MiracleLinux 8 : dovecot-2.3.16-3.el8 (AXSA:2022-4213:02)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-4213:02 advisory. dovecot: Privilege escalation when similar master and non-master passdbs are used CVE-2022-30550 Tenable has extracted the preceding description block direct...

MiracleLinux 9 : dovecot-2.3.16-7.el9 (AXSA:2023-4711:01)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-4711:01 advisory. dovecot: Privilege escalation when similar master and non-master passdbs are used CVE-2022-30550 Tenable has extracted the preceding description block direct...

Advisory ROSA-SA-2025-3015

Software: dovecot 2.3.21.1 OS: ROSA-CHROME unaffected versions = dovecot-2.3.21.1-6 affected versions dovecot-2.3.21.1-6 CVE-ID: CVE-2022-30550 BDU-ID: 2022-04273 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the passdb account database of the Dovecot mail server is related to configuration...

CVE-2023-30550

MeterSphere is an open source continuous testing platform, covering functions such as test tracking, interface testing, UI testing, and performance testing. This IDOR vulnerability allows the administrator of a project to modify other projects under the workspace. An attacker can obtain some...

CVE-2025-30550

Cross-Site Request Forgery CSRF vulnerability in WPShop.ru CallPhone'r callphoner allows Stored XSS.This issue affects CallPhone'r: from n/a through = 1.1.1...

CVE-2025-30550

Cross-Site Request Forgery CSRF vulnerability in WPShop.ru CallPhone'r callphoner allows Stored XSS.This issue affects CallPhone'r: from n/a through = 1.1.1...

CVE-2025-30550 WordPress CallPhone'r plugin <= 1.1.1 - CSRF to Stored XSS vulnerability

Cross-Site Request Forgery CSRF vulnerability in WPShop.ru CallPhone'r callphoner allows Stored XSS.This issue affects CallPhone'r: from n/a through = 1.1.1...

CVE-2025-30550 WordPress CallPhone'r plugin <= 1.1.1 - CSRF to Stored XSS vulnerability

Cross-Site Request Forgery CSRF vulnerability in WPShop.ru CallPhone'r allows Stored XSS. This issue affects CallPhone'r: from n/a through 1.1.1...

CVE-2024-30550

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in wpdevart Responsive Image Gallery, Gallery Album allows Reflected XSS.This issue affects Responsive Image Gallery, Gallery Album: from n/a through 2.0.3...

CVE-2024-30550

CVE-2024-30550 refers to an XSS vulnerability in wpdevart’s Responsive Image Gallery / Gallery Album. The issue is described as Reflected Cross-Site Scripting due to improper input neutralization during web page generation, affecting Gallery Album versions from n/a through 2.0.3. Connected source...

CVE-2024-30550 WordPress Gallery – Image and Video Gallery with Thumbnails plugin <= 2.0.3 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in wpdevart Responsive Image Gallery, Gallery Album allows Reflected XSS.This issue affects Responsive Image Gallery, Gallery Album: from n/a through 2.0.3...

Rocky Linux 9 : dovecot (RLSA-2022:8208)

The remote Rocky Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2022:8208 advisory. - An issue was discovered in the auth component in Dovecot 2.2 and 2.3 before 2.3.20. When two passdb configuration entries exist with the same driver and args...

GLSA-202310-19 : Dovecot: Privilege Escalation

The remote host is affected by the vulnerability described in GLSA-202310-19 Dovecot: Privilege Escalation - An issue was discovered in the auth component in Dovecot 2.2 and 2.3 before 2.3.20. When two passdb configuration entries exist with the same driver and args settings, incorrect...

CVE-2022-30550 affecting package dovecot for versions less than 2.3.20-1

CVE-2022-30550 affecting package dovecot for versions less than 2.3.20-1. A patched version of the package is available...

CVE-2023-30550

creationtimestamp| type| source ---|---|--- 2023-05-04 22:37:13+00:00| seen| https://t.me/cibsecurity/63310...

CVE-2023-30550 IDOR vulnerability exists in metersphere

MeterSphere is an open source continuous testing platform, covering functions such as test tracking, interface testing, UI testing, and performance testing. This IDOR vulnerability allows the administrator of a project to modify other projects under the workspace. An attacker can obtain some...

Oracle Linux 9 : dovecot (ELSA-2022-8208)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2022-8208 advisory. 1:2.3.16-7.0.1 - do not run systemd commands during leapp upgrade Orabug: 34680501 1:2.3.16-7 - fix possible privilege escalation when similar master and...

AlmaLinux 9 : dovecot (ALSA-2022:8208)

The remote AlmaLinux 9 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2022:8208 advisory. - An issue was discovered in the auth component in Dovecot 2.2 and 2.3 before 2.3.20. When two passdb configuration entries exist with the same driver and args...

Rocky Linux 8 : dovecot (RLSA-2022:7623)

The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2022:7623 advisory. - An issue was discovered in the auth component in Dovecot 2.2 and 2.3 before 2.3.20. When two passdb configuration entries exist with the same driver and args...

Moderate: Red Hat Security Advisory: dovecot security and enhancement update

An update for dovecot is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...