Known Vulnerabilities for Widgets by Yahoo
Listed below are 1 of the newest known vulnerabilities associated with "Widgets" by "Yahoo".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-43940 json | electerm is an open-sourced terminal/ssh/sftp/telnet/serialport/RDP/VNC/Spice/ftp client. Prior to version 3.7.16, the runWid... | Not Provided | 2026-05-08 | 2026-05-08 |
| CVE-2026-43459 json | In the Linux kernel, the following vulnerability has been resolved: ASoC: soc-core: flush delayed work before removing DAIs ... | Not Provided | 2026-05-08 | 2026-05-11 |
| CVE-2026-41724 json | VMware Cloud Foundation Operations contains multiple stored cross-site scripting vulnerabilities.A malicious actor with privi... | Not Provided | 2026-06-08 | 2026-06-09 |
| CVE-2026-41723 json | VMware Cloud Foundation Operations contains multiple stored cross-site scripting vulnerabilities.A malicious actor with privi... | Not Provided | 2026-06-08 | 2026-06-09 |
| CVE-2026-41722 json | VMware Cloud Foundation Operations contains multiple stored cross-site scripting vulnerabilities.A malicious actor with privi... | Not Provided | 2026-06-08 | 2026-06-09 |
| CVE-2026-24390 json | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Qant... | Not Provided | 2026-01-22 | 2026-04-28 |
| CVE-2026-23928 json | The Item history widget (in Zabbix 7.0+) or the Plain text widget (in Zabbix 6.0) can execute injected JavaScript when HTML d... | Not Provided | 2026-05-06 | 2026-05-06 |
| CVE-2026-12349 json | The Premium Addons for KingComposer plugin for WordPress is vulnerable to unauthorized modification and loss of data in versi... | Not Provided | 2026-06-30 | 2026-06-30 |
| CVE-2026-11614 json | The Xpro Addons — 140+ Widgets for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'cus... | Not Provided | 2026-06-24 | 2026-06-24 |
| CVE-2026-10864 json | A vulnerability in the MISP dashboard widgets allowed an authenticated user to manipulate the fields option and influence whi... | Not Provided | 2026-06-04 | 2026-06-04 |