WordPress DearFlip plugin <= 2.4.29 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by timomangcut in WordPress Plugin DearFlip versions = 2.4.29...

WordPress plugin DearFlip 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

WordPress Gallery by FooGallery plugin <= 2.4.27 - Unauthenticated Reflected Cross-Site Scripting vulnerability

Unauthenticated Reflected Cross-Site Scripting vulnerability discovered by Asaf Mozes in WordPress Plugin FooGallery versions = 2.4.27...

WordPress Piotnet Addons For Elementor Plugin <= 2.4.27 is vulnerable to Cross Site Scripting (XSS)

Software Piotnet Addons For Elementor Type Plugin Vulnerable versions = 2.4.27 Fixed in 2.4.28 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-33630 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 341a23b421fb Credits Khalid Yusuf Required...

SUSE CVE-2017-9798

Apache httpd allows remote attackers to read secret data from process memory if the Limit directive can be set in a user's .htaccess file, or if httpd.conf has certain misconfigurations, aka Optionsbleed. This affects the Apache HTTP Server through 2.2.34 and 2.4.x through 2.4.27. The attacker...

OpenLDAP < 2.4.27 DoS Vulnerability

OpenLDAP is prone to a denial of service DoS vulnerability. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; y...

[SECURITY] Fedora 26 Update: httpd-2.4.27-3.fc26

The Apache HTTP Server is a powerful, efficient, and extensible web server...

DEBIAN-CVE-2017-9798

Apache httpd allows remote attackers to read secret data from process memory if the Limit directive can be set in a user's .htaccess file, or if httpd.conf has certain misconfigurations, aka Optionsbleed. This affects the Apache HTTP Server through 2.2.34 and 2.4.x through 2.4.27. The attacker...

Apache &lt; 2.2.34 / &lt; 2.4.27 - OPTIONS Memory Leak

!/usr/bin/env python3 Optionsbleed proof of concept test by Hanno Böck import argparse import urllib3 import re def testbleedurl, args: r = pool.request'OPTIONS', url try: allow = strr.headers"Allow" except KeyError: return False if allow in dup: return dup.appendallow if allow == "": print"empty...

DEBIAN-CVE-2017-9788

In Apache httpd before 2.2.34 and 2.4.x before 2.4.27, the value placeholder in Proxy-Authorization headers of type 'Digest' was not initialized or reset before or between successive key=value assignments by modauthdigest. Providing an initial key with no '=' assignment could reflect the stale...

Apache Httpd < 2.4.27 : Read after free in mod_http2

When under stress, closing many connections, the HTTP/2 handling code would sometimes access memory after it has been freed, resulting in potentially erratic behaviour...

cTorrentDTorrent - .torrent Local Buffer Overflow

cTorrentDTorrent - .torrent Local Buffer Overflow !/usr/bin/python Written By Michael Brooks 04/17/2009 Stack Based Buffer Overflow The vulnerability is in the btFiles::BuildFromMI function inside the btfiles.cpp file Exploit tested on cTorrent 1.3.4 using Debian Sarge using Linux kernel...

Debian: Security Advisory (DSA-1503-2)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian Security Advisory DSA 1503-2 (kernel-source-2.4.27 (2.4.27-10sarge7))

The remote host is missing an update to kernel-source-2.4.27 2.4.27-10sarge7 announced via advisory DSA 1503-2. OpenVAS Vulnerability Test $Id: deb15032.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1503-2 kernel-source-2.4.27 2.4.27-10sarge7 Authors:...

Debian: Security Advisory (DSA-1503-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian Security Advisory DSA 1503-1 (kernel-source-2.4.27 (2.4.27-10sarge6))

The remote host is missing an update to kernel-source-2.4.27 2.4.27-10sarge6 announced via advisory DSA 1503-1. OpenVAS Vulnerability Test $Id: deb15031.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1503-1 kernel-source-2.4.27 2.4.27-10sarge6 Authors:...

[SECURITY] [DSA 1503-1] New Linux kernel 2.4.27 packages fix several issues

------------------------------------------------------------------------ Debian Security Advisory DSA-1503 [email protected] http://www.debian.org/security/ dann frazier February 22, 2008 http://www.debian.org/security/faq -...

Debian Security Advisory DSA 1018-1 (kernel-source-2.4.27)

The remote host is missing an update to kernel-source-2.4.27 announced via advisory DSA 1018-1. For details on the issues addressed with this update, please visit the referenced security advisories. OpenVAS Vulnerability Test $Id: deb10181.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description:...

Debian Security Advisory DSA 1237-1 (kernel-source-2.4.27)

The remote host is missing an update to kernel-source-2.4.27 announced via advisory DSA 1237-1. OpenVAS Vulnerability Test $Id: deb12371.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1237-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

Debian Security Advisory DSA 922-1 (kernel-source-2.4.27)

The remote host is missing an update to kernel-source-2.4.27 announced via advisory DSA 922-1. OpenVAS Vulnerability Test $Id: deb9221.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 922-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...