Floating Button Menu - Critical - Unsupported - SA-CONTRIB-2019-091

The security team is marking this project unsupported. There is a known security issue with the project that has not been fixed by the maintainer. If you would like to maintain this project, please read: https://www.drupal.org/node/251466procedure---own-project---unsupported...

Auto Re - IDA PRO Auto-Renaming Plugin With Tagging Support

IDA PRO Auto-Renaming Plugin With Tagging Support Features 1. Auto-renaming dummy-named functions, which have one API call or jump to the imported API Before After 2. Assigning TAGS to functions accordingly to called API-indicators inside Sets tags as repeatable function comments and displays TAG...

WordPress responsive-men plugin cross-site request forgery vulnerability

WordPress is the WordPress Foundation's set of blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. responsive-menu is a responsive menu plugin used in it. Cross-site request forgery vulnerability exists in WordPress responsive-me...

The vulnerability of the fly-start-panel component in the FLY operating system environment of the Astra Linux system allows a intruder to gain unauthorized access to protected information.

The vulnerability of the fly-start-panel component in the FLY operating system environment of the Astra Linux system is related to the ability to switch to a higher level in the file system through the “Start Menu” and file manager programs. Exploiting this vulnerability can allow an intruder to...

July 26, 2019—KB4505903 (OS Build 18362.267)

July 26, 2019—KB4505903 OS Build 18362.267 Note Follow @WindowsUpdate to find out when new content is published to the release information dashboard. For more information about the various types of Windows updates, such as critical, security, driver, service packs, etc., please see the following...

CVE-2019-16524

The easy-fancybox plugin before 1.8.18 for WordPress aka Easy FancyBox is susceptible to Stored XSS in the Settings Menu inc/class-easyfancybox.php due to improper encoding of arbitrarily submitted settings parameters. This occurs because there is no inline styles output filter...

Cross site scripting

The easy-fancybox plugin before 1.8.18 for WordPress aka Easy FancyBox is susceptible to Stored XSS in the Settings Menu inc/class-easyfancybox.php due to improper encoding of arbitrarily submitted settings parameters. This occurs because there is no inline styles output filter...

WordPress Duplicate-Post 3.2.3 - Persistent Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: Duplicate-Post 3.2.3 - Persistent Cross-Site Scripting Exploit Author: Unk9vvN Vendor Homepage: https://duplicate-post.lopo.it/ Software Link: https://wordpress.org/plugins/duplicate-post/ Version: 3.2.3 Tested on: Kali Linux CV...

LimeSurvey < 3.17.14 Multiple Vulnerabilities

LimeSurvey is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Limesurvey Menu Item Access Vulnerability

limesurvey is an open source online questionnaire program with many functions such as questionnaire design, modification, release, recovery and statistics. A menu item access vulnerability exists in Limesurvey versions prior to 3.17.14. An attacker can use this vulnerability to view, update, or...

CVE-2019-16185

In Limesurvey before 3.17.14, admin users can view, update, or delete reserved menu entries without proper permissions...

CVE-2019-16185

In Limesurvey before 3.17.14, admin users can view, update, or delete reserved menu entries without proper permissions...

WordPress breadcrumbs-by-menu plugin cross-site scripting vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. breadcrumbs-by-menu is one of the plugins used in it. A cross-site scripting vulnerability exists in WordPress breadcrumbs-by-menu...

CVE-2019-15865

The breadcrumbs-by-menu plugin before 1.0.3 for WordPress has CSRF...

CVE-2019-15864

The breadcrumbs-by-menu plugin before 1.0.3 for WordPress has XSS...

CVE-2019-15865

The breadcrumbs-by-menu plugin before 1.0.3 for WordPress has CSRF...

CVE-2019-15865

The breadcrumbs-by-menu plugin before 1.0.3 for WordPress has CSRF...

CVE-2019-15864

CVE-2019-15864 concerns the WordPress plugin breadcrumbs-by-menu, with a cross-site scripting (XSS) vulnerability in versions before 1.0.3. Public records (NVD/Red Hat/CNVD etc.) describe an XSS vulnerability in this plugin, affecting WordPress installations using the plugin prior to 1.0.3, and i...

CVE-2019-15864

The breadcrumbs-by-menu plugin before 1.0.3 for WordPress has XSS...

WordPress breadcrumbs-by-menu plugin cross-site request forgery vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. breadcrumbs-by-menu is one of the plugins used in it. A cross-site request forgery vulnerability exists in versions of the WordPress...