WordPress plugin Companion Portfolio 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

SUSE CVE-2019-14857

A flaw was found in modauthopenidc before version 2.4.0.1. An open redirect issue exists in URLs with trailing slashes similar to CVE-2019-3877 in modauthmellon...

QuantConnect Lean vulnerable to insecure deserialization

QuantConnect Lean versions from 2.3.0.0 to 2.4.0.1 are affected by an insecure deserialization vulnerability due to insecure configuration of TypeNameHandling property in Json.NET library. One may avoid this issue by only running Lean in an environment where data provided is trusted...

QuantConnect Lean versions from 代码问题漏洞

Quantconnect Lean is a cross-platform algorithmic trading engine for strategy research, backtesting and real-time trading based on the C language from Quantconnect. A security vulnerability exists in QuantConnect Lean versions 2.3.0.0 through 2.4.0.1, which stems from a failure to securely...

Design/Logic Flaw

The processtxdesc function in hw/net/e1000.c in QEMU before 2.4.0.1 does not properly process transmit descriptor data when sending a network packet, which allows attackers to cause a denial of service infinite loop and guest crash via unspecified vectors...

CVE-2015-5278

The CVE-2015-5278 entry concerns QEMU’s ne2000_receive() in hw/net/ne2000.c, where an attacker could trigger an infinite loop and crash the QEMU instance, potentially enabling arbitrary code execution via crafted network packets. Public sources in the CVE context confirm the vulnerability exists ...

WordPress Plugin Admin Management Xtended 2.4.0 - Privilege escalation

WordPress Plugin Admin Management Xtended 2.4.0 - Privilege escalation Exploit Title: Admin Management Xtended 2.4.0 Privilege escalation Date: 14-12-2015 Software Link: https://wordpress.org/plugins/admin-management-xtended/ Exploit Author: Kacper Szurek Contact: http://twitter.com/KacperSzurek...

UBUNTU-CVE-2015-5279

Heap-based buffer overflow in the ne2000receive function in hw/net/ne2000.c in QEMU before 2.4.0.1 allows guest OS users to cause a denial of service instance crash or possibly execute arbitrary code via vectors related to receiving packets...

PT-2015-2201 · Qemu +5 · Qemu +5

Name of the Vulnerable Software and Affected Versions: QEMU versions prior to 2.4.0.1 Description: The issue is caused by a heap-based buffer overflow in the ne2000 receive function. This can allow a local attacker to cause a denial of service or possibly execute arbitrary code via vectors relate...