Lucene search
K

1065 matches found

Japan Vulnerability Notes
Japan Vulnerability Notes
added 2022/03/15 12:0 a.m.50 views

JVN#87751554: Multiple vulnerabilities in pfSense

pfSense software provided by Netgate contains multiple vulnerabilities listed below. Cross-site scripting CWE-79 - CVE-2021-20729 Version| Vector| Score ---|---|--- CVSS v3| CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N| Base Score: 6.1 CVSS v2| AV:N/AC:M/Au:N/C:N/I:P/A:N| Base Score: 4.3 Improper...

8.8CVSS8.3AI score0.04229EPSS
Exploits0
OSV
OSV
added 2022/03/11 12:0 a.m.21 views

DLA-2945-1 tryton-server - security update

Bulletin has no description...

7.5CVSS6.7AI score0.01881EPSS
Exploits1
Patchstack
Patchstack
added 2022/03/09 12:0 a.m.32 views

WordPress Profile Builder plugin <= 3.6.7 - Stored Cross-Site Scripting (XSS) vulnerability

Stored Cross-Site Scripting XSS vulnerability discovered by Abhinav Porwal in WordPress Profile Builder plugin versions = 3.6.7. Solution Update the WordPress Profile Builder plugin to the latest available version at least 3.6.8...

4.8CVSS1.8AI score0.00644EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2022/03/07 12:0 a.m.34 views

DLA-2933-1 firefox-esr - security update

Bulletin has no description...

9.6CVSS8.9AI score0.14261EPSS
Exploits2
OSV
OSV
added 2022/03/07 12:0 a.m.51 views

DLA-2935-1 expat - security update

Bulletin has no description...

9.8CVSS8.4AI score0.34174EPSS
Exploits1
Patchstack
Patchstack
added 2022/02/28 12:0 a.m.11 views

WordPress Gallery Plugin – Limb Image Gallery plugin <= 1.5.1 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress Gallery Plugin – Limb Image Gallery plugin versions = 1.5.1. Solution Update the WordPress Gallery Plugin – Limb Image Gallery plugin to the latest available version at least 1.5.2...

3.7AI score
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2022/02/28 12:0 a.m.8 views

WordPress Product Options and Price Calculation Formulas for WooCommerce – Uni CPO plugin < 4.9.14 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress Product Options and Price Calculation Formulas for WooCommerce – Uni CPO plugin versions 4.9.14. Solution Update the WordPress Product Options and Price Calculation Formulas for WooCommerce – Uni CPO...

3.8AI score
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2022/02/28 12:0 a.m.15 views

WordPress AnyWhere Elementor plugin < 1.2.5 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress AnyWhere Elementor plugin versions 1.2.5. Solution Update the WordPress AnyWhere Elementor plugin to the latest available version at least 1.2.5...

4.3AI score
Exploits0References2Affected Software1
OSV
OSV
added 2022/02/18 12:0 a.m.43 views

DSA-5080-1 snapd - security update

Bulletin has no description...

8.8CVSS8.2AI score0.00966EPSS
Exploits4
OSV
OSV
added 2022/02/11 12:0 a.m.39 views

DSA-5071-1 samba - security update

Bulletin has no description...

9CVSS7.4AI score0.74042EPSS
Exploits1
OSV
OSV
added 2022/02/10 12:0 a.m.44 views

DLA-2917-1 openjdk-8 - security update

Bulletin has no description...

5.3CVSS5.9AI score0.08346EPSS
Exploits0
OSV
OSV
added 2022/02/09 11:7 a.m.11 views

SUSE-SU-2022:0355-1 Security update for elasticsearch, elasticsearch-kit, kafka, kafka-kit, logstash, openstack-monasca-agent, openstack-monasca-log-metrics, openstack-monasca-log-persister, openstack-monasca-log-transformer, openstack-monasca-persister-java, openstack-monasca-persister-java-kit, openstack-monasca-thresh, openstack-monasca-thresh-kit, spark, spark-kit, venv-openstack-monasca, zookeeper, zookeeper-kit

This update for elasticsearch, elasticsearch-kit, kafka, kafka-kit, logstash, openstack-monasca-agent, openstack-monasca-log-metrics, openstack-monasca-log-persister, openstack-monasca-log-transformer, openstack-monasca-persister-java, openstack-monasca-persister-java-kit, openstack-monasca-thres...

9.8CVSS9.3AI score0.81147EPSS
Exploits10References9
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2022/02/07 12:0 a.m.43 views

JVN#95898697: Multiple ESET products for macOS vulnerable to improper server certificate verification

Multiple ESET products for macOS are vulnerable to improper server certificate verification CWE-295. Impact A man-in-the-middle attack may allow an attacker to alter the data received by the affected products. Solution Update the software Update the software to the latest version according to the...

5.9CVSS5.4AI score0.0166EPSS
Exploits4
OSV
OSV
added 2022/02/06 12:1 a.m.11 views

GHSA-P435-W4XM-JJ8X Hadoop token in temp file visible to all users in Apache Gobblin

In Apache Gobblin, the Hadoop token is written to a temp file that is visible to all local users on Unix-like systems. This affects versions = 0.15.0. Users should update to version 0.16.0 which addresses this issue...

5.5CVSS5.3AI score0.00437EPSS
Exploits0References2
OSV
OSV
added 2022/02/01 12:0 a.m.46 views

DLA-2906-1 python-django - security update

Bulletin has no description...

7.5CVSS6.8AI score0.49246EPSS
Exploits1
OSV
OSV
added 2022/01/31 12:0 a.m.45 views

DLA-2905-1 apache-log4j1.2 - security update

Bulletin has no description...

9.8CVSS9.2AI score0.81147EPSS
Exploits10
OSV
OSV
added 2022/01/25 12:0 a.m.44 views

DLA-2898-1 nss - security update

Bulletin has no description...

6.5CVSS8.2AI score0.0063EPSS
Exploits0
OSV
OSV
added 2022/01/23 12:0 a.m.36 views

DSA-5054-1 chromium - security update

Bulletin has no description...

9.6CVSS7.8AI score0.85352EPSS
Exploits0
OSV
OSV
added 2022/01/21 12:0 a.m.20 views

DSA-5052-1 usbview - security update

Bulletin has no description...

7.8CVSS7.4AI score0.00521EPSS
Exploits1
OSV
OSV
added 2022/01/17 12:0 a.m.32 views

DLA-2885-1 qtsvg-opensource-src - security update

Bulletin has no description...

7.1CVSS6.3AI score0.01343EPSS
Exploits2
Rows per page
Query Builder