72 matches found
CVE-2022-2355 Easy Username Updater < 1.0.5 - Arbitrary Username Update via CSRF
The Easy Username Updater WordPress plugin before 1.0.5 does not implement CSRF checks, which could allow attackers to make a logged in admin change any user's username includes the admin...
CVE-2019-2355
CVE-2019-2355 entry is rejected and not used (as stated).
CVE-2019-2355
...
CVE-2021-2355
CVE-2021-2355 affects Oracle E-Business Suite, specifically the Oracle Marketing component (Marketing Administration). Affected versions are 12.1.1–12.1.3 and 12.2.3–12.2.10. The vulnerability allows an unauthenticated, network-accessible attacker to compromise Oracle Marketing via HTTP, leading ...
SUSE: Security Advisory (SUSE-SU-2020:2355-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2018:2355-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2016:2355-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Virtuozzo Linux Errata and Bugfix Advisory 2019:2355
Upstream security update. Follow RHBA-2019:2355 for details...
CVE-2018-2355
...
CVE-2018-2355
CVE-2018-2355 entry is rejected/not used; it does not represent an active vulnerability entry.
Fedora Update for webkitgtk4 FEDORA-2017-b1abcbe695
The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora Update for webkitgtk4 FEDORA-2017-0beb752b6e
The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2017-2355
An issue was discovered in certain Apple products. iOS before 10.2.1 is affected. Safari before 10.0.3 is affected. iCloud before 6.1.1 is affected. iTunes before 12.5.5 is affected. tvOS before 10.1.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute...
CVE-2017-2355
CVE-2017-2355 affects WebKit in Apple ecosystems (iOS before 10.2.1; Safari before 10.0.3; iCloud before 6.1.1; iTunes before 12.5.5; tvOS before 10.1.1). The issue enables remote code execution or a denial of service via crafted web content, due to multiple memory corruption and related reliabil...
Apple iTunes < 12.5.5 Multiple Vulnerabilities (uncredentialed check)
The version of Apple iTunes running on the remote host is prior to 12.5.5 It is, therefore, affected by multiple vulnerabilities : - Multiple memory corruption issues exist in WebKit due to improper validation of certain unspecified input. An unauthenticated, remote attacker can exploit these, vi...
Apple iTunes < 12.5.5 Multiple Vulnerabilities (credentialed check)
The version of Apple iTunes installed on the remote Windows host is prior to 12.5.5. It is, therefore, affected by multiple vulnerabilities : - Multiple memory corruption issues exist in WebKit due to improper validation of certain unspecified input. An unauthenticated, remote attacker can exploi...
About the security content of iTunes 12.5.5 for Windows - Apple Support
About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available. Recent releases are listed on the Apple security updates page. For more information about security, se...
CVE-2016-2355
SQL injection vulnerability in the REST API in dotCMS before 3.3.2 allows remote attackers to execute arbitrary SQL commands via the stName parameter to api/content/save/1...
CVE-2016-2355
Summary: CVE-2016-2355 is a SQL injection vulnerability in the dotCMS REST API, specifically in the param stName used with api/content/save/1. Affected software: dotCMS versions before 3.3.2. Vulnerability details: An attacker can inject arbitrary SQL via the stName parameter, potentially comprom...
Oracle Linux 7 : sssd (ELSA-2015-2355)
The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2015-2355 advisory. 1.13.0-40 - Resolves: rhbz1270827 - local overrides: don't contact server with overridden name/id 1.13.0-39 - Resolves: rhbz1267837 - sssdbe crashed in...