The remote host is missing an update for...Read More ...
Continue Reading
May 27, 2025
The Disable Json API, Login Lockdown, XMLRPC, Pingback, Stop User Enumeration Anti Hacker Scan plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check ...
Continue Reading
May 23, 2025
PaperCut NG allows for unauthenticated XMLRPC commands to be run by default. Versions 22.0.12 and below are confirmed to be affected, but later versions may also be affected due to lack of a vendor su ...
Continue Reading
May 23, 2025
Typecho v1.2.1 was discovered to be vulnerable to an XML Quadratic Blowup attack via the component...Read More ...
Continue Reading
May 23, 2025
In Linaro Automated Validation Architecture (LAVA) before 2022.11, users with valid credentials can submit crafted XMLRPC requests that cause a recursive XML entity expansion, leading to excessive use ...
Continue Reading
May 23, 2025
In Linaro Automated Validation Architecture (LAVA) before 2022.11, users with valid credentials can submit crafted XMLRPC requests that cause a recursive XML entity expansion, leading to excessive use ...
Continue Reading
May 23, 2025
PowerCMS XMLRPC API provided by Alfasado Inc. contains a command injection vulnerability. Sending a specially crafted message by POST method to PowerCMS XMLRPC API may allow arbitrary Perl script exec ...
Continue Reading
May 23, 2025
The Disable Json API, Login Lockdown, XMLRPC, Pingback, Stop User Enumeration Anti Hacker Scan WordPress plugin before 4.20 does not have proper authorisation and CSRF in an AJAX action, allowing any ...
Continue Reading
May 23, 2025
Back to Main
