WordPress plugin Paytium: Mollie payment forms & donations 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. WordPress plugin is an application plugin that supports personal blogs on PHP and MySQL servers. A security vulnerability exists in the WordPress plugin...

CVE-2024-46988

Tuleap is a tool for end to end traceability of application and system developments. Prior to Tuleap Community Edition 15.13.99.40, Tuleap Enterprise Edition 15.13-3, and Tuleap Enterprise Edition 15.12-6, users might receive email notification with information they should not have access to...

CVE-2024-46988

CVE-2024-46988 affects Tuleap: Community Edition prior to 15.13.99.40 and Enterprise Edition prior to 15.13-3 or 15.12-6. The issue is that email notifications could disclose information to users who should not have access, due to improper permission checks in trackers. Impact is limited to infor...

CVE-2024-46988 Tuleap does not properly check permissions for email notifications in trackers

Tuleap is a tool for end to end traceability of application and system developments. Prior to Tuleap Community Edition 15.13.99.40, Tuleap Enterprise Edition 15.13-3, and Tuleap Enterprise Edition 15.12-6, users might receive email notification with information they should not have access to...

SUSE CVE-2024-46871

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Correct the defined value for AMDGPUDMUBNOTIFICATIONMAX Why & How It actually exposes '6' types in enum dmubnotificationtype. Not 5. Using smaller number to create array dmubcallback & dmubthreadoffload has...

WordPress plugin Notification for Telegram 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in the...

Repeat Email Notification: "License update interrupted: Paid license is not installed."

Challenge After installing or upgrading to Veeam Backup for Microsoft 365 version 8 using Community Edition or an NFR Not-For-Resale license, email notifications are sent daily that state that state: Veeam Backup for Microsoft 365 Failed to update license License updated interrupted: Paid license...

WordPress Notification for Telegram plugin <= 3.3.1 - Missing Authorization vulnerability

Missing Authorization vulnerability discovered by István Márton in WordPress Plugin Notification for Telegram versions = 3.3.1...

DEBIAN-CVE-2024-46871

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Correct the defined value for AMDGPUDMUBNOTIFICATIONMAX Why & How It actually exposes '6' types in enum dmubnotificationtype. Not 5. Using smaller number to create array dmubcallback & dmubthreadoffload has...

AZL-50733 CVE-2024-46871 affecting package kernel for versions less than 5.15.176.3-1

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Correct the defined value for AMDGPUDMUBNOTIFICATIONMAX Why & How It actually exposes '6' types in enum dmubnotificationtype. Not 5. Using smaller number to create array dmubcallback & dmubthreadoffload has...

UBUNTU-CVE-2024-46871

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Correct the defined value for AMDGPUDMUBNOTIFICATIONMAX Why & How It actually exposes '6' types in enum dmubnotificationtype. Not 5. Using smaller number to create array dmubcallback & dmubthreadoffload has...

Linux kernel 输入验证错误漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from inaccuracies in defining the AMDGPUDMUBNOTIFICATIONMAX value, which could lead to out-of-bounds access to...

PT-2024-39761 · WordPress · Notification For Telegram

Name of the Vulnerable Software and Affected Versions: The Notification for Telegram plugin for WordPress versions up to, and including, 3.3.1 Description: The issue allows authenticated attackers with subscriber-level access and above to send unauthorized test messages via the Telegram Bot API t...

WordPress Notification for Telegram Plugin <= 3.3.1 is vulnerable to Broken Access Control

Software Notification for Telegram Type Plugin Vulnerable versions = 3.3.1 Fixed in 3.3.2 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-9685 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 4b8ba917ec79 Credits István Márton Requir...

CentOS 7 : firefox (RHSA-2021:5014)

The remote CentOS Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2021:5014 advisory. - Mozilla developers and community members Julian Hector, Randell Jesup, Gabriele Svelto, Tyson Smith, Christian Holler, and Masayuki Nakano reported...

CentOS 7 : thunderbird (RHSA-2021:5046)

The remote CentOS Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2021:5046 advisory. - Mozilla developers and community members Julian Hector, Randell Jesup, Gabriele Svelto, Tyson Smith, Christian Holler, and Masayuki Nakano reported...

BELL-CVE-2024-46952

Bulletin has no description...

CVE-2024-9358 ThingsBoard HTTP RPC API resource consumption

A vulnerability has been found in ThingsBoard up to 3.7.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component HTTP RPC API. The manipulation leads to resource consumption. The attack can be launched remotely. The complexity of an attack is...

BELL-CVE-2024-46829

Bulletin has no description...

BELL-CVE-2024-46808

Bulletin has no description...