6 matches found
CVE-2025-9342
CVE-2025-9342 affects Anadolu Hayat Emeklilik AHE Mobile (versions 1.9.7β1.9.8). A user-controlled key allows an authorization bypass, enabling privilege abuse. Public descriptions across multiple feeds confirm the issue and list 1.9.9 as the required fix. Impact details state privilege elevation...
CVE-2025-9342 IDOR in Anadolu Hayat Emeklilik's AHE Mobile
Authorization Bypass Through User-Controlled Key vulnerability in Anadolu Hayat Emeklilik Inc. AHE Mobile allows Privilege Abuse. This issue affects AHE Mobile: from 1.9.7 before 1.9.9...
Linux Distros Unpatched Vulnerability : CVE-2025-1296
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Nomad Community and Nomad Enterprise Nomad are vulnerable to unintentional exposure of the workload identity token and client secret token in audit logs. This...
PT-2024-27602 Β· Mediavine Β· Create By Mediavine
Name of the Vulnerable Software and Affected Versions: Create by Mediavine versions 1.9.7 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for Stored XSS attacks. Recommendations: For...
WordPress Plugin SiteAlert θ·¨η«θ―·ζ±δΌͺι ζΌζ΄
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forger...
CVE-2022-35238
Unauthenticated Plugin Settings Change vulnerability in Awesome Filterable Portfolio plugin = 1.9.7 at WordPress...