50 matches found
PT-2024-18836 · Elementor · Elementor Website Builder
Name of the Vulnerable Software and Affected Versions: Elementor Website Builder versions up to, and including, 3.20.2 Description: The issue is related to Stored Cross-Site Scripting via the plugin's Path Widget due to insufficient output escaping on user-supplied attributes. This allows...
WordPress Elementor Pro Plugin <= 3.20.1 is vulnerable to Cross Site Scripting (XSS)
Software Elementor Pro Type Plugin Vulnerable versions = 3.20.1 Fixed in 3.20.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-2120 Patch priority Low CVSS severity Low 5.4 Developer Claim ownership PSID 360c3b70f13b Credits wesley wcraft Required privilege...
Important: Red Hat Security Advisory: Red Hat Integration Camel for Spring Boot 3.20.2 release and security update
Red Hat Integration Camel for Spring Boot 3.20.2 release and security update is now available. Red Hat Product Security has rated this update as having an impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...
EulerOS 2.0 SP10 : protobuf (EulerOS-SA-2023-1537)
According to the versions of the protobuf packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A parsing vulnerability for the MessageSet type in the ProtocolBuffers versions prior to and including 3.16.1, 3.17.3, 3.18.2, 3.19.4, 3.20.1...
SUSE: Security Advisory (SUSE-SU-2016:0334-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Unspecified Vulnerability in NVIDIA GeForce Experience
NVIDIA GeForce Experience is a set of automatic graphics card update tools from NVIDIA. The product is capable of automatically updating graphics card drivers, and supports graphics card performance management and optimization. A security vulnerability exists in NVIDIA GeForce Experience versions...
openSUSE Security Update : pidgin (openSUSE-2017-410)
This update for pidgin fixes the following issues : Feature update : - Update to GNOME 3.20.2 fate318572. Security issues fixed : - CVE-2017-2640: Fix an out of bounds memory read in purplemarkupunescapeentity. boo1028835 Bugfixes - Correctly remove .so files for plugins fixes...
File Roller 'src/file-utils.c' Directory Traversal Vulnerability
File Roller is for the Gnome desktop environment provides a graphical interface to operate the compressed, archived files, similar to the KDE desktop environment, Ark. A target traversal vulnerability exists in File Roller 3.5.4-3.20.2. If the target user opens a malicious document, it can cause...
openSUSE Security Update : SeaMonkey (openSUSE-2016-129) (SLOTH)
This update for SeaMonkey fixes the following issues : - update to SeaMonkey 2.40 bnc959277 - requires NSS 3.20.2 to fix MFSA 2015-150/CVE-2015-7575 bmo1158489 MD5 signatures accepted within TLS 1.2 ServerKeyExchange in server signature - MFSA 2015-134/CVE-2015-7201/CVE-2015-7202 Miscellaneous...
Cross site scripting
Cross-site scripting XSS vulnerability in includes/htmlArea/plugins/HtmlTidy/html-tidy-logic.php in Kayako eSupport 3.20.2 allows remote attackers to inject arbitrary web script or HTML via the jsMakeSrc parameter. NOTE: the provenance of this information is unknown; the details are obtained sole...