CVE-2023-5435

creationtimestamp| type| source ---|---|--- 2023-10-31 11:21:03+00:00| seen| https://t.me/cibsecurity/73216...

CVE-2023-5435 Up down image slideshow gallery <= 12.0 - Authenticated (Subscriber+) SQL Injection via Shortcode

The Up down image slideshow gallery plugin for WordPress is vulnerable to SQL Injection via the plugin's shortcode in versions up to, and including, 12.0 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possibl...

CVE-2023-5435

Summary (CVE-2023-5435) The Up down image slideshow gallery WordPress plugin is vulnerable to SQL Injection via its shortcode in versions ≤12.0 due to insufficient escaping of user input and lack of proper query preparation. An authenticated attacker with subscriber-level or higher privileges can...

Oracle Linux 9 : thunderbird (ELSA-2023-5435)

The remote Oracle Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2023-5435 advisory. 115.3.1-1.0.1 - Update to 115.3.1 build1 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note...

RHEL 9 : thunderbird (RHSA-2023:5435)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2023:5435 advisory. Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 115.3.1. Security Fixes: firefox:...