CVE-2023-32557

A path traversal vulnerability in the Trend Micro Apex One and Apex One as a Service could allow an unauthenticated attacker to upload an arbitrary file to the Management Server which could lead to remote code execution with system privileges...

CVE-2025-32557

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Rico Macchi WP Featured Screenshot wp-featured-screenshot allows Reflected XSS.This issue affects WP Featured Screenshot: from n/a through = 1.3...

CVE-2025-32557

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Rico Macchi WP Featured Screenshot wp-featured-screenshot allows Reflected XSS.This issue affects WP Featured Screenshot: from n/a through = 1.3...

CVE-2025-32557 WordPress WP Featured Screenshot Plugin <= 1.3 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Rico Macchi WP Featured Screenshot allows Reflected XSS. This issue affects WP Featured Screenshot: from n/a through 1.3...

CVE-2024-32557

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Exclusive Addons Exclusive Addons Elementor allows Stored XSS.This issue affects Exclusive Addons Elementor: from n/a through 2.6.9.2...

CVE-2024-32557 WordPress Exclusive Addons for Elementor plugin <= 2.6.9.2 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Exclusive Addons Exclusive Addons Elementor allows Stored XSS.This issue affects Exclusive Addons Elementor: from n/a through 2.6.9.2...

CVE-2024-32557

CVE-2024-32557 is the Stored XSS vulnerability in the WordPress plugin Exclusive Addons for Elementor, affecting all versions up to 2.6.9.2. Red Hat context confirms the issue arises from insufficient input sanitization and output escaping in the Post Grid Widget, enabling authenticated attackers...

WordPress Exclusive Addons Elementor Plugin <= 2.6.9.2 is vulnerable to Cross Site Scripting (XSS)

Software Exclusive Addons Elementor Type Plugin Vulnerable versions = 2.6.9.2 Fixed in 2.6.9.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-32557 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 8ef581fa323e Credits Ngô Thiên An ancorn fro...

CVE-2023-32557

creationtimestamp| type| source ---|---|--- 2023-06-27 02:22:00+00:00| seen| https://t.me/cibsecurity/65542...

CVE-2023-32557

A path traversal vulnerability in the Trend Micro Apex One and Apex One as a Service could allow an unauthenticated attacker to upload an arbitrary file to the Management Server which could lead to remote code execution with system privileges...

CVE-2023-32557

A path traversal vulnerability in the Trend Micro Apex One and Apex One as a Service could allow an unauthenticated attacker to upload an arbitrary file to the Management Server which could lead to remote code execution with system privileges...

CVE-2023-32557

CVE-2023-32557 corresponds to a path traversal vulnerability in Trend Micro Apex One and Apex One as a Service that allows an unauthenticated attacker to upload an arbitrary file to the Management Server, enabling remote code execution with system privileges. The issue is documented across multip...

CVE-2022-32557

creationtimestamp| type| source ---|---|--- 2022-06-14 20:18:23+00:00| seen| https://t.me/cibsecurity/44433...

CVE-2022-32557

CVE-2022-32557 affects Couchbase Server versions prior to 7.0.4, where the Index Service does not enforce authentication for TCP/TLS servers. This creates potential unauthorized access from the network (attack vector: network, low attack complexity). The CVSS details indicate a high impact on int...

CVE-2021-32557 apport process_report() arbitrary file write

It was discovered that the processreport function in data/whoopsie-upload-all allowed arbitrary file writes via symlinks...

CVE-2021-32557

CVE-2021-32557 fixes a vulnerability in Ubuntu Apport where process_report() in data/whoopsie-upload-all could write arbitrary files via symlinks. The CVSSv3.1 vector (LOCAL, LOW to MEDIUM/LOW privileges, I and A HIGH) points to a LOCAL attack with high impact on integrity and availability. Affec...

Ubuntu 16.04 ESM : Apport vulnerabilities (USN-4965-2)

The remote Ubuntu 16.04 ESM host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4965-2 advisory. USN-4965-1 fixed several vulnerabilities in Apport. This update provides the corresponding update for Ubuntu 14.04 ESM and Ubuntu 16.04 ESM. Tenable has...