CVE-2025-12173

The WP Admin Microblog plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.1.1. This is due to missing or incorrect nonce validation on the 'wp-admin-microblog' page. This makes it possible for unauthenticated attackers to send messages on beha...

Linux Distros Unpatched Vulnerability : CVE-2016-6342

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - elog 3.1.1 allows remote attackers to post data as any username in the logbook. CVE-2016-6342 Note that Nessus relies on the presence of the package as reported...

CVE-2025-31901

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Digihood Digihood HTML Sitemap wedesin-html-sitemap allows Reflected XSS.This issue affects Digihood HTML Sitemap: from n/a through = 3.1.1...

CVE-2025-29904

In JetBrains Ktor before 3.1.1 an HTTP Request Smuggling was possible...

IBM Cloud Private Information Disclosure Vulnerability (CNVD-2019-06159)

IBM Cloud Private is a set of enterprise private cloud solutions from IBM USA. The product is built primarily on Kubernetes and container technology. An information disclosure vulnerability exists in IBM Cloud Private version 3.1.1, which can be exploited by local attackers to intercept unencrypt...