Lucene search
+L

55 matches found

CVE
CVE
added 2023/10/20 7:29 a.m.63 views

CVE-2023-5656

CVE-5656 is a reservation duplicate of CVE-5533 for the WordPress AI ChatBot vulnerability. Connected sources describe unauthorized use of AJAX actions due to missing capability checks in the AI ChatBot plugin for WordPress (versions up to 4.8.9 and 4.9.2). The issue allows unauthenticated attack...

9.4AI score
Exploits0
Cvelist
Cvelist
added 2023/10/20 7:29 a.m.24 views

CVE-2023-5656

...

Exploits0
SUSE CVE
SUSE CVE
added 2023/02/15 5:43 a.m.5 views

SUSE CVE-2012-5656

The rasterization process in Inkscape before 0.48.4 allows local users to read arbitrary files via an external entity in a SVG file, aka an XML external entity XXE injection attack...

5.5CVSS7AI score0.01155EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2022/11/08 12:0 a.m.5 views

PT-2022-5656 · Microsoft · Windows Win32 Kernel Subsystem +1

Name of the Vulnerable Software and Affected Versions: Windows Win32 Kernel Subsystem affected versions not specified Description: The issue is related to insufficient access control in the Windows Win32 Kernel Subsystem, allowing an attacker to elevate their privileges. This can impact the syste...

7.8CVSS9.1AI score0.08716EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2022/10/05 12:0 a.m.52 views

Ubuntu 16.04 ESM : JACK vulnerability (USN-5656-1)

The remote Ubuntu 16.04 ESM host has packages installed that are affected by a vulnerability as referenced in the USN-5656-1 advisory. Joseph Yasi discovered that JACK incorrectly handled the closing of a socket in certain conditions. An attacker could potentially use this issue to cause a crash...

8.1CVSS7.7AI score0.017EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2022/10/05 12:0 a.m.11 views

Ubuntu: Security Advisory (USN-5656-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS8.2AI score0.017EPSS
Exploits1References2
vulnersOsv
vulnersOsv
added 2022/05/13 1:9 a.m.7 views

com.domeke:basecore (>=1.0.0 <=1.0.4), com.eurodyn.qlack2.fuse:qlack2-fuse-workflow-runtime-impl (>=2.3.3 <=2.3.19) +408 more potentially affected by CVE-2017-5656 via org.apache.cxf:cxf-core (>=3.1.0 <=3.1.10)

org.apache.cxf:cxf-core MAVEN version =3.1.0, =1.0.0, =2.3.3, =1.0, =0.2, =0.2, =1.1.4-rc1, =1.0.1, =1.1.0.0, =1.1.0.0, =1.5.8.0 - com.reallifedeveloper:rld-common =1.3 - com.wichell:framework-config =1.0.0 - com.wichell:framework-core =1.0.0 - com.wichell:framework-dao =1.0.0 and more Source cve...

7.5CVSS7.1AI score0.06827EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2022/02/07 12:0 a.m.20 views

Mitsubishi Electric MELSEC iQ-R Improper Access Control (CVE-2020-5656)

Improper access control vulnerability in TCP/IP function included in the firmware of MELSEC iQ-R series RJ71EIP91 EtherNet/IP Network Interface Module First 2 digits of serial number are '02' or before, RJ71PN92 PROFINET IO Controller Module First 2 digits of serial number are '01' or before,...

9.8CVSS8.5AI score0.02933EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2020/12/22 12:0 a.m.94 views

RHEL 7 : kernel (RHSA-2020:5656)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:5656 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: out of bounds write in functio...

9.3CVSS6.5AI score0.05111EPSS
Exploits1References17
CVE
CVE
added 2020/10/30 3:35 a.m.58 views

CVE-2020-5656

CVE-2020-5656 affects Mitsubishi Electric MELSEC iQ-R Series firmware: EtherNet/IP/PROFINET interface modules RJ71EIP91, RJ71PN92, and data/OPC modules RD81DL96, RD81MES96N, RD81OPC96. Root cause: improper access control in the TCP/IP function, enabling a remote unauthenticated attacker to stop n...

9.8CVSS9.3AI score0.02933EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2020/10/30 3:35 a.m.25 views

CVE-2020-5656

Improper access control vulnerability in TCP/IP function included in the firmware of MELSEC iQ-R series RJ71EIP91 EtherNet/IP Network Interface Module First 2 digits of serial number are '02' or before, RJ71PN92 PROFINET IO Controller Module First 2 digits of serial number are '01' or before,...

9.5AI score0.02933EPSS
Exploits0References3
CVE
CVE
added 2020/02/07 3:40 p.m.31 views

CVE-2019-5656

CVE-2019-5656 is rejected/not used; the CNA withdrew it as not a security issue.

7.4AI score
Exploits0
Cvelist
Cvelist
added 2020/02/07 3:40 p.m.12 views

CVE-2019-5656

...

Exploits0
RedHat Linux
RedHat Linux
added 2018/05/22 4:52 p.m.30 views

Moderate: Red Hat Security Advisory: Red Hat OpenShift Application Runtimes security and bug fix update

An update is now available for Red Hat OpenShift Application Runtimes. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

7.5CVSS7.1AI score0.06827EPSS
Exploits0References4
CVE
CVE
added 2018/01/13 12:0 a.m.38 views

CVE-2018-5656

CVE-2018-5656 concerns the WordPress plugin weblizar-pinterest-feeds (version 1.1.1). The connected documents specify a Cross-Site Request Forgery (CSRF) vulnerability via wp-admin/admin-ajax.php, affecting this plugin. The CVE entry identifies the issue and its risk metrics (NVD lists CVSS v3 ba...

8.8CVSS8.6AI score0.00604EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2017/05/11 2:1 p.m.24 views

CVE-2015-5656

CVE-2015-5656 is rejected/not used; this CVE entry does not represent an active vulnerability.

6.6AI score
Exploits0
Cvelist
Cvelist
added 2017/05/11 2:1 p.m.9 views

CVE-2015-5656

...

Exploits0
CVE
CVE
added 2017/04/18 4:0 p.m.103 views

CVE-2017-5656

CVE-2017-5656 : Apache CXF’s STSClient (before 3.1.11 and 3.0.13) caches delegation-related tokens in a flawed way, enabling an attacker to craft a token that resolves to a cached token identifier belonging to another user. This can bypass security restrictions. The provided documents confirm the...

7.5CVSS7.3AI score0.06827EPSS
Exploits0References11Affected Software1
Cvelist
Cvelist
added 2017/04/18 4:0 p.m.34 views

CVE-2017-5656

Apache CXF's STSClient before 3.1.11 and 3.0.13 uses a flawed way of caching tokens that are associated with delegation tokens, which means that an attacker could craft a token which would return an identifer corresponding to a cached token for another user...

7.4AI score0.06827EPSS
Exploits0References11
exploitpack
exploitpack
added 2016/11/18 12:0 a.m.14 views

FTPShell Client 5.24 - PWD Remote Buffer Overflow

FTPShell Client 5.24 - PWD Remote Buffer Overflow -- coding: utf-8 -- Exploit Title: FTPShell Client v5.24 PWD Remote Buffer Overflow Date: 16/11/2016 Author: Yunus YILDIRIM Th3GundY Team: CT-Zer0 @CRYPTTECH - http://www.ct-zer0.com Author Website: http://yildirimyunus.com Contact:...

0.2AI score
Exploits0
Rows per page
Query Builder