7 matches found
DEBIAN-CVE-2022-49830
In the Linux kernel, the following vulnerability has been resolved: drm/drv: Fix potential memory leak in drmdevinit drmdevinit will add drmdevinitrelease as a callback. When drmmaddaction failed, the release function won't be added. As the result, the ref cnt added by deviceget in drmdevinit won...
UBUNTU-CVE-2022-49830
In the Linux kernel, the following vulnerability has been resolved: drm/drv: Fix potential memory leak in drmdevinit drmdevinit will add drmdevinitrelease as a callback. When drmmaddaction failed, the release function won't be added. As the result, the ref cnt added by deviceget in drmdevinit won...
WordPress plugin Custom Skins Contact Form 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exist...
PT-2024-10552 · WordPress · Wp-File-Upload
Name of the Vulnerable Software and Affected Versions: wp-file-upload Plugin versions up to 2.4.3 Description: A vulnerability has been found in the wp-file-upload Plugin, which is classified as problematic. The issue affects the function wfu ajax action callback of the file lib/wfu...
WordPress plugin ColorMag theme security vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed using the PHP language, which supports personal blogs on PHP and MySQL servers.WordPress plugin is an...
PT-2024-15743 · WordPress · Colormag
Name of the Vulnerable Software and Affected Versions: ColorMag theme for WordPress versions up to, and including, 3.1.2 Description: The ColorMag theme for WordPress is vulnerable to unauthorized access due to a missing capability check on the plugin action callback function. This makes it...
CVE-2023-6066 WP Custom Widget Area <= 1.2.5 - Subscriber+ Menus Creation/Deletion/Update
The WP Custom Widget area WordPress plugin through 1.2.5 does not properly apply capability and nonce checks on any of its AJAX action callback functions, which could allow attackers with subscriber+ privilege to create, delete or modify menus on the site...