Lucene search
+L

80 matches found

nessus
nessus
added 2026/01/16 12:0 a.m.2 views

MiracleLinux 4 : firefox-68.2.0-4.0.1.AXS4 (AXSA:2019-4386:06)

The remote MiracleLinux 4 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2019-4386:06 advisory. Mozilla: Memory safety bugs fixed in Firefox 70 and Firefox ESR 68.2 CVE-2019-11764 Mozilla: Use-after-free when creating index updates in IndexedDB...

8.8CVSS7.9AI score0.01799EPSS
Exploits2References9
circl
circl
added 2025/10/25 2:51 a.m.10 views

CVE-2025-11760

creationtimestamp| type| source ---|---|--- 2025-10-25 02:51:51+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3m3yezs76mt23...

5.3CVSS5.8AI score0.00287EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/22 1:26 a.m.8 views

CVE-2017-11760

uploadImage.php in ProjeQtOr before 6.3.2 allows remote authenticated users to execute arbitrary PHP code by uploading a .php file composed of concatenated image data and script data, as demonstrated by uploading as an image within the description text area...

8.8CVSS7.6AI score0.0128EPSS
Exploits0References1
nessus
nessus
added 2025/03/04 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2020-11760

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in OpenEXR before 2.4.1. There is an out-of-bounds read during RLE uncompression in rleUncompress in ImfRle.cpp. CVE-2020-11760 Note tha...

5.5CVSS6.7AI score0.01807EPSS
Exploits1References2
nvd
nvd
added 2024/12/12 9:15 a.m.8 views

CVE-2024-11760

The Currency Converter Widget ⚡ PRO plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'currency-converter-widget-pro' shortcode in all versions up to, and including, 1.0.6 due to insufficient input sanitization and output escaping on user supplied attributes. This...

6.4CVSS0.00275EPSS
Exploits0References2
vulnrichment
vulnrichment
added 2024/12/12 8:22 a.m.5 views

CVE-2024-11760 Currency Converter Widget ⚡ PRO <= 1.0.6 - Authenticated (Contributor+) Stored Cross-Site Scripting

The Currency Converter Widget ⚡ PRO plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'currency-converter-widget-pro' shortcode in all versions up to, and including, 1.0.6 due to insufficient input sanitization and output escaping on user supplied attributes. This...

6.4CVSS5.8AI score0.00275EPSS
Exploits0References2
cve
cve
added 2024/12/12 8:22 a.m.52 views

CVE-2024-11760

CVE-2024-11760 : The Currency Converter Widget PRO plugin for WordPress is vulnerable to a Stored Cross-Site Scripting (XSS) condition via the plugin’s shortcode currency-converter-widget-pro. Affected versions are up to and including 1.0.6 . The underlying issue is insufficient input sanitizatio...

6.4CVSS5.7AI score0.00275EPSS
Exploits0References2
cvelist
cvelist
added 2024/12/12 8:22 a.m.18 views

CVE-2024-11760 Currency Converter Widget ⚡ PRO <= 1.0.6 - Authenticated (Contributor+) Stored Cross-Site Scripting

The Currency Converter Widget ⚡ PRO plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'currency-converter-widget-pro' shortcode in all versions up to, and including, 1.0.6 due to insufficient input sanitization and output escaping on user supplied attributes. This...

6.4CVSS0.00275EPSS
Exploits0References2
nessus
nessus
added 2024/05/11 12:0 a.m.35 views

RHEL 6 : openexr (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - OpenEXR: Heap-buffer-overflow in Imf25::copyIntoFrameBuffer CVE-2021-23169 - OpenEXR: Heap Overflow in...

7.9AI score0.0331EPSS
Exploits15References42
openvas
openvas
added 2022/08/26 12:0 a.m.24 views

Ubuntu: Security Advisory (USN-4202-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.6AI score0.06707EPSS
Exploits3References2
openvas
openvas
added 2022/04/21 12:0 a.m.19 views

Slackware: Security Advisory (SSA:2019-295-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.6AI score0.06707EPSS
Exploits3References4
openvas
openvas
added 2022/01/28 12:0 a.m.14 views

Mageia: Security Advisory (MGASA-2019-0315)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.9AI score0.06707EPSS
Exploits3References7
nessus
nessus
added 2022/01/24 12:0 a.m.36 views

GLSA-202107-27 : OpenEXR: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202107-27 OpenEXR: Multiple vulnerabilities Multiple vulnerabilities have been discovered in OpenEXR. Please review the CVE identifiers referenced below for details. Impact : Please review the referenced CVE identifiers for detail...

5.5CVSS6.4AI score0.01848EPSS
Exploits8References19
openvas
openvas
added 2021/06/09 12:0 a.m.21 views

SUSE: Security Advisory (SUSE-SU-2019:2871-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.5AI score0.06707EPSS
Exploits3References2
openvas
openvas
added 2021/06/09 12:0 a.m.28 views

SUSE: Security Advisory (SUSE-SU-2020:1293-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS7.2AI score0.01807EPSS
Exploits7References2
openvas
openvas
added 2021/04/19 12:0 a.m.28 views

SUSE: Security Advisory (SUSE-SU-2020:1292-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS7.5AI score0.01807EPSS
Exploits4References8
ncsc
ncsc
added 2020/10/08 12:0 a.m.5 views

Vulnerabilities fixed in Arista EOS

Arista has fixed several vulnerabilities in EOS. The vulnerabilities allow a malicious party to perform a Denial-of-Service DoS exploit. To do this, malicious network traffic to the device. Arista has released updates to fix the vulnerabilities. For more information, see: CVE-2020-15897:...

7.5CVSS7AI score0.01261EPSS
Exploits1
debian
debian
added 2020/08/29 5:35 p.m.65 views

[SECURITY] [DSA 4755-1] openexr security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4755-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff August 29, 2020 https://www.debian.org/security/faq -...

8.8CVSS7.3AI score0.0331EPSS
Exploits8
osv
osv
added 2020/05/22 4:17 p.m.11 views

OPENSUSE-SU-2020:0682-1 Security update for openexr

This update for openexr provides the following fix: Security issues fixed: - CVE-2020-11765: Fixed an off-by-one error in use of the ImfXdr.h read function by DwaCompressor:Classifier:Classifier bsc1169575. - CVE-2020-11764: Fixed an out-of-bounds write in copyIntoFrameBuffer in ImfMisc.cpp...

5.5CVSS6.1AI score0.01807EPSS
Exploits7References16
nessus
nessus
added 2020/05/22 12:0 a.m.48 views

SUSE SLED15 / SLES15 Security Update : openexr (SUSE-SU-2020:1293-1)

This update for openexr provides the following fix : Security issues fixed : CVE-2020-11765: Fixed an off-by-one error in use of the ImfXdr.h read function by DwaCompressor:Classifier:Classifier bsc1169575. CVE-2020-11764: Fixed an out-of-bounds write in copyIntoFrameBuffer in ImfMisc.cpp...

5.5CVSS6.8AI score0.01807EPSS
Exploits7References23
Rows per page
Query Builder