Lucene search
K

142 matches found

CNNVD
CNNVD
added 2024/11/19 12:0 a.m.3 views

WordPress plugin Domain Sharding 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site request forgery vulnerability...

7.1CVSS6.4AI score0.00194EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/11/19 12:0 a.m.3 views

PT-2024-34311 · David Garcia · Domain Sharding

Name of the Vulnerable Software and Affected Versions: David Garcia Domain Sharding versions 1.2.1 and earlier Description: The issue is a Cross-Site Request Forgery CSRF vulnerability that allows Stored XSS. This means an attacker can trick a user into performing unintended actions on a web...

7.1CVSS6.7AI score0.00194EPSS
Exploits0References3
Patchstack
Patchstack
added 2024/10/30 3:18 p.m.4 views

WordPress Domain Sharding plugin <= 1.2.1 - CSRF to Stored Cross Site Scripting (XSS) vulnerability

CSRF to Stored Cross Site Scripting XSS vulnerability discovered by SOPROBRO Patchstack Alliance in WordPress Plugin Domain Sharding versions = 1.2.1...

7.1CVSS5.9AI score0.00194EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/10/30 12:0 a.m.14 views

WordPress Domain Sharding Plugin <= 1.2.1 is vulnerable to Cross Site Request Forgery (CSRF)

Software Domain Sharding Type Plugin Vulnerable versions = 1.2.1 Fixed in N/A OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-50533 Patch priority Low CVSS severity Low 7.1 Developer Claim ownership PSID 5877d36466c2 Credits SOPROBRO Required...

7.1CVSS6.6AI score0.00194EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/10/11 3:20 p.m.18 views

CVE-2024-39547 Junos OS and Junos OS Evolved: cRPD: Receipt of crafted TCP traffic can trigger high CPU utilization

An Improper Handling of Exceptional Conditions vulnerability in the rpd-server of Juniper Networks Junos OS and Junos OS Evolved within cRPD allows an unauthenticated network-based attacker sending crafted TCP traffic to the routing engine RE to cause a CPU-based Denial of Service DoS. If special...

8.7CVSS7AI score0.00927EPSS
Exploits0References1
OSV
OSV
added 2024/08/20 8:26 p.m.25 views

GO-2023-1512 Controller reconciles apps outside configured namespaces when sharding is enabled in github.com/argoproj/argo-cd

Controller reconciles apps outside configured namespaces when sharding is enabled in github.com/argoproj/argo-cd...

8.5CVSS8.3AI score0.0078EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/06/25 12:0 a.m.3 views

PT-2024-7779

Name of the Vulnerable Software and Affected Versions Junos OS versions prior to 21.2R3-S8 Junos OS versions 21.4 prior to 21.4R3-S7 Junos OS versions 22.1 prior to 22.1R3-S6 Junos OS versions 22.2 prior to 22.2R3-S4 Junos OS versions 22.3 prior to 22.3R3-S3 Junos OS versions 22.4 prior to...

8.7CVSS5.9AI score0.00927EPSS
Exploits0References6
BDU FSTEC
BDU FSTEC
added 2024/05/24 12:0 a.m.6 views

The vulnerability of the Oracle Database Sharding component of the Oracle Database Server management system allows a hacker to trigger a service failure.

The vulnerability of Oracle Database Sharding in the Oracle Database Server database management system is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker, operating remotely, to cause service interruptions...

4CVSS7.2AI score0.00532EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2024/05/07 12:0 a.m.4 views

Suricata 安全漏洞

Suricata is a suite of network Intrusion Detection Systems IDS, Intrusion Prevention Systems IPS, and network security monitoring engines developed by the Open Information Security Foundation OISF and its supporting vendors, which supports multi-threading, built-in IPv6, and the ability to load...

5.3CVSS9AI score0.00699EPSS
Exploits0References12
OSV
OSV
added 2024/04/16 10:15 p.m.2 views

CVE-2024-20995

Vulnerability in the Oracle Database Sharding component of Oracle Database Server. Supported versions that are affected are 19.3-19.22 and 21.3-21.13. Easily exploitable vulnerability allows high privileged attacker having DBA privilege with network access via Oracle Net to compromise Oracle...

2.4CVSS7.1AI score
Exploits0References1
NVD
NVD
added 2024/04/16 10:15 p.m.23 views

CVE-2024-20995

Vulnerability in the Oracle Database Sharding component of Oracle Database Server. Supported versions that are affected are 19.3-19.22 and 21.3-21.13. Easily exploitable vulnerability allows high privileged attacker having DBA privilege with network access via Oracle Net to compromise Oracle...

2.4CVSS3.3AI score0.00532EPSS
Exploits0References1
CVE
CVE
added 2024/04/16 9:25 p.m.75 views

CVE-2024-20995

The CVE refers to Oracle Database Sharding in Oracle Database Server. Affected: Oracle Database Server 19.3–19.22 and 21.3–21.13. Root cause: insufficient input validation in the Oracle Database Sharding component. Impact: high-privileged DBA with network access via Oracle Net can cause partial d...

2.4CVSS5.4AI score0.00532EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2024/04/16 12:0 a.m.5 views

PT-2024-3719 · Oracle · Oracle Database Sharding +2

Name of the Vulnerable Software and Affected Versions: Oracle Database Server versions 19.3 through 19.22 Oracle Database Server versions 21.3 through 21.13 Description: The issue is related to insufficient input validation in the Oracle Database Sharding component. It allows a high-privileged...

4CVSS6.5AI score0.00532EPSS
Exploits0References9
CNNVD
CNNVD
added 2024/04/16 12:0 a.m.5 views

Oracle Database Server 安全漏洞

Oracle Database Server is a relational database management system from Oracle Corporation USA. The database management system provides data management, distributed processing, and other functions. A security vulnerability exists in Oracle Database Sharding for Oracle Database Server. An attacker...

2.4CVSS7.1AI score0.00532EPSS
Exploits0References3
Packet Storm
Packet Storm
added 2023/10/26 12:0 a.m.465 views

Oracle 19c / 21c Sharding Component Password Hash Exposure

Title: CVE-2023-22074 – Oracle database password hash exposure in sharding component Product: Database Manufacturer: Oracle Affected Versions: 19c,21c 19.3-19.20 and 21.3-21.11 Tested Versions: 19c Risk Level: Low Solution Status: Fixed CVE Reference: CVE-2023-22074 Base Score: 2.4 Author of...

2.4CVSS7.1AI score0.00887EPSS
Exploits2
BDU FSTEC
BDU FSTEC
added 2023/10/20 12:0 a.m.4 views

The vulnerability of the Database Sharding component of the Oracle Database Server management system allows a hacker to perform a partial service outage.

The vulnerability of the Database Sharding component of the Oracle Database Server management system is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker, operating remotely, to cause a partial service failure...

3.3CVSS5.4AI score0.00887EPSS
Exploits2References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2023/10/20 12:0 a.m.4 views

The vulnerability of the Database Sharding component of the Oracle Database Server system allows a hacker to perform a partial denial-of-service attack.

The vulnerability of the Database Sharding component of the Oracle Database Server management system is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to perform a partial denial-of-service attack remotely...

3.3CVSS5.3AI score0.00395EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2023/10/17 10:15 p.m.4 views

CVE-2023-22074

Vulnerability in the Oracle Database Sharding component of Oracle Database Server. Supported versions that are affected are 19.3-19.20 and 21.3-21.11. Easily exploitable vulnerability allows high privileged attacker having Create Session, Select Any Dictionary privilege with network access via...

2.4CVSS5.8AI score0.00887EPSS
Exploits2References2
OSV
OSV
added 2023/10/17 10:15 p.m.4 views

CVE-2023-22075

Vulnerability in the Oracle Database Sharding component of Oracle Database Server. Supported versions that are affected are 19.3-19.20 and 21.3-21.11. Easily exploitable vulnerability allows high privileged attacker having Create Session, Create Any View, Select Any Table privilege with network...

2.4CVSS5.8AI score0.00395EPSS
Exploits0References1
NVD
NVD
added 2023/10/17 10:15 p.m.16 views

CVE-2023-22075

Vulnerability in the Oracle Database Sharding component of Oracle Database Server. Supported versions that are affected are 19.3-19.20 and 21.3-21.11. Easily exploitable vulnerability allows high privileged attacker having Create Session, Create Any View, Select Any Table privilege with network...

2.4CVSS2.6AI score0.00395EPSS
Exploits0References1
Rows per page
Query Builder