33 matches found
Linux Distros Unpatched Vulnerability : CVE-2016-20041
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Yasr 0.6.9-5 contains a buffer overflow vulnerability that allows local attackers to crash the application or execute arbitrary code by supplying an oversized...
EUVD-2016-10837
Yasr 0.6.9-5 contains a buffer overflow vulnerability that allows local attackers to crash the application or execute arbitrary code by supplying an oversized argument to the -p parameter. Attackers can invoke yasr with a crafted payload containing junk data, shellcode, and a return address to...
CVE-2016-20041
Yasr 0.6.9-5 contains a buffer overflow vulnerability that allows local attackers to crash the application or execute arbitrary code by supplying an oversized argument to the -p parameter. Attackers can invoke yasr with a crafted payload containing junk data, shellcode, and a return address to...
UBUNTU-CVE-2016-20041
Yasr 0.6.9-5 contains a buffer overflow vulnerability that allows local attackers to crash the application or execute arbitrary code by supplying an oversized argument to the -p parameter. Attackers can invoke yasr with a crafted payload containing junk data, shellcode, and a return address to...
CVE-2016-20041 Yasr 0.6.9-5 Buffer Overflow via Command-line Parameter
Yasr 0.6.9-5 contains a buffer overflow vulnerability that allows local attackers to crash the application or execute arbitrary code by supplying an oversized argument to the -p parameter. Attackers can invoke yasr with a crafted payload containing junk data, shellcode, and a return address to...
CVE-2016-20041 Yasr 0.6.9-5 Buffer Overflow via Command-line Parameter
Yasr 0.6.9-5 contains a buffer overflow vulnerability that allows local attackers to crash the application or execute arbitrary code by supplying an oversized argument to the -p parameter. Attackers can invoke yasr with a crafted payload containing junk data, shellcode, and a return address to...
CVE-2016-20041
Yasr 0.6.9-5 contains a buffer overflow vulnerability that allows local attackers to crash the application or execute arbitrary code by supplying an oversized argument to the -p parameter. Attackers can invoke yasr with a crafted payload containing junk data, shellcode, and a return address to...
CVE-2016-20041
Removed by vendor...
Yasr 路径遍历漏洞
Yasr is an open-source terminal assistance tool developed by Yasr, which supports screen reading and voice output. Version 0.6.9-5 of Yasr has a path traversal vulnerability. This vulnerability stems from a buffer overflow, which could allow local attackers to cause the application to crash or...
EUVD-2022-28895
Malicious code in bioql PyPI...
CVE-2022-40699
Cross-Site Scripting XSS vulnerability in Dario Curvino Yasr – Yet Another Stars Rating plugin = 3.1.2 versions...
CVE-2023-37867
Time-of-check Time-of-use TOCTOU Race Condition vulnerability in YetAnotherStarsRating.Com YASR – Yet Another Star Rating Plugin for WordPress.This issue affects YASR – Yet Another Star Rating Plugin for WordPress: from n/a through 3.3.8...
CVE-2023-37867 WordPress Yet Another Stars Rating Plugin <= 3.3.8 is vulnerable to Race Condition
Time-of-check Time-of-use TOCTOU Race Condition vulnerability in YetAnotherStarsRating.Com YASR – Yet Another Star Rating Plugin for WordPress.This issue affects YASR – Yet Another Star Rating Plugin for WordPress: from n/a through 3.3.8...
CVE-2023-37867
CVE-2023-37867 affects the YASR – Yet Another Star Rating Plugin for WordPress (versions
WordPress Plugin YASR Security Vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exists in...
CVE-2022-40699
Cross-Site Scripting XSS vulnerability in Dario Curvino Yasr – Yet Another Stars Rating plugin = 3.1.2 versions...
CVE-2022-40699
Cross-Site Scripting XSS vulnerability in Dario Curvino Yasr – Yet Another Stars Rating plugin = 3.1.2 versions...
Cross site scripting
Cross-Site Scripting XSS vulnerability in Dario Curvino Yasr – Yet Another Stars Rating plugin = 3.1.2 versions...
CVE-2022-40699
CVE-2022-40699 affects WordPress Yet Another Stars Rating (YASR) plugin, specifically versions ≤ 3.1.2. The vulnerability is Cross-Site Scripting (XSS); multiple sources describe an XSS issue in this plugin version. Patchstack lists the fix as version 3.1.3, indicating the issue was addressed by ...
PT-2023-13893 · WordPress · Dario Curvino Yasr – Yet Another Stars Rating
Name of the Vulnerable Software and Affected Versions: Dario Curvino Yasr – Yet Another Stars Rating plugin versions = 3.1.2 Description: The issue is related to a Cross-Site Scripting XSS vulnerability. This type of vulnerability allows an attacker to inject malicious scripts into a website,...