CVE-2018-14867

Incorrect access control in the portal messaging system in Odoo Community 9.0 and 10.0 and Odoo Enterprise 9.0 and 10.0 allows remote attackers to post messages on behalf of customers, and to guess document attribute values, via crafted parameters...

CVE-2025-14867

creationtimestamp| type| source ---|---|--- 2026-01-07 08:23:05+00:00| seen| https://gist.github.com/Darkcrai86/0d448b4e0a6e01d4b558db801906cbf7...

WordPress Flashcard Plugin for WordPress plugin <= 0.9 - Authenticated (Contributor+) Arbitrary File Read via Path Traversal vulnerability

Authenticated Contributor+ Arbitrary File Read via Path Traversal vulnerability discovered by Bhumividh Treloges in WordPress Plugin Flashcard versions = 0.9...

CVE-2025-14867

CVE-2025-14867 affects the Flashcard Plugin for WordPress. Versions up to 0.9 are vulnerable to a path traversal flaw via the shortcode attribute source in the flashcard shortcode, enabling authenticated attackers with at least contributor privileges to read arbitrary files on the server. The Wor...

CVE-2017-14867 affecting package git for versions less than 2.45.2-1

CVE-2017-14867 affecting package git for versions less than 2.45.2-1. An upgraded version of the package is available that resolves this issue...

RHEL 7 : git (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - git: Recursive submodule cloning allows using git directory twice with synonymous directory name written ...

RHEL 6 : git (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - git: cvsserver command injection CVE-2017-14867 - git: Heap overflow in git archive, git log --format...

CVE-2019-14867

creationtimestamp| type| source ---|---|--- 2024-02-28 16:11:43+00:00| seen| https://t.me/ctinow/195606...

SUSE CVE-2017-14867

Git before 2.10.5, 2.11.x before 2.11.4, 2.12.x before 2.12.5, 2.13.x before 2.13.6, and 2.14.x before 2.14.2 uses unsafe Perl scripts to support subcommands such as cvsserver, which allows attackers to execute arbitrary OS commands via shell metacharacters in a module name. The vulnerable code i...

Heap overflow

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Bentley View 10.15.0.75. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsin...

CVE-2021-34900

Bentley View 10.15.0.75 is affected by CVE-2021-34900. The flaw is in J2K file parsing and stems from failing to validate the length of user-supplied data before copying into a heap buffer, enabling remote code execution. Exploitation requires user interaction (visiting a malicious page or openin...

Moderate: Red Hat Security Advisory: mysql:8.0 security, bug fix, and enhancement update

An update for the mysql:8.0 module is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

CentOS 8 : mysql:8.0 (CESA-2021:3590)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2021:3590 advisory. - mysql: Server: Stored Procedure unspecified vulnerability CPU Oct 2020 CVE-2020-14672 - mysql: Server: FTS unspecified vulnerability CPU Oct 2020...

CVE-2020-14867 affecting package mysql 8.0.21-1

CVE-2020-14867 affecting package mysql 8.0.21-1. An upgraded version of the package is available that resolves this issue...

SUSE: Security Advisory (SUSE-SU-2017:2747-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Photon OS 1.0: Mysql PHSA-2020-1.0-0338

An update of the mysql package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2020-1.0-0338. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid143062...

Photon OS 2.0: Mysql PHSA-2020-2.0-0294

An update of the mysql package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2020-2.0-0294. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid142653...

Oracle MySQL Server <= 5.6.49 / 5.7 <= 5.7.31 / 8.0 <= 8.0.21 Security Update (cpuoct2020) - Windows

Oracle MySQL Server is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:oracle:mysql"; if...

CVE-2020-14867

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: DDL. Supported versions that are affected are 5.6.49 and prior, 5.7.31 and prior and 8.0.21 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to...

CVE-2020-14867

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: DDL. Supported versions that are affected are 5.6.49 and prior, 5.7.31 and prior and 8.0.21 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to...