EUVD-2021-13676

Malware in sbrugna...

CVE-2024-13676 Categorized Gallery Plugin <= 2.0 - Authenticated (Contributor+) SQL Injection

The Categorized Gallery Plugin plugin for WordPress is vulnerable to SQL Injection via the 'field' attribute of the 'imagegallery' shortcode in all versions up to, and including, 2.0 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL...

CVE-2024-13676 Categorized Gallery Plugin <= 2.0 - Authenticated (Contributor+) SQL Injection

The Categorized Gallery Plugin plugin for WordPress is vulnerable to SQL Injection via the 'field' attribute of the 'imagegallery' shortcode in all versions up to, and including, 2.0 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL...

CVE-2024-13676

CVE-2024-13676 affects the WordPress plugin Categorized Gallery Plugin (

CVE-2019-13676

creationtimestamp| type| source ---|---|--- 2024-02-27 09:46:10+00:00| seen| https://t.me/ctinow/194150...

CVE-2020-13676

The QuickEdit module does not properly check access to fields in some circumstances, which can lead to unintended disclosure of field data. Sites are only affected if the QuickEdit module which comes with the Standard profile is installed...

CVE-2020-13676

The QuickEdit module does not properly check access to fields in some circumstances, which can lead to unintended disclosure of field data. Sites are only affected if the QuickEdit module which comes with the Standard profile is installed...

CVE-2020-13676

The QuickEdit module does not properly check access to fields in some circumstances, which can lead to unintended disclosure of field data. Sites are only affected if the QuickEdit module which comes with the Standard profile is installed...

CVE-2020-13676

CVE-2020-13676 involves the Drupal QuickEdit module (Standard profile) failing to properly enforce access to fields, potentially leading to unintended disclosure of field data. The issue affects sites where QuickEdit is installed; the vulerability description indicates a partial confidentiality i...

CVE-2021-31511

This vulnerability allows remote attackers to execute arbitrary code on affected installations of OpenText Brava! Desktop Build 16.6.4.55. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists...

Design/Logic Flaw

This vulnerability allows remote attackers to execute arbitrary code on affected installations of OpenText Brava! Desktop Build 16.6.4.55. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists...

CVE-2021-31511

OpenText Brava! Desktop (Build 16.6.4.55) is affected. The vulnerability lies in PDF parsing where insufficient validation allows a write past the end of an allocated buffer, enabling remote code execution. Exploitation requires user interaction (visit a malicious page or open a malicious file). ...

DEBIAN-CVE-2019-13676

Insufficient policy enforcement in Chromium in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to perform domain spoofing via a crafted HTML page...

CVE-2019-13676

Insufficient policy enforcement in Chromium in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to perform domain spoofing via a crafted HTML page...

CVE-2019-13676

CVE-2019-13676 affects Chromium/Google Chrome and is described as an error in a certificate warning, contributing to domain spoofing scenarios. Public sources in the connected docs tie this to the Chromium/Chrome 78 updates that fixed this issue (e.g., CVEs tracked in Fedora/Debian advisories). T...

CVE-2019-13676

Insufficient policy enforcement in Chromium in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to perform domain spoofing via a crafted HTML page...

Fedora 31 : chromium (2019-9a5e81214f)

Chromium update to 77.0.3865.120. For the upstream announcement see https://chromereleases.googleblog.com/2019/10/stable-channel-update-fo r-desktop.html. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has...

CVE-2019-13676

Insufficient policy enforcement in Chromium in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to perform domain spoofing via a crafted HTML page...

openSUSE Security Update : chromium (openSUSE-2019-2153)

This update for chromium fixes the following issues : Security issues fixed : - CVE-2019-5870: Fixed a use-after-free in media. boo1150425 - CVE-2019-5871: Fixed a heap overflow in Skia. boo1150425 - CVE-2019-5872: Fixed a use-after-free in Mojo boo1150425 - CVE-2019-5874: Fixed a behavior that...

Google Chrome Security Updates (stable-channel-update-for-desktop-2019-09) - Windows

Google Chrome is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:google:chrome"; ifdescription...