Lucene search
K

5 matches found

OSV
OSV
added 2026/04/16 9:34 p.m.6 views

GHSA-2MVX-F5QM-V2CH Unauthenticated Information Disclosure (IDOR) via Multisite switch_to_blog in My Calendar

Summary An unauthenticated Insecure Direct Object Reference IDOR and Denial of Service DoS vulnerability in the My Calendar plugin allows any unauthenticated user to extract calendar events including private or hidden ones from any sub-site on a WordPress Multisite network. On standard Single Sit...

8.8CVSS5.8AI score0.00932EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2024/02/12 10:46 a.m.6 views

jenkins: Arbitrary file read vulnerability through the CLI can lead to RCE

A flaw was found in Jenkins, which uses the args4j library to parse command arguments and options on the Jenkins controller when processing CLI commands. This command parser has a feature that replaces the "@" character followed by a file path in an argument with the file’s contents expandAtFiles...

9.8CVSS7.2AI score0.99999EPSS
Exploits46References7
BDU FSTEC
BDU FSTEC
added 2024/01/30 12:0 a.m.10 views

The vulnerability of the args4j library in the Jenkins automation server’s command-line interface (CLI) allows a hacker to execute arbitrary code.

The vulnerability of the args4j library, a built-in command-line interface CLI for Jenkins automation servers, is related to insufficient protection of service data. Exploiting this vulnerability allows an attacker, operating remotely, to execute arbitrary code...

8.8CVSS8.1AI score0.99999EPSS
Exploits46References7Affected Software2
OSV
OSV
added 2023/05/12 12:0 a.m.10 views

CVE-2023-31918

Jerryscript 3.0 commit 1a2c047 was discovered to contain an Assertion Failure via the parserparsefunctionarguments at jerry-core/parser/js/js-parser.c...

5.5CVSS7.1AI score0.00332EPSS
Exploits1References3
Oracle linux
Oracle linux
added 2013/01/11 12:0 a.m.23 views

quota security and bug fix update

1:3.13-8.0.1 - Add ocfs2 support Orabug: 14208111 1:3.13-8 - Fix CVE-2012-3417 incorrect use of tcpwrappers Resolves: 841448 1:3.13-7 - Fix parsing numeric arguments of setquota Resolves: 831520 1:3.13-6 - Do not use real domains in warnquota example Resolves: 680429 - Use /proc/mounts for...

4CVSS6.5AI score0.03147EPSS
Exploits0
Rows per page
Query Builder