CVE-2018-1000141

I, Librarian version 4.9 and earlier contains an Incorrect Access Control vulnerability in ajaxdiscussion.php that can result in any users gaining unauthorized access read, write and delete to project discussions...

CVE-2018-1000141

I, Librarian version 4.9 and earlier contains an Incorrect Access Control vulnerability in ajaxdiscussion.php that can result in any users gaining unauthorized access read, write and delete to project discussions...

CVE-2018-1000141

The CVE-2018-1000141 entry concerns Librarian (Scilico I, Librarian) 4.9 and earlier, with an Incorrect Access Control flaw in ajaxdiscussion.php that lets any user read, write, or delete project discussions. The connected Red Hat/CNVD/EUVD/OSV/PRION/CVE listings corroborate the same description....

CVE-2017-1000141

CVE-2017-1000141 affects Mahara before 18.10.0. The issue involves mishandling user requests that could remove a user’s ability to manage their own account (e.g., changing username, changing the primary email, or deleting the account). The described correct behavior is to require password verific...

CVE-2016-1000141

Reflected XSS in wordpress plugin page-layout-builder v1.9.3...

CVE-2016-1000141

Reflected XSS in wordpress plugin page-layout-builder v1.9.3...

CVE-2016-1000141

Reflected XSS in wordpress plugin page-layout-builder v1.9.3...

CVE-2016-1000141

The WordPress Page Layout Builder Plugin (v1.9.3) contains a reflected cross-site scripting (XSS) vulnerability in the Page Layout Builder. The Nuclei/NVD data and WP vulnerability templates indicate the issue affects the plugin’s page-layout-builder component, with CVSS v3.0 base score 6.1 (vect...