3 matches found
CVE-2025-58435
Open OnDemand is affected: versions prior to 3.1.15 and 4.0.7 fail to rotate the noVNC password when TurboVNC > 3.1.2. The underlying issue enables a user to hijack a session if they obtain a link to an active desktop and the other party is authenticated; impact is limited to authenticated use...
PT-2021-22063 · WordPress · Nested Pages
Name of the Vulnerable Software and Affected Versions: Nested Pages WordPress plugin versions 3.1.15 and earlier Description: The issue concerns an Open Redirect vulnerability via the page POST parameter in the npBulkActions, npBulkEdit, npListingSort, and npCategoryFilter admin post actions...
WordPress 插件输入验证错误漏洞
WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language . The platform supports setting up personal blog sites on PHP and MySQL servers.WordPress plugin is an open source application plugin for WordPress. A security vulnerability exists in the WordPress...