Lucene search
+L

107 matches found

OpenVAS
OpenVAS
added 2023/03/08 12:0 a.m.21 views

Debian: Security Advisory (DLA-0015-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.9CVSS7.3AI score0.05926EPSS
Exploits12References2
Vulnrichment
Vulnrichment
added 2023/02/13 2:32 p.m.8 views

CVE-2022-4656 WP Visitor Statistics (Real Time Traffic) < 6.5 - Contributor+ Stored XSS via Shortcode

The WP Visitor Statistics Real Time Traffic WordPress plugin before 6.5 does not validate and escape one of its shortcode attributes, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attack...

5.4AI score0.00477EPSS
Exploits2References1
CVE
CVE
added 2023/02/13 2:32 p.m.75 views

CVE-2022-4656

The CVE-2022-4656 vulnerability affects the WordPress plugin WP Visitor Statistics (Real Time Traffic) prior to version 6.5. It arises because a shortcode attribute is not properly validated/escaped, enabling Stored XSS when a user with as low as Contributor privileges views the shortcode output....

5.4CVSS5.4AI score0.00477EPSS
Exploits2References1Affected Software1
Patchstack
Patchstack
added 2023/01/17 12:0 a.m.12 views

WordPress WP Visitor Statistics (Real Time Traffic) Plugin < 6.5 is vulnerable to Cross Site Scripting (XSS)

Software WP Visitor Statistics Real Time Traffic Type Plugin Vulnerable versions 6.5 Fixed in 6.5 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2022-4656 Patch priority Medium CVSS severity Medium 6.5 Developer Claim ownership PSID e65b6ec1fb3c Credits...

5.4CVSS5.7AI score0.00477EPSS
Exploits2References4Affected Software1
OpenVAS
OpenVAS
added 2022/08/26 12:0 a.m.24 views

Ubuntu: Security Advisory (USN-4656-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.8AI score0.00393EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.20 views

SUSE: Security Advisory (SUSE-SU-2014:0912-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7.9AI score0.10385EPSS
Exploits33References2
IBM Security Bulletins
IBM Security Bulletins
added 2020/04/22 10:25 a.m.22 views

Security Bulletin: IBM MQ and IBM MQ Appliance is vulnerable to a denial of service attack caused by an authenticated user crafting a malicious message (CVE-2019-4656)

Summary IBM MQ and IBM MQ Appliance are vulnerable to a denial of service attack that would allow an authenticated user to craft a malicious message causing a queue manager to incorrectly mark a queue as damaged, requiring a restart to continue processing against the queue. Vulnerability Details...

6.5CVSS1.3AI score0.01624EPSS
Exploits0Affected Software2
Tenable Nessus
Tenable Nessus
added 2020/04/14 12:0 a.m.43 views

Debian DSA-4656-1 : thunderbird - security update

Multiple security issues have been found in Thunderbird which could result in denial of service or potentially the execution of arbitrary code. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security Advisory DSA-4656. The text...

9.8CVSS8.1AI score0.06305EPSS
Exploits1References9
CVE
CVE
added 2019/11/13 2:44 p.m.45 views

CVE-2013-4656

The CVE-2013-4656 entry describes a symlink traversal vulnerability in the SMB service caused by misconfiguration on affected devices. The affected products are ASUS RT-AC66U and RT-N56U ; the underlying issue is misconfigured SMB leading to a path traversal vulnerability. Reported impact is seve...

10CVSS9.2AI score0.02205EPSS
Exploits0References3Affected Software1
0day.today
0day.today
added 2018/06/04 12:0 a.m.75 views

WebKit not_number defineProperties Use-After-Free Exploit

Exploit for multiple platform in category dos / poc This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'WebKit notnumber defineProperties UAF', 'Description' = %q This module exploits a UAF...

9.3CVSS0.66788EPSS
Exploits13
CVE
CVE
added 2018/03/16 2:4 p.m.33 views

CVE-2017-4656

CVE-2017-4656 entry is rejected/not used per the Initial Description.

7.3AI score
Exploits0
Cvelist
Cvelist
added 2018/03/16 2:4 p.m.8 views

CVE-2017-4656

...

Exploits0
Check Point Advisories
Check Point Advisories
added 2017/03/23 12:0 a.m.4 views

DJ Studio Pro PLS File Stack Buffer Overflow (CVE-2009-4656)

A stack buffer overflow vulnerability exists in DJ Studio Pro. The vulnerability is due to insufficient bounds checking on a PLS file. A successful exploitation could lead to arbitrary code execution in the security context of the target user...

9.3CVSS3.1AI score0.31721EPSS
Exploits8
Tenable Nessus
Tenable Nessus
added 2016/09/02 12:0 a.m.43 views

Mac OS X Multiple Vulnerabilities (Security Updates 2016-001 / 2016-005)

The remote host is running a version of Mac OS X 10.10.5 or 10.11.6 that is missing a security update. It is therefore, affected by multiple vulnerabilities in the Kernel component : - An unspecified flaw exists due to improper validation of user-supplied input. An attacker can exploit this, by...

9.3CVSS7.5AI score0.33353EPSS
Exploits8References4
Apple
Apple
added 2016/09/01 12:0 a.m.46 views

About the security content of Security Update 2016-001 El Capitan and Security Update 2016-005 Yosemite

About the security content of Security Update 2016-001 El Capitan and Security Update 2016-005 Yosemite This document describes the security content of Security Update 2016-001 El Capitan and Security Update 2016-005 Yosemite. About Apple security updates For our customers' protection, Apple...

9.3CVSS0.4AI score0.33353EPSS
Exploits8References1Affected Software2
Tenable Nessus
Tenable Nessus
added 2016/08/26 12:0 a.m.62 views

Apple iOS < 9.3.5 Multiple Vulnerabilities (Trident)

Binary data appleios935check.nbin...

9.3CVSS7.3AI score0.66788EPSS
Exploits13References7
myhack58
myhack58
added 2016/08/26 12:0 a.m.15 views

iOS 9.3.5 emergency release behind the truth:NSO using the iPhone 0day without clicking on a remote compromised iPhone(8 on 2 6 May 1 3:4 1 Update-bug warning-the black bar safety net

! According to the Washington Post reported, many people think that their iPhone is absolutely safe, but the latest research shows that Apple's mobileoperating systemin iOS over the years always the presence of three previously unknown“zero-day exploit”, in fact Apple users are always in danger...

7.7AI score
Exploits0
CVE
CVE
added 2016/08/25 9:0 p.m.1047 views

CVE-2016-4656

CVE-2016-4656 is an Apple iOS kernel memory‑corruption vulnerability that can allow an attacker to execute arbitrary code with kernel privileges or cause a DoS via a crafted app. Affected are iOS versions prior to 9.3.5; Apple’s security content notes the kernel memory corruption issue was addres...

9.3CVSS7.4AI score0.23626EPSS
In wildExploits6References7Affected Software1
Circl
Circl
added 2016/08/25 8:59 p.m.10 views

CVE-2016-4656

creationtimestamp| type| source ---|---|--- 2016-08-25 20:59:54+00:00| seen| MISP/57bf5c07-6b40-428e-8f68-4a9a02de0b81 2016-08-26 09:58:41+00:00| seen| MISP/57c0123c-d100-43a8-b874-54a8bce2ab96 2018-06-04 23:30:25+00:00| seen|...

9.3CVSS7.4AI score0.23626EPSS
Exploits6References13
OpenVAS
OpenVAS
added 2015/10/06 12:0 a.m.43 views

Oracle: Security Advisory (ELSA-2011-0421)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.4AI score0.02523EPSS
Exploits5References2
Rows per page
Query Builder