55 matches found
Linux Distros Unpatched Vulnerability : CVE-2025-12562
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GitLab has remediated an issue in GitLab CE/EE affecting all versions from 11.10 before 18.4.6, 18.5 before 18.5.4, and 18.6 before 18.6.2 that could have allow...
CVE-2019-12562
Stored Cross-Site Scripting in DotNetNuke DNN Version before 9.4.0 allows remote attackers to store and embed the malicious script into the admin notification page. The exploit could be used to perfom any action with admin privileges such as managing content, adding users, uploading backdoors to...
CVE-2025-12562
creationtimestamp| type| source ---|---|--- 2025-12-11 15:25:32+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3m7pv2q3ouq2z...
CVE-2025-12562
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 11.10 before 18.4.6, 18.5 before 18.5.4, and 18.6 before 18.6.2 that could have allowed an unauthenticated user to create a denial of service condition by sending crafted GraphQL queries that bypass query complexity limits...
CVE-2025-12562 Allocation of Resources Without Limits or Throttling in GitLab
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 11.10 before 18.4.6, 18.5 before 18.5.4, and 18.6 before 18.6.2 that could have allowed an unauthenticated user to create a denial of service condition by sending crafted GraphQL queries that bypass query complexity limits...
Linux Distros Unpatched Vulnerability : CVE-2017-12562
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Heap-based Buffer Overflow in the psfbinheaderwritef function in common.c in libsndfile through 1.0.28 allows remote attackers to cause a denial of service...
CVE-2024-12562
The s2Member Pro plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 241216 via deserialization of untrusted input from the 's2memberproremoteop' vulnerable parameter. This makes it possible for unauthenticated attackers to inject a PHP Object. No know...
CVE-2024-12562 s2Member Pro <= 241216 - Unauthenticated PHP Object Injection
The s2Member Pro plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 241216 via deserialization of untrusted input from the 's2memberproremoteop' vulnerable parameter. This makes it possible for unauthenticated attackers to inject a PHP Object. No know...
CVE-2024-12562 s2Member Pro <= 241216 - Unauthenticated PHP Object Injection
The s2Member Pro plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 241216 via deserialization of untrusted input from the 's2memberproremoteop' vulnerable parameter. This makes it possible for unauthenticated attackers to inject a PHP Object. No know...
RHEL 7 : libsndfile (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - libsndfile: Heap overflow vulnerability when parsing specially crafted AIFF header CVE-2015-7805 -...
RHEL 6 : libsndfile (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - libsndfile: Heap overflow vulnerability when parsing specially crafted AIFF header CVE-2015-7805 -...
BELL-CVE-2017-12562 CVE-2017-12562 does not affect BellSoft software
Bulletin has no description...
Oracle Linux 7 : kubernetes (ELSA-2023-12562)
The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-12562 advisory. - CVE-2023-2727, CVE-2023-2728 Kubernetes upgraded to 1.24.15 Tenable has extracted the preceding description block directly from the Oracle Linux...
CVE-2020-12562
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate is unused by its CNA. Notes: none...
[SECURITY] [DLA 3058-1] libsndfile security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-3058-1 [email protected] https://www.debian.org/lts/security/ Thorsten Alteholz June 26, 2022 https://wiki.debian.org/LTS -...
Mageia: Security Advisory (MGASA-2018-0314)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2019-12562
creationtimestamp| type| source ---|---|--- 2021-09-21 04:41:50+00:00| seen| https://t.me/pwnwikizhchannel/846...
CVE-2017-12562 affecting package libsndfile 1.0.28-14
CVE-2017-12562 affecting package libsndfile 1.0.28-14. A patched version of the package is available...
CVE-2017-12562 affecting package libsndfile 1.0.28-14
CVE-2017-12562 affecting package libsndfile 1.0.28-14. A patched version of the package is available...
Ubuntu 16.04 LTS : libsndfile vulnerabilities (USN-4704-1)
The remote Ubuntu 16.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4704-1 advisory. It was discovered that libsndfile incorrectly handled certain malformed files. A remote attacker could use this issue to cause libsndfile to crash,...