Unity Linux 20.1070e Security Update: SDL2 (UTSA-2026-017801)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017801 advisory. SDL Simple DirectMedia Layer through 2.0.12 has a heap-based buffer over-read in Blit3or4to3or4inversedrgb in video/SDLblitN.c via a crafted .BMP file. Tenable has...

CVE-2026-25521 Locutus is vulnerable to Prototype Pollution

Locutus brings stdlibs of other programming languages to JavaScript for educational purposes. In versions from 2.0.12 to before 2.0.39, a prototype pollution vulnerability exists in locutus. Despite a previous fix that attempted to mitigate prototype pollution by checking whether user input...

EUVD-2005-2339

Malware in sbrugna...

WordPress IgnitionDeck plugin <= 2.0.15 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Legion Hunter in WordPress Plugin IgnitionDeck versions = 2.0.15...

EUVD-2025-24924

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2021-35472

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in LemonLDAP::NG before 2.0.12. Session cache corruption can lead to authorization bypass or spoofing. By running a loop that makes many...

CVE-2025-8604

The WP Table Builder – WordPress Table Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's wptb shortcode in all versions up to, and including, 2.0.12 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possib...

CVE-2025-55711

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WP Table Builder WP Table Builder wp-table-builder allows Stored XSS.This issue affects WP Table Builder: from n/a through = 2.0.12...

PT-2025-33452 · WordPress · Wp Table Builder +1

Name of the Vulnerable Software and Affected Versions: WP Table Builder – WordPress Table Plugin versions up to and including 2.0.12 Description: The WP Table Builder – WordPress Table Plugin for WordPress is susceptible to Stored Cross-Site Scripting via the plugin’s wptb shortcode due to...

CVE-2025-55711

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WP Table Builder WP Table Builder wp-table-builder allows Stored XSS.This issue affects WP Table Builder: from n/a through = 2.0.12...

CVE-2025-55711 WordPress WP Table Builder Plugin <= 2.0.12 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WP Table Builder WP Table Builder allows Stored XSS. This issue affects WP Table Builder: from n/a through 2.0.12...

CVE-2025-55711 WordPress WP Table Builder Plugin <= 2.0.12 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WP Table Builder WP Table Builder wp-table-builder allows Stored XSS.This issue affects WP Table Builder: from n/a through = 2.0.12...

PT-2025-33399 · WordPress · Wp Table Builder

Name of the Vulnerable Software and Affected Versions: WP Table Builder versions through 2.0.12 Description: The software contains a Stored Cross-Site Scripting XSS issue. This allows for the injection of malicious scripts into web pages generated by the application. Recommendations: Update WP...

CVE-2025-30935

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in NickDuncan Contact Form contact-form-ready allows DOM-Based XSS.This issue affects Contact Form: from n/a through = 2.0.12...

CVE-2020-2312

Jenkins SQLPlus Script Runner Plugin 2.0.12 and earlier does not mask a password provided as command line argument in build logs...

CVE-2025-48136

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Estatik Mortgage Calculator Estatik estatik-mortgage-calculator allows PHP Local File Inclusion.This issue affects Mortgage Calculator Estatik: from n/a through = 2.0.12...

IBM Storage Defender 加密问题漏洞

IBM Storage Defender is a solution from International Business Machines IBM that provides end-to-end data resiliency. An encryption issue vulnerability exists in IBM Storage Defender - Resiliency Service 2.0.12 and prior versions, which stems from the use of a weak encryption algorithm that could...

CVE-2025-26907

CVE-2025-26907 affects the Estatik Mortgage Calculator (WordPress plugin) with affected versions listed as

WordPress Estatik Mortgage Calculator plugin <= 2.0.12 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by João Pedro Soares de Alcântara Kinorth in WordPress Plugin Mortgage Calculator Estatik versions = 2.0.12...

CVE-2024-10872

The Getwid – Gutenberg Blocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the template-post-custom-field block in all versions up to, and including, 2.0.12 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, wit...