CVE-2020-7655

netius prior to 1.17.58 is vulnerable to HTTP Request Smuggling. HTTP pipelining issues and request smuggling attacks might be possible due to incorrect Transfer encoding header parsing which could allow for CL:TE or TE:TE attacks...

WordPress Live Stream Badger plugin <= 1.4.3 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by muhammad yudha in WordPress Plugin Live Stream Badger versions = 1.4.3...

CVE-2024-7655

creationtimestamp| type| source ---|---|--- 2024-09-10 10:52:57+00:00| seen| https://t.me/cvedetector/5181...

CVE-2024-7655 Community by PeepSo – Social Network, Membership, Registration, User Profiles <= 6.4.5.0 - Authenticated (Administrator+) Stored Cross-Site Scripting

The Community by PeepSo – Social Network, Membership, Registration, User Profiles plugin for WordPress is vulnerable to Stored Cross-Site Scripting in all versions up to, and including, 6.4.5.0 due to insufficient input sanitization and output escaping. This makes it possible for authenticated...

Ubuntu 16.04 ESM / 18.04 ESM : Mosquitto vulnerability (USN-4823-1)

The remote Ubuntu 16.04 ESM / 18.04 ESM host has packages installed that are affected by a vulnerability as referenced in the USN-4823-1 advisory. It was discovered that Mosquitto incorrectly handled certain inputs. A remote attacker could possibly use this issue to cause a denial of service...

Juniper Junos OS Multiple Vulnerabilities (JSA71655)

The version of Junos OS installed on the remote host is affected by multiple vulnerabilities as referenced in the JSA71655 advisory. - The Eclipse Mosquitto broker up to version 1.4.15 does not reject strings that are not valid UTF-8. A malicious client could cause other clients that do reject...

CVE-2020-7655

netius prior to 1.17.58 is vulnerable to HTTP Request Smuggling. HTTP pipelining issues and request smuggling attacks might be possible due to incorrect Transfer encoding header parsing which could allow for CL:TE or TE:TE attacks...

CVE-2020-7655

netius prior to 1.17.58 is vulnerable to HTTP Request Smuggling. HTTP pipelining issues and request smuggling attacks might be possible due to incorrect Transfer encoding header parsing which could allow for CL:TE or TE:TE attacks...

CVE-2020-7655

Netted details show that netius before 1.17.58 is vulnerable to HTTP Request Smuggling due to incorrect Transfer-Encoding header parsing, enabling CL:TE or TE:TE-style attacks. Affected component is netius (Python library/server) prior to version 1.17.58. Remediation per the sources is to upgrade...

CVE-2019-7655

The CVE-2019-7655 entry affects Wowza Streaming Engine 4.8.0 and earlier, with multiple authenticated XSS vulnerabilities exposed via (1) customList[0].value in enginemanager/server/serversetup/edit_adv.htm and (2) the host field in enginemanager/j_spring_security_check of the login form. Affecte...

Debian: Security Advisory (DLA-1972-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] [DLA 1972-1] mosquitto security update

Package : mosquitto Version : 1.3.4-2+deb8u4 CVE ID : CVE-2017-7655 CVE-2018-12550 CVE-2018-12551 CVE-2019-11779 Several issues have been found in mosquitto, a MQTT version 3.1/3.1.1 compatible message broker. CVE-2017-7655 A Null dereference vulnerability in the Mosquitto library could lead to...

UBUNTU-CVE-2017-7655

In Eclipse Mosquitto version from 1.0 to 1.4.15, a Null Dereference vulnerability was found in the Mosquitto library which could lead to crashes for those applications using the library...

CVE-2017-7655

CVE-2017-7655 affects the Eclipse Mosquitto broker/library (versions 1.0–1.4.15). The root cause is a Null Dereference in the Mosquitto library, which could cause crashes for applications using the library and lead to a denial of service. Public advisories note remediation via upgrading Mosquitto...

CVE-2017-7655

In Eclipse Mosquitto version from 1.0 to 1.4.15, a Null Dereference vulnerability was found in the Mosquitto library which could lead to crashes for those applications using the library...

CVE-2016-7655

CVE-2016-7655 affects Apple’s CoreMedia External Displays in iOS 10.2 and macOS 10.12.2 (and earlier builds addressed by related security updates). The issue is described as a type confusion that could allow a local user to gain privileges or cause a denial of service via unspecified vectors. Con...

Adobe AIR < 19.0.0.241 Multiple Vulnerabilities (APSB15-28)

Binary data 9042.prm...

openSUSE Security Update : flash-player (openSUSE-2015-738)

The flash-player package was updated to fix the following security issues : - Security update to 11.2.202.548 bsc954512 : - APSB15-28, CVE-2015-7651, CVE-2015-7652, CVE-2015-7653, CVE-2015-7654, CVE-2015-7655, CVE-2015-7656, CVE-2015-7657, CVE-2015-7658, CVE-2015-7659, CVE-2015-7660, CVE-2015-766...

FreeBSD : flash -- multiple vulnerabilities (547fbd98-8b1f-11e5-b48b-bcaec565249c)

Adobe reports : These updates resolve a type confusion vulnerability that could lead to code execution CVE-2015-7659. These updates resolve a security bypass vulnerability that could be exploited to write arbitrary data to the file system under user permissions CVE-2015-7662. These updates resolv...

SUSE SLED11 Security Update : flash-player (SUSE-SU-2015:1960-1)

The flash-player package was updated to fix the following security issues : - Security update to 11.2.202.548 bsc954512 : - APSB15-28, CVE-2015-7651, CVE-2015-7652, CVE-2015-7653, CVE-2015-7654, CVE-2015-7655, CVE-2015-7656, CVE-2015-7657, CVE-2015-7658, CVE-2015-7659, CVE-2015-7660, CVE-2015-766...