Lucene search
K

7 matches found

Positive Technologies
Positive Technologies
added 2024/05/15 12:0 a.m.2 views

PT-2024-40392 · Laravel · Laravel

Name of the Vulnerable Software and Affected Versions: Laravel versions prior to 4.1.26 Description: The issue concerns the security of "remember me" cookies. If a remember cookie was hijacked by another malicious user, the cookie would remain valid for a long period of time, even after the true...

7.5AI score
Exploits0References4
Positive Technologies
Positive Technologies
added 2024/05/15 12:0 a.m.3 views

PT-2024-40420 · Laravel · Laravel

Name of the Vulnerable Software and Affected Versions: Laravel versions prior to 4.1.26 Description: The issue concerns the security of "remember me" cookies. If a remember cookie was hijacked by another malicious user, the cookie would remain valid for a long period of time, even after the true...

7.5AI score
Exploits0References4
OSV
OSV
added 2024/03/03 8:15 a.m.9 views

CVE-2024-25844

An issue was discovered in Common-Services "So Flexibilite" soflexibilite module for PrestaShop before version 4.1.26, allows remote attackers to escalate privileges and obtain sensitive information via debug file...

7.5CVSS5.8AI score0.0055EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/03/03 12:0 a.m.6 views

PrestaShop Security Breach

PrestaShop is an open source e-commerce solution from PrestaShop, Inc. in the United States. The solution offers multiple payment methods, short message alerts, and product image scaling. A security vulnerability previously existed in PrestaShop So Flexibilite version 4.1.26, which stemmed from a...

7.5CVSS6.8AI score0.0055EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/02/27 12:0 a.m.7 views

PT-2024-21153 · Unknown +1 · Prestashop +1

Name of the Vulnerable Software and Affected Versions: PrestaShop versions prior to 4.1.26 Description: The issue allows a guest or authenticated customer to perform Cross Site Scripting XSS injection in the "So Flexibilite" module from Common-Services. Recommendations: For PrestaShop versions...

5.9CVSS5.9AI score0.00385EPSS
Exploits1References5
OpenVAS
OpenVAS
added 2019/03/15 12:0 a.m.187 views

WordPress Multiple Vulnerabilities (Mar 2019) - Windows

WordPress is prone to a cross-site request forgery CSRF vulnerability in a comment form which leads to HTML injection and cross-site scripting XSS attacks. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...

8.8CVSS8.2AI score0.4375EPSS
Exploits4References4
OPENSUSE Linux
OPENSUSE Linux
added 2016/06/21 2:8 p.m.67 views

Security update for the Linux Kernel (important)

The openSUSE Leap 42.1 kernel was updated to 4.1.26 to receive various security and bugfixes. The following security bugs were fixed: - CVE-2016-1583: Prevent the usage of mmap when the lower file system does not allow it. This could have lead to local privilege escalation when ecryptfs-utils was...

10CVSS1.7AI score0.2593EPSS
Exploits30References36
Rows per page
Query Builder