20 matches found
Linux Distros Unpatched Vulnerability : CVE-2021-32920
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Prosody before 0.11.9 allows Uncontrolled CPU Consumption via a flood of SSL/TLS renegotiation requests. CVE-2021-32920 Note that Nessus relies on the presence ...
CVE-2022-32920
The issue was addressed with improved checks. This issue is fixed in Xcode 14.0. Parsing a file may lead to disclosure of user information...
CVE-2025-32920
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in templateinvaders TI WooCommerce Wishlist ti-woocommerce-wishlist allows Stored XSS.This issue affects TI WooCommerce Wishlist: from n/a through = 2.10.0...
CVE-2025-32920
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in templateinvaders TI WooCommerce Wishlist ti-woocommerce-wishlist allows Stored XSS.This issue affects TI WooCommerce Wishlist: from n/a through = 2.10.0...
CVE-2025-32920
CVE-2025-32920 is a stored XSS vulnerability in the TI WooCommerce Wishlist WordPress plugin (affected: TI WooCommerce Wishlist up to 2.10.0; fixed by moving to a version newer than 2.9.2, with PatchStack listing 2.10.0 as the impacted range). Root cause: Improper neutralization of input during w...
CVE-2025-32920 WordPress TI WooCommerce Wishlist plugin <= 2.9.2 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in TemplateInvaders TI WooCommerce Wishlist allows Stored XSS.This issue affects TI WooCommerce Wishlist: from n/a through 2.9.2...
CVE-2024-32920
In setsecurereg of sachandler.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure of 4 bytes of stack memory with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2022-32920
The issue was addressed with improved checks. This issue is fixed in Xcode 14.0. Parsing a file may lead to disclosure of user information...
CVE-2022-32920
Apple Xcode is affected by CVE-2022-32920. The issue arises from parsing a file, which could disclose user information. Affected product: Xcode (prior to 14.0). Underlying cause: insufficient checks during file parsing. Impact (as stated): potential disclosure of user information. Remediation: fi...
CVE-2022-32920
The issue was addressed with improved checks. This issue is fixed in Xcode 14.0. Parsing a file may lead to disclosure of user information...
About the security content of Xcode 14.0
About the security content of Xcode 14.0 This document describes the security content of Xcode 14.0. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available...
[ASA-202105-11] prosody: multiple issues
Arch Linux Security Advisory ASA-202105-11 ========================================== Severity: High Date : 2021-05-19 CVE-ID : CVE-2021-32917 CVE-2021-32918 CVE-2021-32919 CVE-2021-32920 CVE-2021-32921 Package : prosody Type : multiple issues Remote : Yes Link :...
Debian DSA-4916-1 : prosody - security update
Multiple security issues were found in Prosody, a lightweight Jabber/XMPP server, which could result in denial of service or information disclosure. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security...
Security update for prosody (important)
openSUSE Security Update: Security update for prosody Announcement ID: openSUSE-SU-2021:0751-1 Rating: important References: 1186027 Cross-References: CVE-2021-32917 CVE-2021-32918 CVE-2021-32919 CVE-2021-32920 Affected Products: openSUSE Backports SLE-15-SP2 An update that fixes four...
[SECURITY] [DSA 4916-1] prosody security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4916-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff May 17, 2021 https://www.debian.org/security/faq -...
Security update for prosody (important)
openSUSE Security Update: Security update for prosody Announcement ID: openSUSE-SU-2021:0728-1 Rating: important References: 1186027 Cross-References: CVE-2021-32917 CVE-2021-32918 CVE-2021-32919 CVE-2021-32920 Affected Products: openSUSE Leap 15.2 An update that fixes four vulnerabilities is now...
CVE-2021-32920
Prosody before 0.11.9 allows Uncontrolled CPU Consumption via a flood of SSL/TLS renegotiation requests...
CVE-2021-32920
Prosody before 0.11.9 allows Uncontrolled CPU Consumption via a flood of SSL/TLS renegotiation requests...
CVE-2021-32920
Prosody (XMPP server) before version 0.11.9 is vulnerable to denial of service via an abuse of SSL/TLS renegotiation: a client can flood a connection with renegotiation requests, consuming excessive CPU on the server. Affected component is the SSL/TLS renegotiation handling within Prosody prior t...
CVE-2009-0038
creationtimestamp| type| source ---|---|--- 2009-04-16 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/32921 2009-04-16 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/32920...