CVE-2023-45059

Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Gumroad plugin = 3.1.0 versions...

CVE-2024-45059

i-Educar is free, fully online school management software that can be used by school secretaries, teachers, coordinators, and area managers. A SQL Injection vulnerability was found prior to the 2.9 branch in the ieducar/intranet/funcionariovinculodet.php file, which creates the query by...

Adobe InDesign 16.0.0 < 16.4.1 Multiple Vulnerabilities (APSB22-05)

The version of Adobe InDesign installed on the remote Windows host is prior to 16.4.1. It is, therefore, affected by multiple vulnerabilities as referenced in the APSB22-05 advisory. - Adobe InDesign version 16.4 and earlier is affected by an out-of-bounds write vulnerability that could result in...

Adobe InDesign 16.0.0 < 16.4.1 Multiple Vulnerabilities (APSB22-05) (macOS)

The version of Adobe InDesign installed on the remote macOS host is prior to 16.4.1. It is, therefore, affected by multiple vulnerabilities as referenced in the APSB22-05 advisory. - Adobe InDesign version 16.4 and earlier is affected by an out-of-bounds write vulnerability that could result in...

CVE-2024-45059

creationtimestamp| type| source ---|---|--- 2024-08-29 00:19:46+00:00| seen| https://t.me/cvedetector/4358...

CVE-2024-45059 Authenticated SQL Injection in i-Educar

i-Educar is free, fully online school management software that can be used by school secretaries, teachers, coordinators, and area managers. A SQL Injection vulnerability was found prior to the 2.9 branch in the ieducar/intranet/funcionariovinculodet.php file, which creates the query by...

OESA-2023-1915 varnish security update

This is Varnish Cache, a web application accelerator also known as a caching HTTP reverse proxy. You install it in front of any server that speaks HTTP and configure it to cache the contents. Varnish Cache is really, really fast. It typically speeds up delivery with a factor of 300 - 1000x,...

OESA-2023-1917 varnish security update

This is Varnish Cache, a web application accelerator also known as a caching HTTP reverse proxy. You install it in front of any server that speaks HTTP and configure it to cache the contents. Varnish Cache is really, really fast. It typically speeds up delivery with a factor of 300 - 1000x,...

CVE-2023-45059

creationtimestamp| type| source ---|---|--- 2023-10-18 12:46:50+00:00| seen| https://t.me/cibsecurity/72496...

CVE-2023-45059

Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Gumroad plugin = 3.1.0 versions...

CVE-2023-45059

CVE-2023-45059 affects the WordPress Gumroad plugin up to version 3.1.0, where an Authenticated (Contributor+) Stored Cross‑Site Scripting (XSS) vulnerability exists. The issue arises from insufficient input validation/escaping of parameters, enabling stored XSS when a user with the contributor r...

WordPress Gumroad Plugin <= 3.1.0 is vulnerable to Cross Site Scripting (XSS)

Software Gumroad Type Plugin Vulnerable versions = 3.1.0 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-45059 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID ff8b5689e312 Credits Mika Required privilege Contribut...

SUSE CVE-2022-45059

An issue was discovered in Varnish Cache 7.x before 7.1.2 and 7.2.x before 7.2.1. A request smuggling attack can be performed on Varnish Cache servers by requesting that certain headers are made hop-by-hop, preventing the Varnish Cache servers from forwarding critical headers to the backend...

Fedora 35 : varnish (2022-99c5ddb2ae)

The remote Fedora 35 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2022-99c5ddb2ae advisory. This is a security update adding fixes for the following issues VSV00009 aka CVE-2022-38150: Denial of service VSV00010 aka CVE-2022-45059: Request...

Fedora: Security Advisory for varnish (FEDORA-2022-99c5ddb2ae)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

CVE-2022-45059

An issue was discovered in Varnish Cache 7.x before 7.1.2 and 7.2.x before 7.2.1. A request smuggling attack can be performed on Varnish Cache servers by requesting that certain headers are made hop-by-hop, preventing the Varnish Cache servers from forwarding critical headers to the backend...

CVE-2022-45059

An issue was discovered in Varnish Cache 7.x before 7.1.2 and 7.2.x before 7.2.1. A request smuggling attack can be performed on Varnish Cache servers by requesting that certain headers are made hop-by-hop, preventing the Varnish Cache servers from forwarding critical headers to the backend...

CVE-2022-45059

CVE-2022-45059 (VSV00010) affects Varnish Cache 7.x before 7.1.2 and 7.2.x before 7.2.1. A request-smuggling vulnerability arises when certain headers are treated as hop-by-hop, preventing Varnish from forwarding critical headers (e.g., Content-Length, Host) to the backend. This can break HTTP/1 ...

CVE-2021-45059

Adobe InDesign 16.4 and earlier is affected by CVE-2021-45059, a use-after-free in JPEG2000 processing that could disclose memory and bypass ASLR. Exploitation requires user interaction (open a malicious file). Remediation: update to InDesign 16.4.1 or later as indicated by APSB22-05.