13 matches found
EUVD-2024-52355
Malicious code in bioql PyPI...
CVE-2024-54229
Incorrect Privilege Assignment vulnerability in straightvisions GmbH SV100 Companion sv100-companion allows Privilege Escalation.This issue affects SV100 Companion: from n/a through = 2.0.02...
CVE-2024-54229
Incorrect Privilege Assignment vulnerability in straightvisions GmbH SV100 Companion sv100-companion allows Privilege Escalation.This issue affects SV100 Companion: from n/a through = 2.0.02...
CVE-2024-54229 WordPress SV100 Companion plugin <= 2.0.02 - Privilege Escalation vulnerability
Incorrect Privilege Assignment vulnerability in straightvisions GmbH SV100 Companion sv100-companion allows Privilege Escalation.This issue affects SV100 Companion: from n/a through = 2.0.02...
WordPress plugin SV100 Companion 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...
CVE-2024-12155
The SV100 Companion plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the settingsimport function in all versions up to, and including, 2.0.02. This makes it possible for unauthenticated attackers to...
CVE-2024-12155 SV100 Companion <= 2.0.02 - Missing Authorization to Unuathenticated Arbitrary Options Update
The SV100 Companion plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the settingsimport function in all versions up to, and including, 2.0.02. This makes it possible for unauthenticated attackers to...
CVE-2024-12155 SV100 Companion <= 2.0.02 - Missing Authorization to Unuathenticated Arbitrary Options Update
The SV100 Companion plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the settingsimport function in all versions up to, and including, 2.0.02. This makes it possible for unauthenticated attackers to...
CVE-2024-12155
CVE-2024-12155 affects the SV100 Companion plugin for WordPress and stems from a missing capability check in the settings_import() function. This vulnerability exists in all versions up to and including 2.0.02, allowing unauthenticated attackers to modify arbitrary options on a WordPress site. Th...
WordPress plugin SV100 Companion 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...
WordPress SV100 Companion plugin <= 2.0.02 - Privilege Escalation vulnerability
Privilege Escalation vulnerability discovered by Mika Patchstack Alliance in WordPress Plugin SV100 Companion versions = 2.0.02...
WordPress SV100 Companion Plugin <= 1.9.00 is vulnerable to Cross Site Scripting (XSS)
Software SV100 Companion Type Plugin Vulnerable versions = 1.9.00 Fixed in 2.0.00 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID b89ce4a4735c Credits Rafie Muhammad Patchstack Required...
WordPress SV100 Companion plugin < 1.8.12 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability
Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress SV100 Companion plugin versions 1.8.12. Solution Update the WordPress SV100 Companion plugin to the latest available version at least 1.8.12...