EUVD-2015-4722

Malware in sbrugna...

CVE-2022-34815

A cross-site request forgery CSRF vulnerability in Jenkins Request Rename Or Delete Plugin 1.1.0 and earlier allows attackers to accept pending requests, thereby renaming or deleting jobs...

PT-2022-22366 · Jenkins · Jenkins Request Rename/Delete Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins Request Rename Or Delete Plugin versions 1.1.0 and earlier Description: The issue arises from an incorrect permission check in an HTTP endpoint, allowing attackers with Overall/Read permission to view an administrative configuration...

CVE-2015-4703

Absolute path traversal vulnerability in mysqldumpdownload.php in the WordPress Rename plugin 1.0 for WordPress allows remote attackers to read arbitrary files via a full pathname in the dumpfname parameter...

CVE-2015-4703

CVE-2015-4703 describes an absolute path traversal in the WordPress Rename plugin (version 1.0) for WordPress. The vulnerability resides in mysqldump_download.php, where an attacker can read arbitrary files by supplying a full pathname in the dumpfname parameter. This affects the plugin as instal...

WordPress Rename Plugin <= 1.0 - Absolute Path Traversal

Absolute path traversal vulnerability in mysqldumpdownload.php in the WordPress Rename plugin 1.0 for WordPress allows remote attackers to read arbitrary files via a full pathname in the dumpfname parameter. Solution Update the plugin...