The Recipe Card Blocks by WPZOOM WordPress plugin before 2.8.3 does not properly sanitise or escape some of the properties of the Recipe Card Block…

The Countdown Block WordPress plugin before 1.1.2 does not have authorisation in the eb_write_block_css AJAX action, which allows any authenticated user, such as Subscriber, to…

The Recipe Card Blocks by WPZOOM WordPress plugin before 2.8.1 does not escape the message parameter before outputting it back in the admin dashboard, leading…

The TranslatePress WordPress plugin before 2.0.9 does not implement a proper sanitisation on the translated strings. The 'trp_sanitize_string' function only removes script tag with a…

The Cookie Notice & Compliance for GDPR / CCPA WordPress plugin before 2.1.2 does not escape the value of its Button Text setting when outputting…

The vulnerability origins in the commissioning process where an attacker of the ControlTouch can enter a serial number in a specific way to transfer the…

In Oppo's battery application, the third-party SDK provides the function of loading a third-party Provider, which can be used. Devamını Oku

In m4u, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution…

In m4u, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution…

In ccu, there is a possible out of bounds read due to incorrect error handling. This could lead to information disclosure with System execution privileges…