36 matches found
CVE-2026-3550 RockPress <= 1.0.17 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Modification via AJAX Actions
The RockPress plugin for WordPress is vulnerable to Missing Authorization in all versions up to, and including, 1.0.17. This is due to missing capability checks on multiple AJAX actions rockpressimport, rockpressimportstatus, rockpresslastimport, rockpressresetimport, and rockpresscheckservices...
EUVD-2021-21216
Malware in sbrugna...
EUVD-2019-14783
Malware in sbrugna...
EUVD-2021-21219
Malware in sbrugna...
EUVD-2021-21218
Malware in sbrugna...
CVE-2019-5180
An exploitable stack buffer overflow vulnerability vulnerability exists in the iocheckd service ‘I/O-Check’ functionality of WAGO PFC 200 Firmware version 03.02.0214. An attacker can send a specially crafted packet to trigger the parsing of this cache file. The destination buffer sp+0x440 is...
Wago I/O-Check Service Out-of-bounds Read (CVE-2021-34567)
In WAGO I/O-Check Service in multiple products an unauthenticated remote attacker can send a specially crafted packet containing OS commands to provoke a denial of service and an limited out-of-bounds read. This plugin only works with Tenable.ot. Please visit...
CVE-2021-34569
In WAGO I/O-Check Service in multiple products an attacker can send a specially crafted packet containing OS commands to crash the diagnostic tool and write memory...
CVE-2021-34568
In WAGO I/O-Check Service in multiple products an unauthenticated remote attacker can send a specially crafted packet containing OS commands to provoke a denial of service...
CVE-2021-34569
In WAGO I/O-Check Service in multiple products an attacker can send a specially crafted packet containing OS commands to crash the diagnostic tool and write memory...
CVE-2021-34567
In WAGO I/O-Check Service in multiple products an unauthenticated remote attacker can send a specially crafted packet containing OS commands to provoke a denial of service and an limited out-of-bounds read...
CVE-2021-34566
In WAGO I/O-Check Service in multiple products an unauthenticated remote attacker can send a specially crafted packet containing OS commands to crash the iocheck process and write memory resulting in loss of integrity and DoS...
Design/Logic Flaw
In WAGO I/O-Check Service in multiple products an attacker can send a specially crafted packet containing OS commands to crash the diagnostic tool and write memory...
Denial of service
In WAGO I/O-Check Service in multiple products an unauthenticated remote attacker can send a specially crafted packet containing OS commands to provoke a denial of service...
CVE-2021-34569 WAGO I/O-Check Service prone to Out-of-bounds Write
In WAGO I/O-Check Service in multiple products an attacker can send a specially crafted packet containing OS commands to crash the diagnostic tool and write memory...
CVE-2021-34569
CVE-2021-34569 affects WAGO PFC diagnostic tools (WAGO I/O-Check Service). The vulnerability is an out-of-bounds write in the diagnostic tool caused by processing a crafted network packet, enabling memory write and crash of the tool. Exploitation is network-based with no authentication or user in...
CVE-2021-34569 WAGO I/O-Check Service prone to Out-of-bounds Write
In WAGO I/O-Check Service in multiple products an attacker can send a specially crafted packet containing OS commands to crash the diagnostic tool and write memory...
CVE-2021-34568 WAGO I/O-Check Service prone to Allocation of Resources Without Limits or Throttling
In WAGO I/O-Check Service in multiple products an unauthenticated remote attacker can send a specially crafted packet containing OS commands to provoke a denial of service...
CVE-2021-34568
CVE-2021-34568 affects WAGO PFC iocheckd service “I/O-Check” in WAGO I/O-Check Service. An unauthenticated remote attacker can send a specially crafted packet containing OS commands to provoke a denial-of-service. Public references describe DoS potential; the CVSS v3.1 base score is 7.5 (HIGH) wi...
CVE-2021-34568 WAGO I/O-Check Service prone to Allocation of Resources Without Limits or Throttling
In WAGO I/O-Check Service in multiple products an unauthenticated remote attacker can send a specially crafted packet containing OS commands to provoke a denial of service...