The following table lists the changes that have been made to the CVE-2025-7817 vulnerability over time. Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability’s severity, exploitability, or other characteristics. New CVE Received by [email protected] Jul. 19, 2025 Action […]
In the Linux kernel, the following vulnerability has been resolved: KVM: x86/hyper-v: Skip non-canonical addresses during PV TLB flush In KVM guests with Hyper-V hypercalls enabled, the hypercalls HVCALL_FLUSH_VIRTUAL_ADDRESS_LIST and HVCALL_FLUSH_VIRTUAL_ADDRESS_LIST_EX allow a guest to request invalidation of portions of a virtual TLB. For this, the hypercall parameter includes a list of GVAs that are […]
CVE ID : CVE-2015-10139 Published : July 19, 2025, 12:15 p.m. | 1 hour, 25 minutes ago Description : The WPLMS theme for WordPress is vulnerable to Privilege Escalation in versions 1.5.2 to 1.8.4.1 via the ‘wp_ajax_import_data’ AJAX action. This makes it possible for authenticated attackers to change otherwise restricted settings and potentially create a new accessible […]
CVE ID : CVE-2015-10138 Published : July 19, 2025, 12:15 p.m. | 1 hour, 25 minutes ago Description : The Work The Flow File Upload plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the jQuery-File-Upload-9.5.0 server and test files in versions up to, and including, 2.5.2. This makes it […]
The following table lists the changes that have been made to the CVE-2025-7816 vulnerability over time. Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability’s severity, exploitability, or other characteristics. New CVE Received by [email protected] Jul. 19, 2025 Action […]
The following table lists the changes that have been made to the CVE-2025-7815 vulnerability over time. Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability’s severity, exploitability, or other characteristics. New CVE Received by [email protected] Jul. 19, 2025 Action […]
CVE ID : CVE-2016-15043 Published : July 19, 2025, 10:15 a.m. | 1 hour, 24 minutes ago Description : The WP Mobile Detector plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in resize.php file in versions up to, and including, 3.5. This makes it possible for unauthenticated attackers to upload […]
CVE ID : CVE-2015-10136 Published : July 19, 2025, 10:15 a.m. | 1 hour, 24 minutes ago Description : The GI-Media Library plugin for WordPress is vulnerable to Directory Traversal in versions before 3.0 via the ‘fileid’ parameter. This allows unauthenticated attackers to read the contents of arbitrary files on the server, which can contain sensitive information. […]
CVE ID : CVE-2015-10135 Published : July 19, 2025, 10:15 a.m. | 1 hour, 24 minutes ago Description : The WPshop 2 – E-Commerce plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the ajaxUpload function in versions before 1.3.9.6. This makes it possible for unauthenticated attackers to upload arbitrary […]
CVE ID : CVE-2015-10134 Published : July 19, 2025, 10:15 a.m. | 1 hour, 24 minutes ago Description : The Simple Backup plugin for WordPress is vulnerable to Arbitrary File Download in versions up to, and including, 2.7.10. via the download_backup_file function. This is due to a lack of capability checks and file type validation. This makes […]
Unit A5, Endeavour Business Park
Penner Road, Havant
PO9 1QN
Company Registration Number: 5334133
Company VAT Number: 855 7246 95
