CVE-2025-47588 WordPress Dynamic Pricing With Discount Rules for WooCommerce plugin <= 4.5.9 - Arbitrary Code Execution vulnerability

Improper Control of Generation of Code 'Code Injection' vulnerability in acowebs Dynamic Pricing With Discount Rules for WooCommerce aco-woo-dynamic-pricing allows Code Injection.This issue affects Dynamic Pricing With Discount Rules for WooCommerce: from n/a through = 4.5.9...

CVE-2024-47588

In SAP NetWeaver Java Software Update Manager 1.1, under certain conditions when a software upgrade encounters errors, credentials are written in plaintext to a log file. An attacker with local access to the server, authenticated as a non-administrative user, can acquire the credentials from the...

Linux Distros Unpatched Vulnerability : CVE-2021-47588

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: sit: do not call ipip6devfree from sitinitnet ipip6devfree is sit dev-privdestructor, alread...

CVE-2024-47588

creationtimestamp| type| source ---|---|--- 2024-11-12 00:31:28+00:00| seen| https://infosec.exchange/users/cve/statuses/113467161826048639 2024-11-12 02:58:59+00:00| seen| https://t.me/cvedetector/10562...

CVE-2024-47588

CVE-2024-47588 affects SAP NetWeaver Java (Software Update Manager 1.1). Under certain upgrade-error conditions, credentials are written in plaintext to a log file, enabling a local attacker (authenticated as a non-administrative user) to exfiltrate credentials from logs. The documented impact is...

CVE-2024-47588 Information Disclosure vulnerability in SAP NetWeaver Java (Software Update Manager)

In SAP NetWeaver Java Software Update Manager 1.1, under certain conditions when a software upgrade encounters errors, credentials are written in plaintext to a log file. An attacker with local access to the server, authenticated as a non-administrative user, can acquire the credentials from the...

CVE-2024-47588 Information Disclosure vulnerability in SAP NetWeaver Java (Software Update Manager)

In SAP NetWeaver Java Software Update Manager 1.1, under certain conditions when a software upgrade encounters errors, credentials are written in plaintext to a log file. An attacker with local access to the server, authenticated as a non-administrative user, can acquire the credentials from the...

SUSE-SU-2024:2939-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP5 kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2021-47086: phonet/pep: refuse to enable an unbound pipe bsc1220952. - CVE-2021-47089: kfence: fix memory leak when cat kfence objects bsc1220958. -...

CVE-2021-47588

In the Linux kernel, the following vulnerability has been resolved: sit: do not call ipip6devfree from sitinitnet ipip6devfree is sit dev-privdestructor, already called by registernetdevice if something goes wrong. Alternative would be to make ipip6devfree robust against multiple invocations, but...

CVE-2021-47588

In the Linux kernel, the following vulnerability has been resolved: sit: do not call ipip6devfree from sitinitnet ipip6devfree is sit dev-privdestructor, already called by registernetdevice if something goes wrong. Alternative would be to make ipip6devfree robust against multiple invocations, but...

CVE-2022-47588

creationtimestamp| type| source ---|---|--- 2023-11-03 15:23:40+00:00| seen| https://t.me/cibsecurity/73529...

CVE-2022-47588

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Tips and Tricks HQ, Peter Petreski Simple Photo Gallery simple-photo-gallery allows SQL Injection.This issue affects Simple Photo Gallery: from n/a through v1.8.1...

CVE-2022-47588

CVE-2022-47588 affects the WordPress Simple Photo Gallery plugin ≤ v1.8.1, with an SQL Injection due to improper neutralization of special elements in SQL commands. Affected component is the Simple Photo Gallery plugin for WordPress; the issue allows injection attacks, but the connected sources d...