EUVD-2024-35426

Malicious code in bioql PyPI...

EUVD-2024-30270

Malicious code in bioql PyPI...

CVE-2024-32452

Cross-Site Request Forgery CSRF vulnerability in WP EasyCart.This issue affects WP EasyCart: from n/a through 5.5.19...

CVE-2024-35667

Missing Authorization vulnerability in WP EasyCart.This issue affects WP EasyCart: from n/a through 5.5.19...

WordPress plugin WP EasyCart security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

CVE-2024-32452 WordPress Shopping Cart & eCommerce Store plugin <= 5.5.19 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in WP EasyCart.This issue affects WP EasyCart: from n/a through 5.5.19...

WordPress WP EasyCart Plugin <= 5.5.19 is vulnerable to Cross Site Request Forgery (CSRF)

Software WP EasyCart Type Plugin Vulnerable versions = 5.5.19 Fixed in 5.6.0 OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-32452 Patch priority Low CVSS severity Low 5.4 Developer Claim ownership PSID 56a419e0594b Credits Dhabaleshwar Das...

Internet Bug Bounty: Use after free with assign by ref to overloaded objects

Reported: 2015-07-15 16:30 UTC Fixed: 2015-07-21 14:20 UTC Bug Report: https://bugs.php.net/bug.php?id=70083 Fixed in PHP 5.6: http://git.php.net/?p=php-src.git;a=commitdiff;h=f57cb13c566613eec0e1c2f6d96d18565436a9b7 Fixed in 7:...

PHP 5.4.x < 5.4.35, 5.5.x < 5.5.19, 5.6.x < 5.6.3 DoS Vulnerability (Nov 2014)

PHP is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:php:php"; ifdescription...

Mandriva Update for mysql MDVSA-2012:178 (mysql)

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Oracle MySQL 5.5.19-log Denial Of Service

5.5.19-log on SuSE Linux DoS exploit: -------------------------------------------------------------------------------------------------------- use Net::MySQL; use Unicode::UTF8 qwdecodeutf8 encodeutf8; $|=1; my $mysql = Net::MySQL-new hostname = '192.168.2.3', Default use UNIX socket database =...

MySQL (Linux) - Stack Buffer Overrun (PoC)

MySQL Linux - Stack Buffer Overrun PoC !/usr/bin/perl =for comment MySQL Server exploitable stack based overrun Ver 5.5.19-log for Linux and below tested with Ver 5.1.53-log for suse-linux-gnu too unprivileged user any account anonymous account?, post auth as illustrated below the instruction...

MySQL - Denial of Service (PoC)

MySQL - Denial of Service PoC 5.5.19-log on SuSE Linux DoS exploit: -------------------------------------------------------------------------------------------------------- use Net::MySQL; use Unicode::UTF8 qwdecodeutf8 encodeutf8; $|=1; my $mysql = Net::MySQL-new hostname = '192.168.2.3', Defaul...

mysql: unspecified DoS vulnerability in MyISAM (Oracle CPU April 2012)

Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.60 and earlier, and 5.5.19 and earlier, allows remote authenticated users to affect availability, related to MyISAM...