CVE-2020-15842

Liferay Portal before 7.3.0, and Liferay DXP 7.0 before fix pack 90, 7.1 before fix pack 17, and 7.2 before fix pack 5, allows man-in-the-middle attackers to execute arbitrary code via crafted serialized payloads, because of insecure deserialization...

CVE-2020-15842

CVE-2020-15842 affects Liferay Portal before 7.3.0 and Liferay DXP 7.0 before fix pack 90, 7.1 before fix pack 17, and 7.2 before fix pack 5. Insecure deserialization allows MITM attackers to execute arbitrary code via crafted serialized payloads. Mitigation: upgrade to Liferay Portal 7.3.0+ or D...

CVE-2020-15842

Liferay Portal before 7.3.0, and Liferay DXP 7.0 before fix pack 90, 7.1 before fix pack 17, and 7.2 before fix pack 5, allows man-in-the-middle attackers to execute arbitrary code via crafted serialized payloads, because of insecure deserialization...

CVE-2019-15842

The CVE-2019-15842 entry concerns the WordPress plugin easy-pdf-restaurant-menu-upload (pre-1.1.2). A cross-site scripting (XSS) vulnerability exists in this plugin, allowing attackers to execute client-side code. Public details indicate the issue affects versions before 1.1.2; remediation is to ...

CVE-2018-15842

WolfCMS 0.8.3.1 is affected by a Cross-Site Scripting (XSS) vulnerability triggered by the slug parameter in the /?/admin/page/add path. The root cause is inadequate filtering of the slug parameter, allowing injection and execution of JavaScript. Public references (NVD/CNVD/OSV, among others) con...

CVE-2017-15842

Buffer might get used after it gets freed due to unlocking the mutex before freeing the buffer in all Android releases from CAF Android for MSM, Firefox OS for MSM, QRD Android using the Linux Kernel...

CVE-2017-15842

CVE-2017-15842 describes a use-after-free vulnerability in Android CAF/Linux kernel code where a mutex is unlocked before freeing the buffer, allowing potential reuse of the freed memory. The issue affects all Android releases using CAF components (Android for MSM, Firefox OS for MSM, QRD Android...