7 matches found
Mozilla Firefox ESR < 115.36
The version of Firefox ESR installed on the remote Windows host is prior to 115.36. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2026-47 advisory. - Sandbox escape in the Profile Backup component. This vulnerability was fixed in Firefox 150.0.3, Firefox ESR...
CVE-2026-29097
SuiteCRM is an open-source, enterprise-ready Customer Relationship Management CRM software application. Versions prior to 7.15.1 and 8.9.3 contain a Server-Side Request Forgery SSRF vulnerability combined with a Denial of Service DoS condition in the RSS Feed Dashlet component. Versions 7.15.1 an...
CVE-2026-32567
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in icopydoc YML for Yandex Market yml-for-yandex-market allows Path Traversal.This issue affects YML for Yandex Market: from n/a through 5.3.0...
Denial of Service via "MadeYouReset" vulnerability
Versions of amphp/http-server prior to 3.4.4 for the 3.x release branch and prior to 2.1.10 for the 2.x release branch are vulnerable to the HTTP/2 "MadeYouReset" DoS attack described by CVE-2025-8671 and https://kb.cert.org/vuls/id/767506. In versions 3.4.4 and 2.1.10, stream reset protection ha...
AZL-47841 CVE-2023-52889 affecting package kernel for versions less than 5.15.167.1-1
In the Linux kernel, the following vulnerability has been resolved: apparmor: Fix null pointer deref when receiving skb during sock creation The panic below is observed when receiving ICMP packets with secmark set while an ICMP raw socket is being created. SKCTXsk-label is updated in...
Currency Switcher addon for WooCommerce security bypass vulnerability
Currency Switcher addon for WooCommerce is a currency switcher addon for use in the WooCommerce e-commerce platform. A security bypass vulnerability exists in Currency Switcher addon for WooCommerce versions prior to 2.11.2, which can be exploited by an attacker to purchase items at a low price...
PT-2012-2152 · Unknown · Banana Dance
Name of the Vulnerable Software and Affected Versions: Banana Dance versions prior to B.1.5 Description: The issue allows remote attackers to execute arbitrary SQL commands via the category parameter in the "search.php" file. Recommendations: For versions prior to B.1.5, update to a version that...