CVE-2022-25269

Passwork On-Premise Edition before 4.6.13 has multiple XSS issues...

RHSA-2021:0172 Red Hat Security Advisory: OpenShift Container Platform 4.6.13 packages and security update

Bulletin has no description...

1,000,000 WordPress Sites Protected Against Unique Remote Code Execution Vulnerability in WPML WordPress Plugin

Did you know Wordfence runs a Bug Bounty Program for all WordPress plugin and themes at no cost to vendors? Through October 14th, researchers can earn up to $31,200, for all in-scope vulnerabilities submitted to our Bug Bounty Program! Find a vulnerability, submit the details directly to us, and ...

CVE-2024-4098

The Shariff Wrapper plugin for WordPress is vulnerable to Local File Inclusion in versions up to, and including, 4.6.13 via the shariff3uufetchsharecounts function. This allows unauthenticated attackers to include and execute arbitrary files on the server, allowing the execution of any PHP code i...

WordPress plugin Shariff Wrapper security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin... A security vulnerability...

WordPress Shariff Wrapper plugin <= 4.6.13 - Authenticated Stored Cross-Site Scripting via Shortcode vulnerability

Authenticated Stored Cross-Site Scripting via Shortcode vulnerability discovered by Ngô Thiên An ancorn in WordPress Plugin Shariff versions = 4.6.13...

PT-2024-5841

Name of the Vulnerable Software and Affected Versions WPML versions up to, and including, 4.6.12 Description The WPML plugin for WordPress is vulnerable to Remote Code Execution via the Twig Server-Side Template Injection. This is due to missing input validation and sanitization on the render...

Passwork On-Premise Edition Path Traversal Vulnerability

Passwork On-Premise Edition is a local password manager for your business from Passwork Finland.A path traversal vulnerability exists in versions prior to Passwork On-Premise Edition 4.6.13, no detailed vulnerability details are currently available...

CVE-2022-25269

Passwork On-Premise Edition before 4.6.13 has multiple XSS issues...

CVE-2022-25267

Passwork On-Premise Edition before 4.6.13 allows migration/uploadExportFile Directory Traversal to upload files...

CVE-2022-25269

Passwork On-Premise Edition before 4.6.13 has multiple XSS issues...

Directory traversal

Passwork On-Premise Edition before 4.6.13 allows migration/uploadExportFile Directory Traversal to upload files...

Cross site scripting

Passwork On-Premise Edition before 4.6.13 has multiple XSS issues...

CVE-2022-25269

Passwork On-Premise Edition before 4.6.13 has multiple XSS issues...

CVE-2022-25267

Passwork On-Premise Edition before 4.6.13 allows migration/uploadExportFile Directory Traversal to upload files...

CVE-2022-25267

Passwork On-Premise Edition before 4.6.13 is affected by a Directory Traversal in the migration/uploadExportFile functionality. The root cause is an inadequate restriction of the destination path, enabling an attacker to upload arbitrary files to the system. Impact is onboarding of arbitrary file...

Passwork On-Premise Edition 跨站请求伪造漏洞

Passwork On-Premise Edition is a local password manager for your business from Passwork Finland.A cross-site request forgery vulnerability exists in versions prior to Passwork On-Premise Edition 4.6.13, no detailed vulnerability details are currently available...

PT-2022-4188 · Unknown +1 · Passwork On-Premise Edition +1

Name of the Vulnerable Software and Affected Versions: Passwork On-Premise Edition versions prior to 4.6.13 Description: The issue is related to incorrect restriction of the path name to a directory with limited access. An attacker can exploit this by manipulating URL parameters to gain access to...

PT-2022-4186 · Passwork · Passwork On-Premise Edition +1

Name of the Vulnerable Software and Affected Versions: Passwork On-Premise Edition versions prior to 4.6.13 Description: The issue is related to a CSRF vulnerability in the password manager Passwork. This vulnerability can be exploited by a remote attacker to perform a CSRF attack via the groups,...

Passwork On-Premise Edition 跨站脚本漏洞

Passwork On-Premise Edition is a local password manager for your business from Passwork Finland. cross-site scripting vulnerability exists in versions prior to Passwork On-Premise Edition 4.6.13, no detailed vulnerability details are currently available...