Lucene search
+L

92 matches found

CVE
CVE
added 2023/01/02 9:49 p.m.66 views

CVE-2022-4359

The CVE-2022-4359 entry concerns the WP RSS By Publishers WordPress plugin (version 0.1 and earlier). A SQL injection exists because a parameter is not properly sanitized/escaped before use in a SQL statement, enabling an attacker with high privileges (e.g., admin) to exploit it. Evidence across ...

7.2CVSS7.2AI score0.00983EPSS
Exploits2References2Affected Software1
Cvelist
Cvelist
added 2023/01/02 9:49 p.m.28 views

CVE-2022-4359 WP RSS By Publishers <= 0.1 - Admin+ SQLi

The WP RSS By Publishers WordPress plugin through 0.1 does not properly sanitize and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by high privilege users such as admin...

7.4AI score0.00983EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.21 views

Mageia: Security Advisory (MGASA-2013-0295)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS6.7AI score0.02985EPSS
Exploits2References4
OpenVAS
OpenVAS
added 2020/05/14 12:0 a.m.31 views

Ubuntu: Security Advisory (USN-4359-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS5.5AI score0.01305EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2020/05/14 12:0 a.m.34 views

Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS : APT vulnerability (USN-4359-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-4359-1 advisory. It was discovered that APT incorrectly handled certain filenames during package installation. If an attacker could provide a specially...

5.5CVSS6.3AI score0.01305EPSS
Exploits1References2
NVD
NVD
added 2019/04/03 6:29 p.m.18 views

CVE-2018-4359

Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12, tvOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7...

8.8CVSS8.6AI score0.02168EPSS
Exploits0References6
CVE
CVE
added 2019/04/03 5:43 p.m.162 views

CVE-2018-4359

CVE-2018-4359 affects WebKit components used by Safari on iOS/macOS (and related iOS 12/Safari 12). The issue was described as multiple memory corruption issues that were addressed with improved memory handling, with affected versions prior to iOS 12, tvOS 12, watchOS 5, Safari 12, iTunes 12.9 fo...

8.8CVSS8.2AI score0.02168EPSS
Exploits0References6Affected Software4
Tenable Nessus
Tenable Nessus
added 2019/01/22 12:0 a.m.44 views

openSUSE Security Update : webkit2gtk3 (openSUSE-2019-68)

This update for webkit2gtk3 to version 2.22.4 fixes the following issues : Security issues fixed : CVE-2018-4191, CVE-2018-4197, CVE-2018-4299, CVE-2018-4306, CVE-2018-4309, CVE-2018-4392, CVE-2018-4312, CVE-2018-4314, CVE-2018-4315, CVE-2018-4316, CVE-2018-4317, CVE-2018-4318, CVE-2018-4319,...

8.8CVSS6.6AI score0.34173EPSS
Exploits28References47
Tenable Nessus
Tenable Nessus
added 2019/01/11 12:0 a.m.52 views

SUSE SLED12 / SLES12 Security Update : webkit2gtk3 (SUSE-SU-2019:0059-1)

This update for webkit2gtk3 to version 2.22.4 fixes the following issues : Security issues fixed : CVE-2018-4191, CVE-2018-4197, CVE-2018-4299, CVE-2018-4306, CVE-2018-4309, CVE-2018-4392, CVE-2018-4312, CVE-2018-4314, CVE-2018-4315, CVE-2018-4316, CVE-2018-4317, CVE-2018-4318, CVE-2018-4319,...

8.8CVSS6.6AI score0.34173EPSS
Exploits28References93
Tenable Nessus
Tenable Nessus
added 2018/12/03 12:0 a.m.50 views

GLSA-201812-04 : WebkitGTK+: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-201812-04 WebkitGTK+: Multiple vulnerabilities Multiple vulnerabilities have been discovered in WebKitGTK+. Please review the referenced CVE identifiers for details. Impact : A remote attacker could execute arbitrary commands or...

8.8CVSS7.6AI score0.10593EPSS
Exploits18References25
OSV
OSV
added 2018/09/28 12:0 a.m.1 views

UBUNTU-CVE-2018-4359

Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12, tvOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7...

8.8CVSS7.3AI score0.02168EPSS
Exploits0References5
EUVD
EUVD
added 2018/08/15 5:0 p.m.5 views

EUVD-2022-4359

A remote code execution vulnerability exists in the way that the ChakraCore scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2018-8353, CVE-2018-8355, CVE-2018-8359,...

7.6CVSS7.9AI score0.68242EPSS
Exploits10References6
Cvelist
Cvelist
added 2018/03/16 2:4 p.m.11 views

CVE-2017-4359

...

Exploits0
CVE
CVE
added 2018/03/16 2:4 p.m.27 views

CVE-2017-4359

CVE-2017-4359 is rejected/not used per the Initial Description.

7.3AI score
Exploits0
CVE
CVE
added 2017/05/11 2:1 p.m.25 views

CVE-2014-4359

CVE-2014-4359 is rejected/not used; this entry does not represent an active vulnerability.

6.9AI score
Exploits0
NVD
NVD
added 2016/06/08 2:59 p.m.19 views

CVE-2016-4359

Stack-based buffer overflow in mchan.dll in the agent in HPE LoadRunner 11.52 through patch 3, 12.00 through patch 1, 12.01 through patch 3, 12.02 through patch 2, and 12.50 through patch 3 and Performance Center 11.52 through patch 3, 12.00 through patch 1, 12.01 through patch 3, 12.20 through...

9.8CVSS9.9AI score0.1577EPSS
Exploits0References5
CVE
CVE
added 2016/06/08 2:0 p.m.63 views

CVE-2016-4359

CVE-2016-4359 involves a stack-based buffer overflow in mchan.dll of HPE LoadRunner/Performance Center. The flaw occurs when constructing a shared memory/file name or processing a long -server_name value, allowing an unauthenticated attacker to remotely execute arbitrary code. Affected products i...

9.8CVSS9.8AI score0.1577EPSS
Exploits0References5Affected Software1
CVE
CVE
added 2015/06/15 2:0 p.m.42 views

CVE-2015-4359

The vulnerability CVE-2015-4359 affects the Drupal Registration codes module. Affected are 6.x-1.x prior to 6.x-1.6, 6.x-2.x prior to 6.x-2.8, and 7.x-1.x prior to 7.x-1.2. The issue is cross-site scripting (XSS) where remote authenticated users with permission to create or edit taxonomy terms or...

3.5CVSS5.5AI score0.01067EPSS
Exploits0References6Affected Software1
ALT Linux
ALT Linux
added 2015/05/20 12:0 a.m.68 views

Security fix for the ALT Linux 8 package proftpd version 1.3.5-alt1.gita31d0ab

May 20, 2015 Konstantin Lepikhov 1.3.5-alt1.gita31d0ab - Updated to 1.3.5-a31d0ab GIT fixing following CVEs: + CVE-2013-4359. - Include the fix for Bug 4169 Unauthenticated copying of files via SITE CPFR/CPTO allowed by modcopy. - Configuration changes: + enabled pcre support; + enabled memcache...

5CVSS6.2AI score0.02985EPSS
Exploits2
Drupal
Drupal
added 2015/03/04 12:0 a.m.15 views

SA-CONTRIB-2015-065 - Registration codes - Multiple vulnerabilities

Registration codes module allows new account registrations only for users who provide a valid registration code. The module was not properly sanitizing user supplied text in some pages, thereby exposing XSS vulnerabilities. Additionally, some URLs were not protected against CSRF, a malicious user...

6.8CVSS5.7AI score0.01067EPSS
Exploits0References9
Rows per page
Query Builder