2025-12500

The Checkout Field Manager Checkout Manager for WooCommerce plugin for WordPress is vulnerable to unauthenticated limited file upload in all versions up to, and including, 7.8.1. This is due to the plugin not properly verifying that a user is authorized to perform file upload actions via the...

CVE-2025-15525 Ajax Load More – Infinite Scroll, Lazy Load & Load More <= 7.8.1 - Incorrect Authorization to Unauthenticated Private/Draft Post Title and Excerpt Exposure

The Ajax Load More – Infinite Scroll, Load More, & Lazy Load plugin for WordPress is vulnerable to unauthorized access of data due to incorrect authorization on the parsecustomargs function in all versions up to, and including, 7.8.1. This makes it possible for unauthenticated attackers to expose...

PT-2025-29829 · Fortra · Goanywhere Mft

Name of the Vulnerable Software and Affected Versions: GoAnywhere MFT versions prior to 7.8.1 Description: A broken access control issue in Fortra's GoAnywhere MFT can lead to a denial of service. This occurs when the software is configured to use GoAnywhere One-Time Password GOTP email two-facto...

CVE-2014-3860

Xilisoft Video Converter Ultimate 7.8.1 build-20140505 has a DLL Hijacking vulnerability...

WordPress Link Library plugin <= 7.8 - Cross Site Scripting (XSS) Vulnerability

Cross Site Scripting XSS Vulnerability discovered by muhammad yudha in WordPress Plugin Link Library versions = 7.8...

Chainer Remote Code Execution Vulnerability

Chainer is an open source deep learning framework from Chainer Open Source. A security vulnerability exists in Chainer version v7.8.1.post1, which stems from untrusted data deserialization and can lead to arbitrary code execution. No detailed vulnerability details are provided at this time...

PT-2024-33025 · Chainer · Chainer

Name of the Vulnerable Software and Affected Versions: chainer version 7.8.1.post1 Description: A Deserialization of Untrusted Data issue allows for the execution of arbitrary code. Recommendations: For version 7.8.1.post1, update to a version that fixes the Deserialization of Untrusted Data issu...

Mattermost Server < 7.1.6 / 7.2.x < 7.7.2 / 7.8.x < 7.8.1 Information Disclosure (MMSA-2023-00141)

The version of Mattermost Server running on the remote host is prior to 7.1.6, 7.2.x prior to 7.7.2 or 7.8.x prior to 7.8.1. It is, therefore, affected by an information disclosure vulnerability. An unauthenticated, remote attacker can request a preview of an existing message when creating a new...

Mercedes-Benz XENTRY Retail Data Storage 安全漏洞

Mercedes-Benz XENTRY Retail Data Storage is a type of retail data storage from Mercedes-Benz of Germany. A security vulnerability exists in Mercedes-Benz XENTRY Retail Data Storage version 7.8.1, which originated from a vulnerability that allows remote attackers to cause a denial of service via a...

PT-2023-19063 · Mercedes Benz · Mercedes-Benz Xentry Retail Data Storage

Name of the Vulnerable Software and Affected Versions: Mercedes-Benz XENTRY Retail Data Storage version 7.8.1 Description: The issue allows remote attackers to cause a denial of service, resulting in a device restart, via an unauthenticated API request. The attacker must be on the same network as...

CVE-2021-22794

A CWE-22 Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability exists that could cause remote code execution. Affected Product: StruxureWare Data Center Expert V7.8.1 and prior...

PT-2018-17709 · Mcafee · Mcafee Web Gateway

Name of the Vulnerable Software and Affected Versions: McAfee Web Gateway versions 7.8.1.x Description: The issue allows authenticated administrator users to execute arbitrary commands via unspecified vectors in the administrative interface. Recommendations: For McAfee Web Gateway version 7.8.1.x...

Open-Xchange (OX) App Suite Multiple XSS Vulnerabilities - 01

Open-Xchange OX App Suite is prone to multiple cross-site scripting XSS vulnerabilities. Copyright C 2017 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later Thi...

Open-Xchange AppSuite Cross-Site Scripting Vulnerability (CNVD-2016-04414)

Open-Xchange AppSuite OX AppSuite is a suite of Web-based cloud desktop environments from Open-Xchange, Inc. in the United States. The environment allows users to manage email, tasks, files, etc. more intuitively. A cross-site scripting vulnerability exists in OX AppSuite 7.8.1 and earlier...

Open-Xchange AppSuite Page Forgery Vulnerability

Open-Xchange AppSuite OX AppSuite is a suite of Web-based cloud desktop environments from Open-Xchange, Inc. in the United States. The environment allows users to manage email, tasks, files, etc. more intuitively. A page forgery vulnerability exists in OX AppSuite versions 7.8.0 through 7.8.1. An...