7655 matches found
Slackware: Security Advisory (SSA:2023-311-01)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
libreoffice: Empty entry in Java class path
A flaw was found in LibreOffice. When an empty Java class path entry is configured, LibreOffice will search for Java classes in the current working directory, allowing malicious Java classes to load when opening a document using the file manager, resulting in arbitrary code execution...
CVE-2023-46781
A vulnerability in Roland Murg Current Menu Item for Custom Post Types current-menu-item-for-custom-post-types.This issue affects Current Menu Item for Custom Post Types: from n/a through = 1.5...
CVE-2023-46781
Cross-Site Request Forgery CSRF vulnerability in Roland Murg Current Menu Item for Custom Post Types plugin = 1.5 versions...
CVE-2023-46781
Cross-Site Request Forgery CSRF vulnerability in Roland Murg Current Menu Item for Custom Post Types plugin = 1.5 versions...
Cross site request forgery (csrf)
Cross-Site Request Forgery CSRF vulnerability in Roland Murg Current Menu Item for Custom Post Types plugin = 1.5 versions...
CVE-2023-46781
CVE-2023-46781 is a CSRF vulnerability in the WordPress plugin Current Menu Item for Custom Post Types, vulnerable in versions
The vulnerability of Siemens Solid Edge’s design and simulation tools relates to writing outside the buffer boundaries, allowing a malicious actor to execute arbitrary code in the context of the current user.
The vulnerability of Siemens Solid Edge’s design and simulation tools is related to writing beyond buffer boundaries. Exploiting this vulnerability can allow attackers to execute arbitrary code in the context of the current user, using specially created PAR files...
CVE-2023-5946
The Digirisk plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'currentgroupid' parameter in version 6.0.0.0 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that...
WordPress Plugin Digirisk Cross-Site Scripting Vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting vulnerabilit...
The vulnerability of the Adobe Photoshop graphic editor, related to writing beyond the buffer boundaries in memory, allows a hacker to execute arbitrary code in the context of the current user.
The vulnerability of the Adobe Photoshop graphic editor is related to the writing of data beyond the buffer boundaries in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code in the context of the current user, using a specially created SVG file...
The vulnerability of the Adobe Photoshop graphic editor, related to reading beyond the buffer in memory, allows a hacker to execute arbitrary code in the context of the current user.
The vulnerability of the Adobe Photoshop graphic editor is related to reading data beyond the buffer boundaries in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code in the context of the current user, using a specially created file...
The vulnerability of the Adobe Photoshop graphic editor, related to writing beyond the buffer boundaries in memory, allows a hacker to execute arbitrary code in the context of the current user.
The vulnerability of the Adobe Photoshop graphic editor is related to the writing of data beyond the buffer boundaries in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code in the context of the current user, using a specially created PDF file...
Design/Logic Flaw
In Ashlar-Vellum Graphite v13.0.48, the affected application lacks proper validation of user-supplied data when parsing VC6 files. This could lead to an out-of-bounds read. An attacker could leverage this vulnerability to execute arbitrary code in the context of the current process...
[slackware-security] xorg-server
New xorg-server packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/xorg-server-1.20.14-i586-9slack15.0.txz: Rebuilt. This update fixes security issues: OOB write in...
[slackware-security] mozilla-thunderbird
New mozilla-thunderbird packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/mozilla-thunderbird-115.4.1-i686-1slack15.0.txz: Upgraded. This release contains security fixes and improvements. For mor...
CVE-2023-26583
Unauthenticated SQL injection in the GetCurrentPeriod method in IDAttend’s IDWeb application 3.1.052 and earlier allows extraction or modification of all data by unauthenticated attackers...
Slackware: Security Advisory (SSA:2023-297-02)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Slackware: Security Advisory (SSA:2023-297-01)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Forrester names Microsoft a Leader in the 2023 Endpoint Security Wave™ report
We are excited to share that Microsoft has been named a Leader in The Forrester Wave™: Endpoint Security, Q4 2023. Microsoft received the highest possible scores in the strategy category for the vision and roadmap criteria. Forrester notes, “Microsoft’s outstanding roadmap for endpoint security...