15 matches found
CVE-2023-25040
Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Vova Anokhin WordPress Shortcodes Plugin — Shortcodes Ultimate plugin = 5.12.6 versions...
EUVD-2023-27886
Malicious code in bioql PyPI...
CVE-2023-23800
Server-Side Request Forgery SSRF vulnerability in Vova Anokhin WP Shortcodes Plugin — Shortcodes Ultimate.This issue affects WP Shortcodes Plugin — Shortcodes Ultimate: from n/a through 5.12.6...
WordPress plugin Shortcodes Ultimate 路径遍历漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A path traversal...
CVE-2023-23800
Server-Side Request Forgery SSRF vulnerability in Vova Anokhin WP Shortcodes Plugin — Shortcodes Ultimate.This issue affects WP Shortcodes Plugin — Shortcodes Ultimate: from n/a through 5.12.6...
CVE-2023-23800
Server-Side Request Forgery SSRF vulnerability in Vova Anokhin WP Shortcodes Plugin — Shortcodes Ultimate.This issue affects WP Shortcodes Plugin — Shortcodes Ultimate: from n/a through 5.12.6...
Zoom Rooms 安全漏洞
Zoom Rooms is a software-based conferencing system from Zoom USA. A system that allows web conferencing on fixed endpoints, similar to traditional video conferencing systems. A security vulnerability exists in Zoom Rooms Installer for Windows versions prior to 5.12.6. An attacker can exploit the...
PT-2023-1100 · Zoom · Zoom Rooms Installer For Windows
Name of the Vulnerable Software and Affected Versions: Zoom Rooms Installer for Windows versions prior to 5.12.6 Description: The issue is related to a local privilege escalation vulnerability. A local low-privileged user could exploit this vulnerability during the install process to escalate the...
CVE-2022-28768
The Zoom Client for Meetings Installer for macOS Standard and for IT Admin before version 5.12.6 contains a local privilege escalation vulnerability. A local low-privileged user could exploit this vulnerability during the install process to escalate their privileges to root...
CVE-2022-36924
Vulnerability summary (CVE-2022-36924) : Zoom Rooms Installer for Windows prior to version 5.12.6 contains a local privilege escalation vulnerability. A local low-privileged user could exploit this during the installation process to elevate privileges to SYSTEM. The PT Security entry notes an und...
PT-2022-5832 · Zoom · Zoom Rooms Installer For Windows
Name of the Vulnerable Software and Affected Versions: Zoom Rooms Installer for Windows versions prior to 5.12.6 Description: The issue is related to a local privilege escalation. A local low-privileged user could exploit this during the install process to escalate their privileges to the SYSTEM...
PT-2022-5830 · Zoom · Zoom Rooms For Conference Room +2
Name of the Vulnerable Software and Affected Versions: Zoom Client for Meetings versions prior to 5.12.6 Zoom Rooms for Conference Room versions prior to 5.12.6 Description: The issue is related to incorrect code generation management in the Zoom service for video conferencing. Exploitation of th...
Information disclosure
The Zoom Client for Meetings for Android, iOS, Linux, macOS, and Windows before version 5.12.6 is susceptible to a local information exposure vulnerability. A failure to clear data from a local SQL database after a meeting ends and the usage of an insufficiently secure per-device key encrypting...
PT-2022-19218 · Zoom · Zoom Client For Meetings +1
Name of the Vulnerable Software and Affected Versions: Zoom Client for Meetings versions prior to 5.12.6 Description: The issue arises from a failure to clear data from a local SQL database after a meeting ends, combined with the use of an insufficiently secure per-device key to encrypt that...
Mirasys DVMS Workstation Gateway Path Traversal Vulnerability
Mirasys DVMS Worlstation is a surveillance video management system from the Finnish company Mirasys, of which Gateway is a gateway. A path traversal vulnerability exists in Mirasys DVMS Workstation 5.12.6 and earlier versions of Gateway. A remote attacker can use the Web Client webserver to...