Linux Distros Unpatched Vulnerability : CVE-2018-15871

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An invalid memory address dereference was discovered in decompileSingleArgBuiltInFunctionCall in libming 0.4.8 before 2018-03-12. The vulnerability causes a...

CVE-2020-15871

Sonatype Nexus Repository Manager OSS/Pro version before 3.25.1 allows Remote Code Execution...

CVE-2020-15871

Sonatype Nexus Repository Manager OSS/Pro version before 3.25.1 allows Remote Code Execution...

CVE-2020-15871

CVE-2020-15871 affects Sonatype Nexus Repository Manager OSS/Pro prior to 3.25.1, enabling remote code execution. The issue is described across multiple sources as a RCE vulnerability in Nexus Repository Manager OSS/Pro versions before 3.25.1. Remediation: upgrade to version 3.25.1 or later. Publ...

moccae.gov.ae Cross Site Scripting vulnerability

Open Bug Bounty ID: OBB-1008476 Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website...

CVE-2019-15871

The LoginPress plugin before 1.1.4 for WordPress has no capability check for updates to settings...

CVE-2019-15871

CVE-2019-15871 affects the WordPress LoginPress plugin prior to version 1.1.4. The root cause is a missing capability check for updates to settings, enabling unauthorized actions related to configuration changes. Public references confirm the issue in/LoginPress plugin and echo the need for a ven...

CVE-2018-15871

An invalid memory address dereference was discovered in decompileSingleArgBuiltInFunctionCall in libming 0.4.8 before 2018-03-12. The vulnerability causes a segmentation fault and application crash, which leads to denial of service...

CVE-2018-15871

CVE-2018-15871 affects libming 0.4.8 prior to 2018-03-12, where an invalid memory address dereference in decompileSingleArgBuiltInFunctionCall leads to a segmentation fault and application crash (denial of service). This vulnerability is documented across multiple feeds (NVD, CNVD, osv, UB, Ubunt...

CVE-2017-15871

The deserialize function in serialize-to-js through 1.1.1 allows attackers to cause a denial of service via vectors involving an Immediately Invoked Function Expression "function" substring, as demonstrated by a "functionconsole.log" call or a simple infinite loop. NOTE: the vendor agrees that...

CVE-2017-15871

The CVE-2017-15871 entry affects the deserialize function in serialize-to-js (versions ≤ 1.1.1). Affected input involving an Immediately Invoked Function Expression substring (e.g., function(){console.log(…)}) can cause a denial of service. The vendor acknowledges the DoS risk and states deserial...