13 matches found
EUVD-2024-52355
Malicious code in bioql PyPI...
CVE-2024-54229
Incorrect Privilege Assignment vulnerability in straightvisions GmbH SV100 Companion sv100-companion allows Privilege Escalation.This issue affects SV100 Companion: from n/a through = 2.0.02...
CVE-2024-54229
Incorrect Privilege Assignment vulnerability in straightvisions GmbH SV100 Companion sv100-companion allows Privilege Escalation.This issue affects SV100 Companion: from n/a through = 2.0.02...
CVE-2024-54229 WordPress SV100 Companion plugin <= 2.0.02 - Privilege Escalation vulnerability
Incorrect Privilege Assignment vulnerability in straightvisions GmbH SV100 Companion sv100-companion allows Privilege Escalation.This issue affects SV100 Companion: from n/a through = 2.0.02...
WordPress plugin SV100 Companion 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...
CVE-2024-12155
The SV100 Companion plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the settingsimport function in all versions up to, and including, 2.0.02. This makes it possible for unauthenticated attackers to...
CVE-2024-12155
CVE-2024-12155 affects the SV100 Companion plugin for WordPress and stems from a missing capability check in the settings_import() function. This vulnerability exists in all versions up to and including 2.0.02, allowing unauthenticated attackers to modify arbitrary options on a WordPress site. Th...
CVE-2024-12155 SV100 Companion <= 2.0.02 - Missing Authorization to Unuathenticated Arbitrary Options Update
The SV100 Companion plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the settingsimport function in all versions up to, and including, 2.0.02. This makes it possible for unauthenticated attackers to...
CVE-2024-12155 SV100 Companion <= 2.0.02 - Missing Authorization to Unuathenticated Arbitrary Options Update
The SV100 Companion plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the settingsimport function in all versions up to, and including, 2.0.02. This makes it possible for unauthenticated attackers to...
WordPress plugin SV100 Companion 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...
WordPress SV100 Companion plugin <= 2.0.02 - Privilege Escalation vulnerability
Privilege Escalation vulnerability discovered by Mika Patchstack Alliance in WordPress Plugin SV100 Companion versions = 2.0.02...
WordPress SV100 Companion Plugin <= 1.9.00 is vulnerable to Cross Site Scripting (XSS)
Software SV100 Companion Type Plugin Vulnerable versions = 1.9.00 Fixed in 2.0.00 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID b89ce4a4735c Credits Rafie Muhammad Patchstack Required...
WordPress SV100 Companion plugin < 1.8.12 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability
Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress SV100 Companion plugin versions 1.8.12. Solution Update the WordPress SV100 Companion plugin to the latest available version at least 1.8.12...