CVE-2024-31261

Missing Authorization vulnerability in Aakash Chakravarthy Announcer – Notification & message bars.This issue affects Announcer – Notification & message bars: from n/a through 6.0...

CVE-2015-10096

A vulnerability, which was classified as critical, was found in Zarthus IRC Twitter Announcer Bot up to 1.1.0. This affects the function gettweets of the file lib/twitterbot/plugins/twitterannouncer.rb. The manipulation of the argument tweet leads to command injection. It is possible to initiate...

CVE-2024-31261

Missing Authorization vulnerability in Aakash Chakravarthy Announcer – Notification & message bars.This issue affects Announcer – Notification & message bars: from n/a through 6.0...

CVE-2024-31261

Missing Authorization vulnerability in Aakash Chakravarthy Announcer – Notification & message bars.This issue affects Announcer – Notification & message bars: from n/a through 6.0...

CVE-2024-31261 WordPress Announcer – Notification & message bars plugin <= 6.0 - Broken Access Control vulnerability

Missing Authorization vulnerability in Aakash Chakravarthy Announcer – Notification & message bars.This issue affects Announcer – Notification & message bars: from n/a through 6.0...

CVE-2024-31261

CVE-2024-31261: WordPress plugin Announcer – Notification & message bars suffers a Missing Authorization vulnerability affecting versions n/a through 6.0. Public sources (RH, Wordfence, PT Security) confirm a missing-authorization issue in the Announcer plugin; remediation guidance recommends upg...

CVE-2024-31261 WordPress Announcer – Notification & message bars plugin <= 6.0 - Broken Access Control vulnerability

Missing Authorization vulnerability in Aakash Chakravarthy Announcer – Notification & message bars.This issue affects Announcer – Notification & message bars: from n/a through 6.0...

WordPress plugin Announcer security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in WordPres...

PT-2024-23905 · Unknown · Announcer – Notification & Message Bars

Name of the Vulnerable Software and Affected Versions: Announcer – Notification & message bars versions n/a through 6.0 Description: A missing authorization issue affects the Announcer – Notification & message bars. This issue allows unauthorized access. Recommendations: For versions n/a through...

Announcer – Notification & message bars < 6.0.1 - Missing Authorization

Description The Announcer – Notification & message bars plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on the adminajax function in versions up to, and including, 6.0. This makes it possible for authenticated attackers, with subscriber-level access and...

WordPress Announcer – Notification & message bars plugin <= 6.0 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Abdi Pranata Patchstack Alliance in WordPress Plugin Announcer – Notification & message bars versions = 6.0...

WordPress Announcer – Notification & message bars Plugin <= 6.0 is vulnerable to Broken Access Control

Software Announcer – Notification & message bars Type Plugin Vulnerable versions = 6.0 Fixed in 6.0.1 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-31261 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 8628b9caa92f Credits Abdi...

CVE-2015-10096

A vulnerability, which was classified as critical, was found in Zarthus IRC Twitter Announcer Bot up to 1.1.0. This affects the function gettweets of the file lib/twitterbot/plugins/twitterannouncer.rb. The manipulation of the argument tweet leads to command injection. It is possible to initiate...

Command injection

A vulnerability, which was classified as critical, was found in Zarthus IRC Twitter Announcer Bot up to 1.1.0. This affects the function gettweets of the file lib/twitterbot/plugins/twitterannouncer.rb. The manipulation of the argument tweet leads to command injection. It is possible to initiate...

CVE-2015-10096

CVE-2015-10096 affects Zarthus IRC Twitter Announcer Bot up to version 1.1.0. The issue is a command injection in the function get_tweets (file lib/twitterbot/plugins/twitter_announcer.rb) caused by manipulation of the tweet argument. It can be triggered remotely; attack complexity is described a...

Zarthus IRC Twitter Announcer Bot 命令注入漏洞

IRC Twitter Announcer Bot is a bot that posts recent tweets to the channel by Jos Ahrens personal developer. A command injection vulnerability exists in Zarthus IRC Twitter Announcer Bot version 1.1.0 and earlier, which stems from a problem with the function gettweets in the file...

PT-2023-10275 · Unknown · Zarthus Irc Twitter Announcer Bot

Name of the Vulnerable Software and Affected Versions: Zarthus IRC Twitter Announcer Bot versions up to 1.1.0 Description: A critical issue was found in the Zarthus IRC Twitter Announcer Bot, affecting the get tweets function of the file lib/twitterbot/plugins/twitter announcer.rb. The manipulati...

CVE-2022-23922

WIN-911 2021 R1 and R2 are vulnerable to a permissions misconfiguration that may allow an attacker to locally write files to the Program Announcer directory and elevate permissions whenever the program is executed...

CVE-2022-23922 WIN-911 2021 Incorrect Default Permissions

WIN-911 2021 R1 and R2 are vulnerable to a permissions misconfiguration that may allow an attacker to locally write files to the Program Announcer directory and elevate permissions whenever the program is executed...

WIN-911 安全漏洞

Win-911 is a security software from the American company Win-911. It is used for industrial equipment alarm security. A security vulnerability exists in WIN-911 that stems from WIN-911's susceptibility to a privilege misconfiguration. An attacker could use this vulnerability to write files locall...