MiracleLinux 4 : mysql55-mysql-5.5.45-1.0.1.AXS4 (AXSA:2015-464:01)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2015-464:01 advisory. MySQL is a multi-user, multi-threaded SQL database server. MySQL is a client/server implementation consisting of a server daemon mysqld and many...

CVE-2022-0499

The Sermon Browser WordPress plugin through 0.45.22 does not have CSRF checks in place when uploading Sermon files, and does not validate them in any way, allowing attackers to make a logged in admin upload arbitrary files such as PHP ones...

CVE-1999-0499

NETBIOS share information may be published through SNMP registry keys in NT...

EUVD-2026-0499

This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure...

EUVD-2014-0499

Malware in sbrugna...

CVE-2023-0499

The QuickSwish WordPress plugin before 1.1.0 does not have CSRF check when activating plugins, which could allow attackers to make logged in admins activate arbitrary plugins present on the blog via a CSRF attack...

CVE-2025-0499

creationtimestamp| type| source ---|---|--- 2025-02-11 02:20:30+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lhulw2f3bq2x 2025-02-11 06:14:42+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lhuyypcf242m...

Photon OS 3.0: Emacs PHSA-2022-3.0-0499

An update of the emacs package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2022-3.0-0499. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

Photon OS 4.0: Open PHSA-2023-4.0-0499

An update of the open package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2023-4.0-0499. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

RHEL 8 : flac (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - flac: out of bound write in appendtoverifyfifointerleaved of streamencoder.c CVE-2021-0561 - In...

CVE-2024-0499 SourceCodester House Rental Management System index.php cross site scripting

A vulnerability, which was classified as problematic, has been found in SourceCodester House Rental Management System 1.0. This issue affects some unknown processing of the file index.php. The manipulation of the argument page leads to cross site scripting. The attack may be initiated remotely. T...

WordPress QuickSwish Plugin < 1.1.0 is vulnerable to Cross Site Request Forgery (CSRF)

Software QuickSwish Type Plugin Vulnerable versions 1.1.0 Fixed in 1.1.0 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-0499 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 8d302a099eda Credits Lana Codes Required privile...

CVE-2023-0499

creationtimestamp| type| source ---|---|--- 2023-03-27 20:56:10+00:00| seen| https://t.me/cibsecurity/60822 2025-02-20 01:27:44+00:00| seen| Telegram/xj8nxgR1luswmNwEF3pFZjzOQhPhiPU6Z92RbiZPwTzYnJ8...

CVE-2023-0499 QuickSwish < 1.1.0 - Arbitrary Plugin Activation via CSRF

The QuickSwish WordPress plugin before 1.1.0 does not have CSRF check when activating plugins, which could allow attackers to make logged in admins activate arbitrary plugins present on the blog via a CSRF attack...

CVE-2023-0499

CVE-2023-0499 concerns the WordPress QuickSwish plugin prior to 1.1.0, which omits CSRF validation on plugin activation. This allows an authenticated attacker to induce a logged-in admin to activate arbitrary plugins via CSRF. Affected: QuickSwish

CVE-2023-0499 QuickSwish < 1.1.0 - Arbitrary Plugin Activation via CSRF

The QuickSwish WordPress plugin before 1.1.0 does not have CSRF check when activating plugins, which could allow attackers to make logged in admins activate arbitrary plugins present on the blog via a CSRF attack...

Important: Red Hat Security Advisory: kpatch-patch security update

An update for kpatch-patch is now available for Red Hat Enterprise Linux 8.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is availabl...

openSUSE 15 Security Update : vlc (openSUSE-SU-2022:10252-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2022:10252-1 advisory. - In FLACbitreaderreadricesignedblock of bitreader.c, there is a possible out of bounds read due to a heap buffer overflow. This could lea...

USN-5733-1: FLAC vulnerabilities | Cloud Foundry

Severity Low Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 16.04 Canonical Ubuntu 18.04 Description It was discovered that FLAC was not properly performing memory management operations, which could result in a memory leak. An attacker could possibly use this issue to cause FLAC to...

Ubuntu 16.04 ESM / 18.04 LTS / 20.04 LTS / 22.04 LTS : FLAC vulnerabilities (USN-5733-1)

The remote Ubuntu 16.04 ESM / 18.04 LTS / 20.04 LTS / 22.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5733-1 advisory. It was discovered that FLAC was not properly performing memory management operations, which could result in a memory...