CVE-2020-36848

The CVE-2020-36848 issue affects the BoldGrid BoldGrid’s Total Upkeep – WordPress Backup Plugin plus Restore & Migrate (WordPress) up to version 1.14.9. The vulnerability is a Sensitive Information Exposure via env-info.php and restore-info.json, enabling unauthenticated attackers to discover and...

Ubuntu 20.04 LTS : Linux kernel (Oracle) vulnerabilities (USN-6957-1)

The remote Ubuntu 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6957-1 advisory. Benedict Schlter, Supraja Sridhara, Andrin Bertschi, and Shweta Shinde discovered that an untrusted hypervisor could inject malicious VC interrupts and...

CVE-2023-36848

creationtimestamp| type| source ---|---|--- 2023-07-14 22:22:38+00:00| seen| https://t.me/cibsecurity/66749...

CVE-2023-36848 Junos OS: MX Series: The FPC will crash on receiving a malformed CFM packet

An Improper Handling of Undefined Values vulnerability in the periodic packet management daemon PPMD of Juniper Networks Junos OS on MX Seriesexcept MPC10, MPC11 and LC9600 allows an unauthenticated adjacent attacker to cause a Denial of Service DoS. When a malformed CFM packet is received, it...

CVE-2023-36848

The CVE refers to Juniper Junos OS MX Series PPMD vulnerability where an Improper Handling of Undefined Values on receipt of a malformed CFM packet can crash the FPC and cause DoS. Affected software includes Junos OS on MX Series with CFM enabled, with the issue present in multiple released branc...

CVE-2022-36848

Improper Authorization vulnerability in setDualDARPolicyCmd prior to SMR Sep-2022 Release 1 allows local attackers to cause local permanent denial of service...

CVE-2022-36848

In the connected PT-2022-23652 document, the issue is an Improper Authorization in the SoftwareX component tied to the setDualDARPolicyCmd function. Affects SoftwareX versions prior to SMR Sep-2022 Release 1; local attackers can cause a local permanent denial of service. Mitigation: update to SMR...

CVE-2021-36848

creationtimestamp| type| source ---|---|--- 2022-04-12 00:31:39+00:00| seen| https://t.me/cibsecurity/40578...

CVE-2021-36848

Authenticated admin+ Stored Cross-Site Scripting XSS vulnerability in Social Media Feather WordPress plugin versions = 2.0.4...

CVE-2021-36848 WordPress Social Media Feather plugin <= 2.0.4 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability

Authenticated admin+ Stored Cross-Site Scripting XSS vulnerability in Social Media Feather WordPress plugin versions = 2.0.4...

CVE-2021-36848

The CVE applies to WordPress plugin Social Media Feather ≤ v2.0.4, where an authenticated admin+ can trigger a stored XSS due to insufficient sanitization of settings. This could allow execution of JavaScript in a user’s browser. A fix is available in v2.0.5 and later; users should update to at l...