Lucene search
K

74 matches found

Symantec
Symantec
added 2020/01/14 12:0 a.m.55 views

Oracle MySQL Server cpujan2020 Multiple Security Vulnerabilities

Description Oracle MySQL Server is prone to multiple security vulnerabilities. These vulnerabilities can be exploited over 'MySQL Protocol' protocol. The 'InnoDB', 'Server: Optimizer', 'Server: Options', and 'Server: Audit Plugin' components are affected. These vulnerabilities affect the followin...

1.2AI score
Exploits0References1Affected Software1
CNVD
CNVD
added 2019/08/23 12:0 a.m.2 views

WordPress content-audit plugin cross-site scripting vulnerability

WordPress is a set of blogging platforms developed using the PHP language by the WordPress Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. A cross-site scripting vulnerability exists in the WordPress content-audit plugin. An attacker can exploit thi...

6.1CVSS6.3AI score0.00905EPSS
Exploits0References1
Cvelist
Cvelist
added 2019/08/21 12:55 p.m.19 views

CVE-2017-18560

The content-audit plugin before 1.9.2 for WordPress has XSS...

6.4AI score0.00905EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2019/04/30 12:0 a.m.5 views

Vulnerability of the Server component: The Audit Plug-in of the MySQL database management system, which allows a hacker to cause a service failure.

The vulnerability of the Server component: The Audit Plug-in of the MySQL database management system is related to access control deficiencies. Exploiting this vulnerability could allow a malicious actor to cause service interruptions using the MySQL protocol...

4.9CVSS6.5AI score0.0266EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2019/04/04 4:29 p.m.14 views

CVE-2019-1003075

Jenkins Audit to Database Plugin stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system...

8.8CVSS8.7AI score0.01365EPSS
Exploits0References3
Prion
Prion
added 2019/04/04 4:29 p.m.20 views

Design/Logic Flaw

Jenkins Audit to Database Plugin stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system...

4CVSS8.6AI score0.01365EPSS
Exploits0References3
CNVD
CNVD
added 2017/09/28 12:0 a.m.3 views

Cross-Site Scripting Vulnerability in WordPress Content Audit Plugin

WordPress is a use of PHP language development blog platform, users can support PHP and MySQL database server set up their own weblog. A cross-site scripting vulnerability exists in the WordPress Content Audit version 1.9.1 plugin, which allows unauthenticated remote attackers to execute arbitrar...

6.7AI score
Exploits0References1
OSV
OSV
added 2017/04/24 12:0 a.m.3 views

UBUNTU-CVE-2017-3460

Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Server: Audit Plug-in. Supported versions that are affected are 5.7.17 and earlier. Easily "exploitable" vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server...

4.9CVSS6.6AI score0.02194EPSS
Exploits0References4
OSV
OSV
added 2016/10/06 10:59 a.m.4 views

CVE-2016-6653

The MariaDB auditplugin component in Pivotal Cloud Foundry PCF cf-mysql-release 27 and 28 allows remote attackers to obtain sensitive information by reading syslog messages, as demonstrated by cleartext credentials...

7.5CVSS5.8AI score0.01363EPSS
Exploits0References2
Cvelist
Cvelist
added 2016/10/06 10:0 a.m.19 views

CVE-2016-6653

The MariaDB auditplugin component in Pivotal Cloud Foundry PCF cf-mysql-release 27 and 28 allows remote attackers to obtain sensitive information by reading syslog messages, as demonstrated by cleartext credentials...

7.3AI score0.01363EPSS
Exploits0References2
Prion
Prion
added 2014/10/06 2:55 p.m.18 views

Sql injection

SQL injection vulnerability in content-audit-schedule.php in the Content Audit plugin before 1.6.1 for WordPress allows remote attackers to execute arbitrary SQL commands via the "Audited content types" option in the content-audit page to wp-admin/options-general.php...

7.5CVSS9.2AI score0.02334EPSS
Exploits3References5Affected Software1
w3af
w3af
added 2013/06/10 11:2 p.m.36 views

xss

This plugin finds Cross Site Scripting XSS vulnerabilities. One configurable parameters exists: persistentxss To find XSS bugs the plugin will send a set of javascript strings to every parameter, and search for that input in the response. The "persistentxss" parameter makes the plugin store all...

5.7AI score
Exploits0
w3af
w3af
added 2013/06/10 11:2 p.m.16 views

response_splitting

This plugin will find response splitting vulnerabilities. The detection is done by sending "w3af\r\nVulnerable: Yes" to every injection point, and reading the response headers searching for a header with name "Vulnerable" and value "Yes". Plugin type Audit Options This plugin doesnt have any user...

0.1AI score
Exploits0
w3af
w3af
added 2013/06/10 11:2 p.m.15 views

os_commanding

This plugin will find OS commanding vulnerabilities. The detection is performed using two different techniques: Time delays Writing a known file to the HTML output With time delays, the plugin sends specially crafted requests that, if the vulnerability is present, will delay the response for 5...

Exploits0
Rows per page
Query Builder