All In One SEO – Best WordPress SEO Plugin – Easily Improve Your SEO Rankings Security Vulnerabilities

PT-2021-02: Encryption bypass when downloading a firmware update in Diebold-Nixdorf RM3/CRS

PT-2021-02: Encryption bypass when downloading a firmware update in Diebold-Nixdorf RM3/CRS RM3/CRS dispenser firmware (all versions up to and including 41128 1002 RM3_CRS.BTR + 170329 2332 RM3_CRS.FRM) Severity: Severity level: High Encryption bypass when downloading a firmware update in...

PT-2021-01: Encryption bypass when downloading a firmware update in Diebold-Nixdorf CMDv5

PT-2021-01: Encryption bypass when downloading a firmware update in Diebold-Nixdorf CMDv5 CMDv5 dispenser firmware (all versions up to and including 141128 1002 CD5_ATM.BTR + 170329 2332 CD5_ATM.FRM) Severity: Severity level: High Encryption bypass when downloading a firmware update in...

Malicious code in @socialdeal/uikit-whitelabel (npm)

-= Per source details. Do not edit below this line.=- Source: ossf-package-analysis (d53c0749d21786a6b7eeea319c37d26573f1ded671dc9cbed9e4508d9b65a2c0) The OpenSSF Package Analysis project identified '@socialdeal/uikit-whitelabel' @ 999.100.1 (npm) as malicious. It is considered malicious...

Malicious code in ing-feat-grants-management (npm)

-= Per source details. Do not edit below this line.=- Source: ossf-package-analysis (9b798bc5312e2cdb16a12e65a8a02a2a447f4af87bc9132258961b27b2314b60) The OpenSSF Package Analysis project identified 'ing-feat-grants-management' @ 999.100.1 (npm) as malicious. It is considered malicious because: ...

CVE-2024-3237

The ConvertPlug plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the cp_dismiss_notice() function in all versions up to, and including, 3.5.25. This makes it possible for authenticated attackers, with subscriber-level access and above, to....

CVE-2024-3240

The ConvertPlug plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 3.5.25 via deserialization of untrusted input from the 'settings_encoded' attribute of the 'smile_info_bar' shortcode. This makes it possible for authenticated attackers, with...

CVE-2024-21626 vulnerabilities

Vulnerabilities for packages: wolfictl, skaffold, kaniko, k3s, kots, nvidia-device-plugin, trivy, zot, kubescape, nerdctl, newrelic-infrastructure-agent, k3d, telegraf-1.27, ingress-nginx-controller, cadvisor, datadog-agent, zarf, runc, grype, syft, telegraf-1.28, ctop, kubernetes-1.29, skopeo,...

CVE-2023-44487 vulnerabilities

Vulnerabilities for packages: aws-efs-csi-driver, gatekeeper-3.12, dotnet-7, flux-helm-controller, gitlab-shell, weaviate, kubescape, stakater-reloader, metacontroller, node-problem-detector-0.8, ip-masq-agent, kubernetes-csi-node-driver-registrar-2.9, spark-operator, fuse-overlayfs-snapshotter,...

CVE-2023-45289 vulnerabilities

Vulnerabilities for packages: cluster-autoscaler-1.29, trillian, aws-efs-csi-driver, grafana-operator, kubernetes-1.26, kube-bench, cni-plugins, gatekeeper-3.12, mage, cert-exporter, flux, nri-mysql, flux-helm-controller, go-bindata, protoc-gen-go-grpc, secrets-store-csi-driver-provider-aws,...

GHSA-8R3F-844C-MC37 vulnerabilities

Vulnerabilities for packages: cluster-autoscaler-1.29, trillian, aws-efs-csi-driver, grafana-operator, kube-bench, karpenter, vault-1.14, gatekeeper-3.12, cert-exporter, flux, kubernetes-csi-driver-hostpath, flux-helm-controller, secrets-store-csi-driver-provider-aws, terraform-docs, gitlab-shell,....

GHSA-VVPX-J8F3-3W6H vulnerabilities

Vulnerabilities for packages: falco, grpcurl, go-1.19, gke-gcloud-auth-plugin, k3d, restic, go-1.20, dynamic-localpv-provisioner, hey,...

CVE-2023-45288 vulnerabilities

Vulnerabilities for packages: aws-efs-csi-driver, grafana-operator, cert-exporter, protoc-gen-go-grpc, flux-helm-controller, go-bindata, gitlab-shell, k8sgpt, task, kubescape, k8sgpt-operator, melange, lazygit, docker-credential-acr-env, wait-for-port, nodetaint,...

CVE-2023-45285 vulnerabilities

Vulnerabilities for packages: flannel-cni-plugin, nsc, aws-flb-firehose, cni-plugins, mage, protoc-gen-go-grpc, go-bindata, sonobuoy, gobuster, cass-operator, kubernetes-dashboard-metrics-scraper, sbom-scorecard, amass, gke-gcloud-auth-plugin, aactl, k3d, sops, aws-flb-cloudwatch, cortex,...

CVE-2023-3978 vulnerabilities

Vulnerabilities for packages: trillian, aws-efs-csi-driver, karpenter, vault-1.14, gatekeeper-3.12, flux, flux-helm-controller, k8sgpt, falcoctl, weaviate, k8sgpt-operator, stakater-reloader, metacontroller, node-problem-detector-0.8, kubernetes-csi-node-driver-registrar-2.9, spark-operator,...

CVE-2024-24786 vulnerabilities

Vulnerabilities for packages: cluster-autoscaler-1.29, trillian, aws-efs-csi-driver, grafana-operator, kube-bench, karpenter, vault-1.14, gatekeeper-3.12, cert-exporter, flux, kubernetes-csi-driver-hostpath, flux-helm-controller, secrets-store-csi-driver-provider-aws, terraform-docs, gitlab-shell,....

GHSA-RR6R-CFGF-GC6H vulnerabilities

Vulnerabilities for packages: cluster-autoscaler-1.29, trillian, aws-efs-csi-driver, grafana-operator, kubernetes-1.26, kube-bench, cni-plugins, gatekeeper-3.12, mage, cert-exporter, flux, nri-mysql, flux-helm-controller, go-bindata, protoc-gen-go-grpc, secrets-store-csi-driver-provider-aws,...

CVE-2024-24784 vulnerabilities

Vulnerabilities for packages: cluster-autoscaler-1.29, trillian, aws-efs-csi-driver, grafana-operator, kubernetes-1.26, kube-bench, cni-plugins, gatekeeper-3.12, mage, cert-exporter, flux, nri-mysql, flux-helm-controller, go-bindata, protoc-gen-go-grpc, secrets-store-csi-driver-provider-aws,...

CVE-2022-41723 vulnerabilities

Vulnerabilities for packages: falco, grpcurl, go-1.19, gke-gcloud-auth-plugin, k3d, restic, go-1.20, dynamic-localpv-provisioner, hey,...

GHSA-4V7X-PQXF-CX7M vulnerabilities

Vulnerabilities for packages: aws-efs-csi-driver, grafana-operator, cert-exporter, protoc-gen-go-grpc, flux-helm-controller, go-bindata, gitlab-shell, k8sgpt, task, kubescape, k8sgpt-operator, melange, lazygit, docker-credential-acr-env, wait-for-port, nodetaint,...

CVE-2023-39325 vulnerabilities

Vulnerabilities for packages: trillian, aws-efs-csi-driver, karpenter, vault-1.14, gatekeeper-3.12, flux, flux-helm-controller, gitlab-shell, k8sgpt, falcoctl, weaviate, kubescape, k8sgpt-operator, stakater-reloader, go-1.21, metacontroller, node-problem-detector-0.8,...

GHSA-3Q2C-PVP5-3CQP vulnerabilities

Vulnerabilities for packages: cluster-autoscaler-1.29, trillian, aws-efs-csi-driver, grafana-operator, kubernetes-1.26, kube-bench, cni-plugins, gatekeeper-3.12, mage, cert-exporter, flux, nri-mysql, flux-helm-controller, go-bindata, protoc-gen-go-grpc, secrets-store-csi-driver-provider-aws,...

GHSA-FGQ5-Q76C-GX78 vulnerabilities

Vulnerabilities for packages: cluster-autoscaler-1.29, trillian, aws-efs-csi-driver, grafana-operator, kubernetes-1.26, kube-bench, cni-plugins, gatekeeper-3.12, mage, cert-exporter, flux, nri-mysql, flux-helm-controller, go-bindata, protoc-gen-go-grpc, secrets-store-csi-driver-provider-aws,...

GHSA-J6M3-GC37-6R6Q vulnerabilities

Vulnerabilities for packages: cluster-autoscaler-1.29, trillian, aws-efs-csi-driver, grafana-operator, kubernetes-1.26, kube-bench, cni-plugins, gatekeeper-3.12, mage, cert-exporter, flux, nri-mysql, flux-helm-controller, go-bindata, protoc-gen-go-grpc, secrets-store-csi-driver-provider-aws,...

GHSA-9F76-WG39-X86H vulnerabilities

Vulnerabilities for packages: flannel-cni-plugin, nsc, aws-flb-firehose, cni-plugins, mage, protoc-gen-go-grpc, go-bindata, sonobuoy, gobuster, cass-operator, kubernetes-dashboard-metrics-scraper, sbom-scorecard, amass, gke-gcloud-auth-plugin, aactl, k3d, sops, aws-flb-cloudwatch, cortex,...

CVE-2023-39326 vulnerabilities

Vulnerabilities for packages: flannel-cni-plugin, nsc, aws-flb-firehose, cni-plugins, mage, protoc-gen-go-grpc, go-bindata, sonobuoy, gobuster, cass-operator, kubernetes-dashboard-metrics-scraper, sbom-scorecard, amass, gke-gcloud-auth-plugin, aactl, k3d, sops, aws-flb-cloudwatch, cortex,...

GHSA-5F94-VHJQ-RPG8 vulnerabilities

Vulnerabilities for packages: flannel-cni-plugin, nsc, aws-flb-firehose, cni-plugins, mage, protoc-gen-go-grpc, go-bindata, sonobuoy, gobuster, cass-operator, kubernetes-dashboard-metrics-scraper, sbom-scorecard, amass, gke-gcloud-auth-plugin, aactl, k3d, sops, aws-flb-cloudwatch, cortex,...

GHSA-4374-P667-P6C8 vulnerabilities

Vulnerabilities for packages: trillian, aws-efs-csi-driver, karpenter, vault-1.14, gatekeeper-3.12, flux, flux-helm-controller, gitlab-shell, k8sgpt, falcoctl, weaviate, kubescape, k8sgpt-operator, stakater-reloader, go-1.21, metacontroller, node-problem-detector-0.8,...

GHSA-2WRH-6PVC-2JM9 vulnerabilities

Vulnerabilities for packages: trillian, aws-efs-csi-driver, karpenter, vault-1.14, gatekeeper-3.12, flux, flux-helm-controller, k8sgpt, falcoctl, weaviate, k8sgpt-operator, stakater-reloader, metacontroller, node-problem-detector-0.8, kubernetes-csi-node-driver-registrar-2.9, spark-operator,...

GHSA-QPPJ-FM5R-HXR3 vulnerabilities

Vulnerabilities for packages: aws-efs-csi-driver, gatekeeper-3.12, dotnet-7, flux-helm-controller, gitlab-shell, weaviate, kubescape, stakater-reloader, metacontroller, node-problem-detector-0.8, ip-masq-agent, kubernetes-csi-node-driver-registrar-2.9, spark-operator, fuse-overlayfs-snapshotter,...

GHSA-M425-MQ94-257G vulnerabilities

Vulnerabilities for packages: aws-efs-csi-driver, calico, cluster-autoscaler-1.26, influxd, secrets-store-csi-driver, thanos-0.31, gatekeeper-3.12, flux-kustomize-controller, thanos-0.32, flux-helm-controller, flux-source-controller, pulumi-kubernetes-operator, dex,...

GHSA-32CH-6X54-Q4H9 vulnerabilities

Vulnerabilities for packages: cluster-autoscaler-1.29, trillian, aws-efs-csi-driver, grafana-operator, kubernetes-1.26, kube-bench, cni-plugins, gatekeeper-3.12, mage, cert-exporter, flux, nri-mysql, flux-helm-controller, go-bindata, protoc-gen-go-grpc, secrets-store-csi-driver-provider-aws,...

CVE-2024-24783 vulnerabilities

Vulnerabilities for packages: cluster-autoscaler-1.29, trillian, aws-efs-csi-driver, grafana-operator, kubernetes-1.26, kube-bench, cni-plugins, gatekeeper-3.12, mage, cert-exporter, flux, nri-mysql, flux-helm-controller, go-bindata, protoc-gen-go-grpc, secrets-store-csi-driver-provider-aws,...

CVE-2024-24785 vulnerabilities

Vulnerabilities for packages: cluster-autoscaler-1.29, trillian, aws-efs-csi-driver, grafana-operator, kubernetes-1.26, kube-bench, cni-plugins, gatekeeper-3.12, mage, cert-exporter, flux, nri-mysql, flux-helm-controller, go-bindata, protoc-gen-go-grpc, secrets-store-csi-driver-provider-aws,...

CVE-2023-45290 vulnerabilities

Vulnerabilities for packages: cluster-autoscaler-1.29, trillian, aws-efs-csi-driver, grafana-operator, kubernetes-1.26, kube-bench, cni-plugins, gatekeeper-3.12, mage, cert-exporter, flux, nri-mysql, flux-helm-controller, go-bindata, protoc-gen-go-grpc, secrets-store-csi-driver-provider-aws,...

GHSA-XR7R-F8XQ-VFVV vulnerabilities

Vulnerabilities for packages: wolfictl, skaffold, kaniko, k3s, kots, nvidia-device-plugin, trivy, zot, kubescape, nerdctl, newrelic-infrastructure-agent, k3d, telegraf-1.27, ingress-nginx-controller, cadvisor, datadog-agent, zarf, runc, grype, syft, telegraf-1.28, ctop, kubernetes-1.29, skopeo,...

CVE-2024-3868

The Folders Pro plugin for WordPress is vulnerable to Stored Cross-Site Scripting via a user's First Name and Last Name in all versions up to, and including, 3.0.2 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with subscriber-level.....

CVE-2022-41723 vulnerabilities

Vulnerabilities for packages: go-1.20, eks-distro-coredns-1.8, seldon-core-operator-1.16, restic, kyverno-1.8, kube-state-metrics-2.6, go-1.19, py3-seldon-core-1.16, hey, k3d, wireguard-go, grpcurl, dynamic-localpv-provisioner, gke-gcloud-auth-plugin, dynamic-localpv-provisioner-fips,...

GHSA-VVPX-J8F3-3W6H vulnerabilities

Vulnerabilities for packages: go-1.20, eks-distro-coredns-1.8, seldon-core-operator-1.16, restic, kyverno-1.8, kube-state-metrics-2.6, go-1.19, py3-seldon-core-1.16, hey, k3d, wireguard-go, grpcurl, dynamic-localpv-provisioner, gke-gcloud-auth-plugin, dynamic-localpv-provisioner-fips,...

GHSA-8R3F-844C-MC37 vulnerabilities

Vulnerabilities for packages: tflint, cert-manager-fips-1.13, kube-state-metrics-2.6, kubernetes-csi-external-attacher-4.4, kyverno-policy-reporter-ui, tigera-operator-1.29, kor, cert-exporter-fips, istio-operator-1.19, skaffold, kots, prometheus-bind-exporter, up, kube-state-metrics-2.2.0,...

CVE-2023-45290 vulnerabilities

Vulnerabilities for packages: tflint, cert-manager-fips-1.13, kubernetes-csi-external-attacher-4.4, cue, cue-fips, kubernetes-1.22, tigera-operator-1.29, kor, cert-exporter-fips, wireguard-go, skaffold, prometheus-bind-exporter, up, kube-state-metrics-2.2.0,...

GHSA-3Q2C-PVP5-3CQP vulnerabilities

Vulnerabilities for packages: tflint, cert-manager-fips-1.13, kubernetes-csi-external-attacher-4.4, cue, cue-fips, kubernetes-1.22, tigera-operator-1.29, kor, cert-exporter-fips, wireguard-go, skaffold, prometheus-bind-exporter, up, kube-state-metrics-2.2.0,...

CVE-2024-24785 vulnerabilities

Vulnerabilities for packages: tflint, cert-manager-fips-1.13, kubernetes-csi-external-attacher-4.4, cue, cue-fips, kubernetes-1.22, tigera-operator-1.29, kor, cert-exporter-fips, wireguard-go, skaffold, prometheus-bind-exporter, up, kube-state-metrics-2.2.0,...

CVE-2023-39325 vulnerabilities

Vulnerabilities for packages: containerd, cert-manager-fips-1.13, smarter-device-manager-fips, tkn, kube-state-metrics-2.6, flux-helm-controller, kubernetes-csi-external-attacher-4.4, cue, kubernetes-1.22, kubernetes-dns-node-cache-1.17, prometheus-elasticsearch-exporter,...

CVE-2023-45285 vulnerabilities

Vulnerabilities for packages: sonobuoy, smarter-device-manager-fips, petname, flannel-cni-plugin, tigera-operator-1.29, oras, gitlab-logger, cass-operator-fips, prometheus-bind-exporter, sops, configmap-reload, kubernetes-csi-livenessprobe-fips-2.10, slsa-verifier, smarter-device-manager, aactl,...

CVE-2023-44487 vulnerabilities

Vulnerabilities for packages: smarter-device-manager-fips, kube-state-metrics-2.6, flux-helm-controller, cue, prometheus-elasticsearch-exporter, secrets-store-csi-driver-provider-gcp, wireguard-go, stakater-reloader, skaffold, kots, prometheus-bind-exporter, up, nginx-mainline, gitness,...

CVE-2023-45288 vulnerabilities

Vulnerabilities for packages: tflint, cert-manager-fips-1.13, mkcert, dagdotdev, kube-state-metrics-2.6, velero-plugin-for-aws-fips, kyverno-policy-reporter-ui, cue, cue-fips, kubernetes-dns-node-cache-1.17, tigera-operator-1.29, kor, cert-exporter-fips, istio-operator-1.19, wireguard-go,...

CVE-2024-24786 vulnerabilities

Vulnerabilities for packages: tflint, cert-manager-fips-1.13, kube-state-metrics-2.6, kubernetes-csi-external-attacher-4.4, kyverno-policy-reporter-ui, tigera-operator-1.29, kor, cert-exporter-fips, istio-operator-1.19, skaffold, kots, prometheus-bind-exporter, up, kube-state-metrics-2.2.0,...

CVE-2023-45289 vulnerabilities

Vulnerabilities for packages: tflint, cert-manager-fips-1.13, kubernetes-csi-external-attacher-4.4, cue, cue-fips, kubernetes-1.22, tigera-operator-1.29, kor, cert-exporter-fips, wireguard-go, skaffold, prometheus-bind-exporter, up, kube-state-metrics-2.2.0,...

GHSA-32CH-6X54-Q4H9 vulnerabilities

Vulnerabilities for packages: tflint, cert-manager-fips-1.13, kubernetes-csi-external-attacher-4.4, cue, cue-fips, kubernetes-1.22, tigera-operator-1.29, kor, cert-exporter-fips, wireguard-go, skaffold, prometheus-bind-exporter, up, kube-state-metrics-2.2.0,...

CVE-2024-24783 vulnerabilities

Vulnerabilities for packages: tflint, cert-manager-fips-1.13, kubernetes-csi-external-attacher-4.4, cue, cue-fips, kubernetes-1.22, tigera-operator-1.29, kor, cert-exporter-fips, wireguard-go, skaffold, prometheus-bind-exporter, up, kube-state-metrics-2.2.0,...