Categoria: CVE

A vulnerability, which was classified as critical, has been found in WeKan up to 8.20. This impacts an unknown function of the file models/boards.js of the component REST Endpoint. This manipulation causes improper access...

A vulnerability classified as critical was found in WeKan up to 8.20. This affects an unknown function of the file models/attachments.js of the component Attachment Storage. The manipulation results in improper access controls....

A vulnerability classified as critical has been found in WeKan up to 8.20. The impacted element is an unknown function of the file server/attachmentMigration.js of the component Attachment Migration. The manipulation leads to...

A vulnerability described as critical has been identified in Nokia Infinera DNA. The affected element is an unknown function. Executing a manipulation can lead to sql injection. This vulnerability is tracked as CVE-2025-10258....

A vulnerability marked as problematic has been reported in web2py up to 2.27.1-stable+timestamp.2023.11.16.08.03.57. Impacted is an unknown function. Performing a manipulation results in open redirect. This vulnerability is...

A vulnerability labeled as critical has been found in All In One Image Viewer Block Plugin up to 1.0.2 on WordPress. This issue affects some unknown processing of the component REST API Endpoint. Such manipulation leads to...

A vulnerability identified as problematic has been detected in Robin Image Optimizer Plugin up to 2.0.2 on WordPress. This vulnerability affects unknown code. This manipulation of the argument Image Alternative Text causes cross...

A vulnerability categorized as problematic has been discovered in ELEXtensions ELEX WordPress HelpDesk & Customer Ticketing System Plugin up to 3.3.5 on WordPress. This affects the function eh_crm_ticket_general of the...

A vulnerability was found in ProfileGrid Plugin up to 5.9.7.2 on WordPress. It has been rated as problematic. Affected by this issue is the function pm_deactivate_user_from_group. The manipulation leads to missing authorization....

A vulnerability was found in Greenshift Plugin up to 12.5.7 on WordPress. It has been declared as problematic. Affected by this vulnerability is the function greenshift_app_pass_validation of the component AI API Key Handler....

A vulnerability was found in isaacs brace-expansion up to 5.0.0. It has been rated as problematic. The affected element is an unknown function. This manipulation causes inefficient regular expression complexity. The...

A vulnerability was found in InternationalColorConsortium iccDEV 2.3.1.1/2.3.1.2. It has been declared as critical. Impacted is the function CIccIO::WriteUInt16Float. The manipulation results in heap-based buffer overflow. This...