Atlassian SourceTree 3.4.19 RCE

The version of Atlassian SourceTree installed on the remote Windows host is version 3.4.19. It is, therefore, affected by a remote code execution vulnerability. An attacker, with the interaction of an authorized user, can execute arbitrary code on the affected host. Note that Nessus has not teste...

PT-2024-39599 · WordPress · Branda – White Label & Branding

Name of the Vulnerable Software and Affected Versions: The Branda – White Label & Branding, Custom Login Page Customizer plugin for WordPress versions up to, and including, 3.4.19 Description: The issue is related to Reflected Cross-Site Scripting due to the use of remove query arg without...

Atlassian Sourcetree 安全漏洞

Atlassian Sourcetree is a free Git and Mercurial client tool from Atlassian Australia that manages repositories using a visual interface. A security vulnerability exists in Atlassian Sourcetree Mac version 4.2.8 and Windows version 3.4.19, which stems from vulnerability to remote code execution...

CVE-2024-35726

Missing Authorization vulnerability in ThemeKraft WooBuddy.This issue affects WooBuddy: from n/a through 3.4.19...

CVE-2024-35726

Technical details for CVE-2024-35726 are not publicly provided in the supplied documents. Monitor for official advisories from vendors/security sources for affected products and remediation guidance.

WordPress plugin WooBuddy security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

WordPress WooBuddy plugin <= 3.4.19 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Abdi Pranata Patchstack Alliance in WordPress Plugin WooBuddy versions = 3.4.19...

Malicious code in pygame-pytorch (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis c104a6d866e764da7907147cd7def349f360987498156433ef1e11bf4ac2263c The OpenSSF Package Analysis project identified 'pygame-pytorch' @ 3.4.19 pypi as malicious. It is considered malicious because: - The package...

MongoDB 3.4 < 3.4.19, 3.6 < 3.6.10, 4.0 < 4.0.5 DoS Vulnerability - Linux

MongoDB is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mongodb:mongodb"; if...

Code injection

A user authorized to perform database queries may trigger denial of service by issuing specially crafted queries, which loop indefinitely in mathematics processing while retaining locks. This issue affects MongoDB Server v4.0 versions prior to 4.0.5; MongoDB Server v3.6 versions prior to 3.6.10...