WpDataTables – Tables & Table Charts (WordPress Plugin) Security Vulnerabilities

Unsafe Reflection in base Component class in yiisoft/yii2

Yii2 supports attaching Behaviors to Components by setting properties having the format 'as <behaviour-name>'. Internally this is done using the __set() magic method. If the value passed to this method is not an instance of the Behavior class, a new object is instantiated using...

CVE-2023-44487 vulnerabilities

Vulnerabilities for packages: fuse-overlayfs-snapshotter, goreleaser, bom, slsa-verifier, external-dns, prometheus, dynamic-localpv-provisioner, envoy-ratelimit, gke-gcloud-auth-plugin, weaviate, kubescape, keda, aws-efs-csi-driver, secrets-store-csi-driver-provider-gcp, grpcurl, conftest,...

CVE-2024-21626 vulnerabilities

Vulnerabilities for packages: skopeo, ctop, wolfictl, k3d, runc, zarf, kubernetes, docker, nerdctl, skaffold, syft, kubescape, telegraf, zot, k3s, kots, buildkitd, newrelic-infrastructure-agent, cadvisor, grype, trivy, k9s, datadog-agent, ingress-nginx-controller, kaniko,...

GHSA-8R3F-844C-MC37 vulnerabilities

Vulnerabilities for packages: guac, fuse-overlayfs-snapshotter, goreleaser, melange, restic, tekton-chains, kyverno-policy-reporter, trust-manager, kine, prometheus-beat-exporter, slsa-verifier, kubernetes-csi-external-snapshotter, fulcio, kor, cfssl, external-dns, kuberay-operator,...

CVE-2023-45289 vulnerabilities

Vulnerabilities for packages: fuse-overlayfs-snapshotter, goreleaser, fq, go-licenses, bom, kyverno-policy-reporter, kine, prometheus-beat-exporter, slsa-verifier, kubernetes-csi-external-snapshotter, kor, cfssl, newrelic-prometheus-configurator, external-dns, govulncheck, kuberay-operator,...

GHSA-VVPX-J8F3-3W6H vulnerabilities

Vulnerabilities for packages: wireguard-go, falco, restic, k3d, grpcurl, go, dynamic-localpv-provisioner, hey,...

CVE-2023-45288 vulnerabilities

Vulnerabilities for packages: fuse-overlayfs-snapshotter, melange, fq, restic, harbor-scanner-trivy, tekton-chains, bom, nri-consul, trust-manager, prometheus-beat-exporter, fulcio, external-dns, terragrunt, tflint, flux, gh, gke-gcloud-auth-plugin, kubernetes-dashboard, keda, velero,...

CVE-2024-24787 vulnerabilities

Vulnerabilities for packages: guac, fuse-overlayfs-snapshotter, melange, harbor-scanner-trivy, tekton-chains, go, go-licenses, bom, trust-manager, prometheus-beat-exporter, aactl, fulcio, harbor-cli, cfssl, kubernetes-csi-external-snapshotter, newrelic-prometheus-configurator, external-dns,...

CVE-2023-45285 vulnerabilities

Vulnerabilities for packages: goreleaser, mage, aws-flb-firehose, go-licenses, hey, slsa-verifier, kubernetes-dashboard-metrics-scraper, docker-credential-ecr-login, wait-for-port, cortex, ctop, protoc-gen-go-grpc, go-bindata, nsc, k3d, go-md2man, nats, gosu, sonobuoy, gke-gcloud-auth-plugin,...

CVE-2023-3978 vulnerabilities

Vulnerabilities for packages: fuse-overlayfs-snapshotter, goreleaser, bom, trust-manager, kubernetes-csi-external-snapshotter, aactl, external-dns, flux, prometheus, dynamic-localpv-provisioner, gke-gcloud-auth-plugin, weaviate, kubernetes-dashboard, keda, aws-efs-csi-driver,...

CVE-2024-24786 vulnerabilities

Vulnerabilities for packages: guac, fuse-overlayfs-snapshotter, goreleaser, melange, restic, tekton-chains, kyverno-policy-reporter, trust-manager, kine, prometheus-beat-exporter, slsa-verifier, kubernetes-csi-external-snapshotter, fulcio, kor, cfssl, external-dns, kuberay-operator,...

CVE-2024-24784 vulnerabilities

Vulnerabilities for packages: fuse-overlayfs-snapshotter, goreleaser, fq, go-licenses, bom, kyverno-policy-reporter, kine, prometheus-beat-exporter, slsa-verifier, kubernetes-csi-external-snapshotter, kor, cfssl, newrelic-prometheus-configurator, external-dns, govulncheck, kuberay-operator,...

GHSA-RR6R-CFGF-GC6H vulnerabilities

Vulnerabilities for packages: fuse-overlayfs-snapshotter, goreleaser, fq, go-licenses, bom, kyverno-policy-reporter, kine, prometheus-beat-exporter, slsa-verifier, kubernetes-csi-external-snapshotter, kor, cfssl, newrelic-prometheus-configurator, external-dns, govulncheck, kuberay-operator,...

CVE-2022-41723 vulnerabilities

Vulnerabilities for packages: wireguard-go, falco, restic, k3d, grpcurl, go, dynamic-localpv-provisioner, hey,...

GHSA-5FQ7-4MXC-535H vulnerabilities

Vulnerabilities for packages: guac, fuse-overlayfs-snapshotter, melange, harbor-scanner-trivy, tekton-chains, go, go-licenses, bom, trust-manager, prometheus-beat-exporter, aactl, fulcio, harbor-cli, cfssl, kubernetes-csi-external-snapshotter, newrelic-prometheus-configurator, external-dns,...

GHSA-4V7X-PQXF-CX7M vulnerabilities

Vulnerabilities for packages: fuse-overlayfs-snapshotter, melange, fq, restic, harbor-scanner-trivy, tekton-chains, bom, nri-consul, trust-manager, prometheus-beat-exporter, fulcio, external-dns, terragrunt, tflint, flux, gh, gke-gcloud-auth-plugin, kubernetes-dashboard, keda, velero,...

GHSA-2JWV-JMQ4-4J3R vulnerabilities

Vulnerabilities for packages: guac, fuse-overlayfs-snapshotter, melange, harbor-scanner-trivy, tekton-chains, go, go-licenses, bom, trust-manager, prometheus-beat-exporter, aactl, fulcio, harbor-cli, cfssl, kubernetes-csi-external-snapshotter, newrelic-prometheus-configurator, external-dns,...

CVE-2023-39325 vulnerabilities

Vulnerabilities for packages: fuse-overlayfs-snapshotter, goreleaser, tekton-chains, go, bom, trust-manager, slsa-verifier, aactl, kubernetes-csi-external-snapshotter, external-dns, flux, prometheus, dynamic-localpv-provisioner, gke-gcloud-auth-plugin, weaviate, kubescape, kubernetes-dashboard,...

GHSA-3Q2C-PVP5-3CQP vulnerabilities

Vulnerabilities for packages: fuse-overlayfs-snapshotter, goreleaser, fq, go-licenses, bom, kyverno-policy-reporter, kine, prometheus-beat-exporter, slsa-verifier, kubernetes-csi-external-snapshotter, kor, cfssl, newrelic-prometheus-configurator, external-dns, govulncheck, kuberay-operator,...

GHSA-FGQ5-Q76C-GX78 vulnerabilities

Vulnerabilities for packages: fuse-overlayfs-snapshotter, goreleaser, fq, go-licenses, bom, kyverno-policy-reporter, kine, prometheus-beat-exporter, slsa-verifier, kubernetes-csi-external-snapshotter, kor, cfssl, newrelic-prometheus-configurator, external-dns, govulncheck, kuberay-operator,...

GHSA-J6M3-GC37-6R6Q vulnerabilities

Vulnerabilities for packages: fuse-overlayfs-snapshotter, goreleaser, fq, go-licenses, bom, kyverno-policy-reporter, kine, prometheus-beat-exporter, slsa-verifier, kubernetes-csi-external-snapshotter, kor, cfssl, newrelic-prometheus-configurator, external-dns, govulncheck, kuberay-operator,...

CVE-2023-39326 vulnerabilities

Vulnerabilities for packages: goreleaser, mage, aws-flb-firehose, go-licenses, hey, slsa-verifier, kubernetes-dashboard-metrics-scraper, docker-credential-ecr-login, wait-for-port, cortex, ctop, protoc-gen-go-grpc, go-bindata, nsc, k3d, go-md2man, nats, gosu, sonobuoy, gke-gcloud-auth-plugin,...

GHSA-5F94-VHJQ-RPG8 vulnerabilities

Vulnerabilities for packages: goreleaser, mage, aws-flb-firehose, go-licenses, hey, slsa-verifier, kubernetes-dashboard-metrics-scraper, docker-credential-ecr-login, wait-for-port, cortex, ctop, protoc-gen-go-grpc, go-bindata, nsc, k3d, go-md2man, nats, gosu, sonobuoy, gke-gcloud-auth-plugin,...

GHSA-9F76-WG39-X86H vulnerabilities

Vulnerabilities for packages: goreleaser, mage, aws-flb-firehose, go-licenses, hey, slsa-verifier, kubernetes-dashboard-metrics-scraper, docker-credential-ecr-login, wait-for-port, cortex, ctop, protoc-gen-go-grpc, go-bindata, nsc, k3d, go-md2man, nats, gosu, sonobuoy, gke-gcloud-auth-plugin,...

GHSA-2WRH-6PVC-2JM9 vulnerabilities

Vulnerabilities for packages: fuse-overlayfs-snapshotter, goreleaser, bom, trust-manager, kubernetes-csi-external-snapshotter, aactl, external-dns, flux, prometheus, dynamic-localpv-provisioner, gke-gcloud-auth-plugin, weaviate, kubernetes-dashboard, keda, aws-efs-csi-driver,...

GHSA-4374-P667-P6C8 vulnerabilities

Vulnerabilities for packages: fuse-overlayfs-snapshotter, goreleaser, tekton-chains, go, bom, trust-manager, slsa-verifier, aactl, kubernetes-csi-external-snapshotter, external-dns, flux, prometheus, dynamic-localpv-provisioner, gke-gcloud-auth-plugin, weaviate, kubescape, kubernetes-dashboard,...

GHSA-M425-MQ94-257G vulnerabilities

Vulnerabilities for packages: goreleaser, pulumi-language-dotnet, kubevela, gitlab-pages, ko, slsa-verifier, calico, oauth2-proxy, cortex, external-dns, gatekeeper, argo-cd, k3d, terraform, prometheus-adapter, prometheus, dynamic-localpv-provisioner, envoy-ratelimit, pulumi-language-yaml, coredns,....

GHSA-QPPJ-FM5R-HXR3 vulnerabilities

Vulnerabilities for packages: fuse-overlayfs-snapshotter, goreleaser, bom, slsa-verifier, external-dns, prometheus, dynamic-localpv-provisioner, envoy-ratelimit, gke-gcloud-auth-plugin, weaviate, kubescape, keda, aws-efs-csi-driver, secrets-store-csi-driver-provider-gcp, grpcurl, conftest,...

CVE-2024-24783 vulnerabilities

Vulnerabilities for packages: fuse-overlayfs-snapshotter, goreleaser, fq, go-licenses, bom, kyverno-policy-reporter, kine, prometheus-beat-exporter, slsa-verifier, kubernetes-csi-external-snapshotter, kor, cfssl, newrelic-prometheus-configurator, external-dns, govulncheck, kuberay-operator,...

CVE-2024-24785 vulnerabilities

Vulnerabilities for packages: fuse-overlayfs-snapshotter, goreleaser, fq, go-licenses, bom, kyverno-policy-reporter, kine, prometheus-beat-exporter, slsa-verifier, kubernetes-csi-external-snapshotter, kor, cfssl, newrelic-prometheus-configurator, external-dns, govulncheck, kuberay-operator,...

GHSA-32CH-6X54-Q4H9 vulnerabilities

Vulnerabilities for packages: fuse-overlayfs-snapshotter, goreleaser, fq, go-licenses, bom, kyverno-policy-reporter, kine, prometheus-beat-exporter, slsa-verifier, kubernetes-csi-external-snapshotter, kor, cfssl, newrelic-prometheus-configurator, external-dns, govulncheck, kuberay-operator,...

CVE-2024-24788 vulnerabilities

Vulnerabilities for packages: guac, fuse-overlayfs-snapshotter, melange, harbor-scanner-trivy, tekton-chains, go, go-licenses, bom, trust-manager, prometheus-beat-exporter, aactl, fulcio, harbor-cli, cfssl, kubernetes-csi-external-snapshotter, newrelic-prometheus-configurator, external-dns,...

CVE-2023-45290 vulnerabilities

Vulnerabilities for packages: fuse-overlayfs-snapshotter, goreleaser, fq, go-licenses, bom, kyverno-policy-reporter, kine, prometheus-beat-exporter, slsa-verifier, kubernetes-csi-external-snapshotter, kor, cfssl, newrelic-prometheus-configurator, external-dns, govulncheck, kuberay-operator,...

GHSA-XR7R-F8XQ-VFVV vulnerabilities

Vulnerabilities for packages: skopeo, ctop, wolfictl, k3d, runc, zarf, kubernetes, docker, nerdctl, skaffold, syft, kubescape, telegraf, zot, k3s, kots, buildkitd, newrelic-infrastructure-agent, cadvisor, grype, trivy, k9s, datadog-agent, ingress-nginx-controller, kaniko,...

CVE-2023-44487 affecting package sriov-network-device-plugin for versions less than 3.5.1-2

CVE-2023-44487 affecting package sriov-network-device-plugin for versions less than 3.5.1-2. A patched version of the package is...

CVE-2024-36881

In the Linux kernel, the following vulnerability has been resolved: mm/userfaultfd: reset ptes when close() for wr-protected ones Userfaultfd unregister includes a step to remove wr-protect bits from all the relevant pgtable entries, but that only covered an explicit UFFDIO_UNREGISTER ioctl, not a....

Exploit for CVE-2024-25600

CVE-2024-25600 Exploit Tool 🚀 Disclaimer: This tool is...

Exploit for CVE-2024-24919

CVE_2024_24919 Vulnerability Scanner This Java tool scans a...

Exploit for CVE-2024-24919

CVE_2024_24919 Vulnerability Scanner This Java tool scans a...

CVE-2024-4344 Shield Security – Smart Bot Blocking & Intrusion Prevention Security <= 19.1.13 - Cross-Site Request Forgery

The Shield Security – Smart Bot Blocking & Intrusion Prevention Security plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 19.1.13. This is due to missing or incorrect nonce validation on the exec function. This makes it possible for...

[SECURITY] Fedora 39 Update: rust-gst-plugin-gif-0.12.0-2.fc39

GStreamer GIF...

[SECURITY] Fedora 39 Update: rust-gst-plugin-reqwest-0.12.4-2.fc39

GStreamer reqwest HTTP Source...

[SECURITY] Fedora 39 Update: rust-cargo-deny-0.14.21-2.fc39

Cargo plugin to help you manage large dependency...

CVE-2024-35645 WordPress Random Banner plugin <= 4.2.8 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in vinoth06 Random Banner allows Stored XSS.This issue affects Random Banner: from n/a through...

CVE-2024-35646 WordPress Smartarget Message Bar plugin <= 1.3 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Smartarget Smartarget Message Bar allows Stored XSS.This issue affects Smartarget Message Bar: from n/a through...

CVE-2024-35647 WordPress Global Notification Bar plugin <= 1.0.1 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Global Notification Bar allows Stored XSS.This issue affects Global Notification Bar: from n/a through...

CVE-2024-35636 WordPress Uploadcare File Uploader and Adaptive Delivery plugin <= 3.0.11 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery (CSRF) vulnerability in Uploadcare Uploadcare File Uploader and Adaptive Delivery (beta) uploadcare.This issue affects Uploadcare File Uploader and Adaptive Delivery (beta): from n/a through...

CVE-2024-3820 wpDataTables - Tables & Table Charts (Premium) <= 6.3.1 - Unauthenticated SQL Injection

The wpDataTables – WordPress Data Table, Dynamic Tables & Table Charts Plugin plugin for WordPress is vulnerable to SQL Injection via the 'id_key' parameter of the wdt_delete_table_row AJAX action in all versions up to, and including, 6.3.1 due to insufficient escaping on the user supplied...

CVE-2024-3200 wpForo Forum <= 2.3.3 - Authenticated (Contributor+) SQL Injection

The wpForo Forum plugin for WordPress is vulnerable to SQL Injection via the 'slug' attribute of the 'wpforo' shortcode in all versions up to, and including, 2.3.3 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes...

CVE-2024-5348 Elements For Elementor <= 2.1 - Authenticated (Contributor+) Local File Inclusion via Multiple Widget Attributes

The Elements For Elementor plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 2.1 via the 'beforeafter_layout' attribute of the beforeafter widget, the 'eventsgrid_layout' attribute of the eventsgrid and list widgets, the 'marquee_layout' attribute of.....