Lucene search
+L

8 matches found

AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.6 views

Astra Linux – Vulnerability in Ruby-Rack

There is a denial-of-service vulnerability in the Content-Disposition parsing component of Rack, which was fixed in versions 2.0.9.2, 2.1.4.2, 2.2.4.1, and 3.0.0.1. This vulnerability could allow an attacker to create an input that causes the Content-Disposition header parsing in Rack to take an...

7.5CVSS6.6AI score0.01503EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/02/04 10:14 p.m.8 views

CVE-2024-35746

Unrestricted Upload of File with Dangerous Type vulnerability in Asghar Hatampoor BuddyPress Cover allows Code Injection.This issue affects BuddyPress Cover: from n/a through 2.1.4.2...

10CVSS7AI score0.00511EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/11/25 9:36 p.m.7 views

WordPress InPost Gallery plugin <= 2.1.4.2 - Authenticated (Subscriber+) Arbitrary Shortcode Execution via inpost_gallery_get_shortcode_template vulnerability

Authenticated Subscriber+ Arbitrary Shortcode Execution via inpostgallerygetshortcodetemplate vulnerability discovered by Arkadiusz Hydzik in WordPress Plugin InPost Gallery versions = 2.1.4.2...

6.3CVSS7.1AI score0.0057EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2024/06/10 5:16 p.m.6 views

CVE-2024-35746

Unrestricted Upload of File with Dangerous Type vulnerability in Asghar Hatampoor BuddyPress Cover allows Code Injection.This issue affects BuddyPress Cover: from n/a through 2.1.4.2...

9.8CVSS5.8AI score0.00511EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/06/06 5:57 p.m.5 views

WordPress BuddyPress Cover plugin <= 2.1.4.2 - Arbitrary File Upload vulnerability

Arbitrary File Upload vulnerability discovered by YCInfosec Patchstack Alliance in WordPress Plugin BuddyPress Cover versions = 2.1.4.2...

10CVSS7AI score0.00511EPSS
Exploits0Affected Software1
ATTACKERKB
ATTACKERKB
added 2023/02/09 8:15 p.m.7 views

CVE-2022-44572

A denial of service vulnerability in the multipart parsing component of Rack fixed in 2.0.9.2, 2.1.4.2, 2.2.4.1 and 3.0.0.1 could allow an attacker tocraft input that can cause RFC2183 multipart boundary parsing in Rack to take an unexpected amount of time, possibly resulting in a denial of servi...

7.5CVSS6.6AI score0.01617EPSS
Exploits0References4
OSV
OSV
added 2023/02/09 8:15 p.m.3 views

DEBIAN-CVE-2022-44571

There is a denial of service vulnerability in the Content-Disposition parsingcomponent of Rack fixed in 2.0.9.2, 2.1.4.2, 2.2.4.1, 3.0.0.1. This could allow an attacker to craft an input that can cause Content-Disposition header parsing in Rackto take an unexpected amount of time, possibly...

7.5CVSS6.5AI score0.01503EPSS
Exploits0References1
Joomla! Vulnerable Extensions List
Joomla! Vulnerable Extensions List
added 2015/08/17 12:0 a.m.22 views

Event Manager, 2.1.4 and below, multiple vulnerabilities

Event Manager, 2.1.4 and below, SQLi and Unrestricted File Upload Fixed in version 2.1.4.2 Notice: http://www.joomlaeventmanager.net/project/changelog-jem-2...

7.1AI score
Exploits0References3Affected Software1
Rows per page
Query Builder