91 matches found
MiracleLinux 7 : vim-7.4.629-8.0.1.el7.AXS7 (AXSA:2024-8627:01)
The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8627:01 advisory. CVE-2023-0054: check the return value of vimregsub CVE-2023-0049: avoid going over the NUL at the end CVE-2023-0288: prevent the cursor from moving ...
Linux Distros Unpatched Vulnerability : CVE-2020-26932
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - debian/sympa.postinst for the Debian Sympa package before 6.2.40dfsg-7 uses mode 4755 for sympanewaliases-wrapper, whereas the intended permissions are mode 475...
TencentOS Server 4: vim (TSSA-2024:1005)
The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:1005 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...
CVE-2022-4750
The WP Responsive Testimonials Slider And Widget WordPress plugin through 1.5 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored...
CVE-2005-4750
BEA WebLogic Server and WebLogic Express 8.1 SP4 and earlier, 7.0 SP5 and earlier, and 6.1 SP7 and earlier allow remote attackers to cause a denial of service server thread hang via unknown attack vectors...
CVE-2025-4750 D-Link DI-7003GV2 Configuration get_version.data information disclosure
A vulnerability, which was classified as problematic, has been found in D-Link DI-7003GV2 24.04.18D1 R68125. This issue affects some unknown processing of the file /H5/getversion.data of the component Configuration Handler. The manipulation leads to information disclosure. The attack may be...
CVE-2025-4750
CVE-2025-4750 affects the D-Link DI-7003GV2, version 24.04.18D1 R(68125). The vulnerability is in the file path /H5/get_version.data within the Configuration Handler, where manipulation leads to an information disclosure. Attacks may be launched remotely, and the exploit has been disclosed public...
CVE-2024-4750
creationtimestamp| type| source ---|---|--- 2025-03-27 21:27:45+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/9220...
Linux Distros Unpatched Vulnerability : CVE-2023-4750
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use After Free in GitHub repository vim/vim prior to 9.0.1857. CVE-2023-4750 Note that Nessus relies on the presence of the package as reported by the vendor...
Photon OS 4.0: Vim PHSA-2023-4.0-0467
An update of the vim package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2023-4.0-0467. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid20457...
CVE-2024-4750 BuddyBoss Platform < 2.6.0 - Insecure Direct Object Reference on Like Comment
The buddyboss-platform WordPress plugin before 2.6.0 contains an IDOR vulnerability that allows a user to like a private post by manipulating the ID included in the request...
CVE-2024-4750
The CVE-2024-4750 entry concerns the BuddyBoss Platform WordPress plugin prior to 2.6.0, where an Insecure Direct Object Reference (IDOR) allows a user to like a private post by manipulating the post ID in the request (id parameter). Multiple sources (Patchstack, PT-Security, WPVulndb, CVE record...
WordPress Buddyboss Platform Plugin < 2.6.0 is vulnerable to Insecure Direct Object References (IDOR)
Software Buddyboss Platform Type Plugin Vulnerable versions 2.6.0 Fixed in 2.6.0 OWASP Top 10 A1: Broken Access Control Classification Insecure Direct Object References IDOR CVE CVE-2024-4750 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID edae12ac139d Credits Faris Krivi...
SUSE: Security Advisory (SUSE-SU-2024:0871-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE Security Advisory (SUSE-SU-2024:1287-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLED15 / SLES15 / openSUSE 15 Security Update : vim (SUSE-SU-2024:1287-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:1287-1 advisory. Updated to version 9.1.0111, fixes the following security problems - CVE-2023-48231:...
CVE-2023-4750
A flaw was found in Vim, where it is vulnerable to a use-after-free in the btquickfix function. This flaw allows a specially crafted file to crash software, use unexpected values, or possibly execute code when opened in Vim...
openSUSE: Security Advisory for vim (SUSE-SU-2024:0871-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE-SU-2024:0871-1 Security update for vim
This update for vim fixes the following issues: - CVE-2023-48231: Fixed Use-After-Free in winclose bsc1217316. - CVE-2023-48232: Fixed Floating point Exception in adjustplinesforskipcol bsc1217320. - CVE-2023-48233: Fixed overflow with count for :s command bsc1217321. - CVE-2023-48234: Fixed...
SUSE SLES12 Security Update : vim (SUSE-SU-2024:0783-1)
The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:0783-1 advisory. - CVE-2023-48231: Fixed Use-After-Free in winclose bsc1217316. - CVE-2023-48232: Fixed Floating point Exception in...