55 matches found
CVE-2023-5656
CVE-5656 is a reservation duplicate of CVE-5533 for the WordPress AI ChatBot vulnerability. Connected sources describe unauthorized use of AJAX actions due to missing capability checks in the AI ChatBot plugin for WordPress (versions up to 4.8.9 and 4.9.2). The issue allows unauthenticated attack...
CVE-2023-5656
...
SUSE CVE-2012-5656
The rasterization process in Inkscape before 0.48.4 allows local users to read arbitrary files via an external entity in a SVG file, aka an XML external entity XXE injection attack...
PT-2022-5656 · Microsoft · Windows Win32 Kernel Subsystem +1
Name of the Vulnerable Software and Affected Versions: Windows Win32 Kernel Subsystem affected versions not specified Description: The issue is related to insufficient access control in the Windows Win32 Kernel Subsystem, allowing an attacker to elevate their privileges. This can impact the syste...
Ubuntu 16.04 ESM : JACK vulnerability (USN-5656-1)
The remote Ubuntu 16.04 ESM host has packages installed that are affected by a vulnerability as referenced in the USN-5656-1 advisory. Joseph Yasi discovered that JACK incorrectly handled the closing of a socket in certain conditions. An attacker could potentially use this issue to cause a crash...
Ubuntu: Security Advisory (USN-5656-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
com.domeke:basecore (>=1.0.0 <=1.0.4), com.eurodyn.qlack2.fuse:qlack2-fuse-workflow-runtime-impl (>=2.3.3 <=2.3.19) +408 more potentially affected by CVE-2017-5656 via org.apache.cxf:cxf-core (>=3.1.0 <=3.1.10)
org.apache.cxf:cxf-core MAVEN version =3.1.0, =1.0.0, =2.3.3, =1.0, =0.2, =0.2, =1.1.4-rc1, =1.0.1, =1.1.0.0, =1.1.0.0, =1.5.8.0 - com.reallifedeveloper:rld-common =1.3 - com.wichell:framework-config =1.0.0 - com.wichell:framework-core =1.0.0 - com.wichell:framework-dao =1.0.0 and more Source cve...
Mitsubishi Electric MELSEC iQ-R Improper Access Control (CVE-2020-5656)
Improper access control vulnerability in TCP/IP function included in the firmware of MELSEC iQ-R series RJ71EIP91 EtherNet/IP Network Interface Module First 2 digits of serial number are '02' or before, RJ71PN92 PROFINET IO Controller Module First 2 digits of serial number are '01' or before,...
RHEL 7 : kernel (RHSA-2020:5656)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:5656 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: out of bounds write in functio...
CVE-2020-5656
CVE-2020-5656 affects Mitsubishi Electric MELSEC iQ-R Series firmware: EtherNet/IP/PROFINET interface modules RJ71EIP91, RJ71PN92, and data/OPC modules RD81DL96, RD81MES96N, RD81OPC96. Root cause: improper access control in the TCP/IP function, enabling a remote unauthenticated attacker to stop n...
CVE-2020-5656
Improper access control vulnerability in TCP/IP function included in the firmware of MELSEC iQ-R series RJ71EIP91 EtherNet/IP Network Interface Module First 2 digits of serial number are '02' or before, RJ71PN92 PROFINET IO Controller Module First 2 digits of serial number are '01' or before,...
CVE-2019-5656
CVE-2019-5656 is rejected/not used; the CNA withdrew it as not a security issue.
CVE-2019-5656
...
Moderate: Red Hat Security Advisory: Red Hat OpenShift Application Runtimes security and bug fix update
An update is now available for Red Hat OpenShift Application Runtimes. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...
CVE-2018-5656
CVE-2018-5656 concerns the WordPress plugin weblizar-pinterest-feeds (version 1.1.1). The connected documents specify a Cross-Site Request Forgery (CSRF) vulnerability via wp-admin/admin-ajax.php, affecting this plugin. The CVE entry identifies the issue and its risk metrics (NVD lists CVSS v3 ba...
CVE-2015-5656
CVE-2015-5656 is rejected/not used; this CVE entry does not represent an active vulnerability.
CVE-2015-5656
...
CVE-2017-5656
CVE-2017-5656 : Apache CXF’s STSClient (before 3.1.11 and 3.0.13) caches delegation-related tokens in a flawed way, enabling an attacker to craft a token that resolves to a cached token identifier belonging to another user. This can bypass security restrictions. The provided documents confirm the...
CVE-2017-5656
Apache CXF's STSClient before 3.1.11 and 3.0.13 uses a flawed way of caching tokens that are associated with delegation tokens, which means that an attacker could craft a token which would return an identifer corresponding to a cached token for another user...
FTPShell Client 5.24 - PWD Remote Buffer Overflow
FTPShell Client 5.24 - PWD Remote Buffer Overflow -- coding: utf-8 -- Exploit Title: FTPShell Client v5.24 PWD Remote Buffer Overflow Date: 16/11/2016 Author: Yunus YILDIRIM Th3GundY Team: CT-Zer0 @CRYPTTECH - http://www.ct-zer0.com Author Website: http://yildirimyunus.com Contact:...