417642 matches found
EUVD-2026-27804
In the Linux kernel, the following vulnerability has been resolved: ntb: ntbhwswitchtec: Fix array-index-out-of-bounds access Number of MW LUTs depends on NTB configuration and can be set to MAXMWS, This patch protects against invalid index out of bounds access to mwsizes When invalid access prin...
EUVD-2026-27716
In the Linux kernel, the following vulnerability has been resolved: mux: mmio: fix regmap leak on probe failure The mmio regmap that may be allocated during probe is never freed. Switch to using the device managed allocator so that the regmap is released on probe failures e.g. probe deferral and ...
EUVD-2026-27516
An off-by-one error CWE-193 in the ConsumeUnit16Array and ConsumeUnit64Array functions in Velocidex Velociraptor before version 0.76.5 on Windows and Linux allows a local attacker to cause a Denial of Service DoS via a process crash by providing a specially crafted .evtx file to the parseevtx VQL...
EUVD-2026-27143
A security flaw has been discovered in Open5GS up to 2.7.7. Affected is the function udmnudrdrhandlesubscriptionauthentication of the file /src/udm/nudr-handler.c of the component authentication-subscription Endpoint. Performing a manipulation results in denial of service. Remote exploitation of...
EUVD-2026-27003
XML External Entity XXE via Unsanitized Dictionary Parsing in Apache OpenNLP DictionaryEntryPersistor Versions Affected: before 2.5.9, before 3.0.0-M3 Description: The DictionaryEntryPersistor class initializes a static SAXParserFactory at class-load time without enabling FEATURESECUREPROCESSING ...
EUVD-2026-26896
mutt before 2.3.2 sometimes truncates the hashpasswd by one byte for IMAP authcram MD5 digest...
EUVD-2026-26815
The NEX-Forms – Ultimate Forms Plugin for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via POST parameter key names in the submitnexform function in versions up to, and including, 9.1.11 due to insufficient input sanitization and output escaping. This makes it...
EUVD-2026-26779
The Geo Mashup plugin for WordPress is vulnerable to Time-Based SQL Injection via the 'mapposttype' parameter in all versions up to, and including, 1.13.18. This is due to the SearchResults hook explicitly calling stripslashesdeep$POST which removes WordPress magic quotes protection, followed by...
EUVD-2026-26757
The Royal Elementor Addons plugin for WordPress is vulnerable to Server-Side Request Forgery in versions up to, and including, 1.7.1057. This is due to insufficient validation of user-supplied URLs in the rendercsvdata function, which can be bypassed by including 'docs.google.com/spreadsheets' in...
EUVD-2024-55560
Penetration Testing engineers at Amazon have identified a security flaw related to request handling in the web server component that could, under certain conditions, lead to unintended access to protected functions. The manufacturer has released patch firmware for the flaw, please refer to the...
EUVD-2026-24382
Vulnerability in the PeopleSoft Enterprise SCM Purchasing product of Oracle PeopleSoft component: Purchasing. The supported version that is affected is 9.2. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise PeopleSoft Enterprise SCM...
EUVD-2026-9277
The User Registration & Membership – Custom Registration Form Builder, Custom Login Form, User Profile, Content Restriction & Membership Plugin plugin for WordPress is vulnerable to improper privilege management in all versions up to, and including, 5.1.2. This is due to the plugin accepting a...
EUVD-2026-5858
In the Linux kernel, the following vulnerability has been resolved: binder: fix UAF in bindernetlinkreport Oneway transactions sent to frozen targets via binderproctransaction return a BRTRANSACTIONPENDINGFROZEN error but they are still treated as successful since the target is expected to thaw a...
EUVD-2026-4827
Out-of-bounds Write vulnerability in gerstrong Commander-Genius.This issue affects Commander-Genius: before Release refs/pull/358/merge...
EUVD-2026-1468
React Router is a router for React. In @react-router/node versions 7.0.0 through 7.9.3, @remix-run/deno prior to version 2.17.2, and @remix-run/node prior to version 2.17.2, if createFileSessionStorage is being used from @react-router/node or @remix-run/node/@remix-run/deno in Remix v2 with an...
EUVD-2026-1736
The Woodpecker for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'formname' parameter of the woodpecker-connector shortcode in all versions up to, and including, 3.0.4 due to insufficient input sanitization and output escaping. This makes it possible for...
EUVD-2025-203207
The WP to LinkedIn Auto Publish plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via PostMessage in all versions up to, and including, 1.9.8 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web...
EUVD-2025-202754
A vulnerability has been found in SourceCodester Real Estate Property Listing App 1.0. The impacted element is an unknown function of the file /admin/property.php. Such manipulation of the argument image leads to unrestricted upload. It is possible to launch the attack remotely. The exploit has...
EUVD-2025-37758
The ShopLentor – WooCommerce Builder for Elementor & Gutenberg +21 Modules – All in One Solution formerly WooLentor plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 3.2.5 via the 'loadtemplate' function. This makes it possible for unauthenticated...
EUVD-2020-5638
Malware in sbrugna...
EUVD-2016-7712
Malware in sbrugna...
EUVD-2021-21631
Malware in sbrugna...
EUVD-2021-0966
Malware in sbrugna...
EUVD-2021-11114
Malware in sbrugna...
EUVD-2020-18456
Malware in sbrugna...
EUVD-2016-10061
Malware in sbrugna...
EUVD-2006-1255
Malware in sbrugna...
EUVD-2008-2503
Malware in sbrugna...
EUVD-2020-23292
Malware in sbrugna...
EUVD-2021-0214
Malware in sbrugna...
EUVD-2021-26965
Malware in sbrugna...
EUVD-2021-24808
Malware in sbrugna...
EUVD-2021-14245
Malware in sbrugna...
EUVD-2015-3790
Malware in sbrugna...
EUVD-2002-1892
Malware in sbrugna...
EUVD-2021-10940
Malware in sbrugna...
EUVD-2020-14991
Malware in sbrugna...
EUVD-2018-21432
Malware in sbrugna...
EUVD-2021-1451
Malware in sbrugna...
EUVD-2021-1904
Malware in sbrugna...
EUVD-2019-1019
Malware in sbrugna...
EUVD-2003-0995
Malware in sbrugna...
EUVD-2009-3325
Malware in sbrugna...
EUVD-2016-3184
Malware in sbrugna...
EUVD-2007-2450
Malware in sbrugna...
EUVD-2007-5158
Malware in sbrugna...
EUVD-2020-24208
Malware in sbrugna...
EUVD-2021-21285
Malware in sbrugna...
EUVD-2021-27344
Malware in sbrugna...
EUVD-2014-3713
Malware in sbrugna...