Photon OS 4.0: Rubygem PHSA-2025-4.0-0807

An update of the rubygem package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-4.0-0807. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

CVE-2022-30560

When an attacker obtaining the administrative account and password, or through a man-in-the-middle attack, the attacker could send a specified crafted packet to the vulnerable interface then lead the device to crash...

CVE-2025-30560

Cross-Site Request Forgery CSRF vulnerability in Sana Ullah jQuery Dropdown Menu jquery-drop-down-menu-plugin allows Stored XSS.This issue affects jQuery Dropdown Menu: from n/a through = 3.0...

CVE-2025-30560

CVE-2025-30560 is a CSRF-to-Stored XSS vulnerability in the WordPress plugin jQuery Dropdown Menu (versions up to 3.0, affected from n/a through 3.0). The CVSS 3.1 score is 7.1 (High) with network attack vector, low attack complexity, no privileges required, but requires user interaction, and it ...

CVE-2024-30560

Cross-Site Request Forgery CSRF vulnerability in 大侠WP DX-Watermark.This issue affects DX-Watermark: from n/a through 1.0.4...

Dahua ASI7213X-T1 Unrestricted Upload of File with Dangerous Type (CVE-2022-30560)

When an attacker obtaining the administrative account and password, or through a man-in-the-middle attack, the attacker could send a specified crafted packet to the vulnerable interface then lead the device to crash. This plugin only works with Tenable.ot. Please visit...

Important: Red Hat Security Advisory: kernel security and bug fix update

An update for kernel is now available for Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

CVE-2024-30560

Cross-Site Request Forgery CSRF vulnerability in 大侠WP DX-Watermark.This issue affects DX-Watermark: from n/a through 1.0.4...

CVE-2024-30560

CVE-2024-30560 describes a Cross-Site Request Forgery (CSRF) vulnerability in the WordPress plugin DX-Watermark, affecting DX-Watermark versions up to 1.0.4. The entry shows a high base CVSS score (3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H) with a base score of 9.6 and a CRITICAL severity, indicati...

CVE-2024-30560 WordPress DX-Watermark plugin <= 1.0.4 - CSRF to Arbitrary File Upload and XSS vulnerability

Cross-Site Request Forgery CSRF vulnerability in 大侠WP DX-Watermark.This issue affects DX-Watermark: from n/a through 1.0.4...

WordPress DX-Watermark Plugin <= 1.0.4 is vulnerable to Cross Site Request Forgery (CSRF)

Software DX-Watermark Type Plugin Vulnerable versions = 1.0.4 Fixed in N/A OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-30560 Patch priority Low CVSS severity Low 9.6 Developer Claim ownership PSID 545443b5c1d7 Credits Dimas Maulana Required...

GLSA-202310-23 : libxslt: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202310-23 libxslt: Multiple Vulnerabilities - Use after free in Blink XSLT in Google Chrome prior to 91.0.4472.164 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. CVE-2021-30560 Note that...

BELL-CVE-2021-30560 CVE-2021-30560 does not affect BellSoft software

Bulletin has no description...

EulerOS Virtualization 3.0.6.6 : libxslt (EulerOS-SA-2023-2399)

According to the versions of the libxslt packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - Use after free in Blink XSLT in Google Chrome prior to 91.0.4472.164 allowed a remote attacker to potentially exploit heap...

CVE-2023-30560

creationtimestamp| type| source ---|---|--- 2023-07-13 22:11:43+00:00| seen| https://t.me/cibsecurity/66690...

CVE-2023-30560

The configuration from the PCU can be modified without authentication using physical connection to the PCU...

CVE-2023-30560

BD Alaris PCU 8015 (versions 12.1.3 and earlier) exposes a vulnerability (CVE-2023-30560) where the PCU configuration can be modified without authentication by connecting physically to the PCU. The CVSS v3.1 base metrics in public sources indicate AV:P, AC:L, PR:N, UI:N, S:U, with C/H/I/H/A/H, i....

CVE-2023-30560 PCU Configuration Lacks Authentication

The configuration from the PCU can be modified without authentication using physical connection to the PCU...

BD Alaris System with Guardrails Suite MX

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 8.2 ATTENTION : Low attack complexity Vendor : Becton, Dickinson and Company BD Equipment : Alaris PCU, Guardrails Editor, Systems Manager, Calculation Services, CQI Reporter Vulnerabilities : Insufficient Verification of Data Authenticity, Missing...

Huawei EulerOS: Security Advisory for libxslt (EulerOS-SA-2023-2202)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...