15 matches found
EUVD-2020-11063
Malware in sbrugna...
CVE-2020-19156
Cross Site Scripting XSS in Ari Adminer v1 allows remote attackers to execute arbitrary code via the 'Title' parameter of the 'Add New Connections' component when the 'save' function is called...
CVE-2019-25215
The ARI-Adminer plugin for WordPress is vulnerable to authorization bypass due to a lack of file access controls in nearly every file of the plugin in versions up to, and including, 1.1.14. This makes it possible for unauthenticated attackers to call the files directly and perform a wide variety ...
CVE-2019-25215
The ARI-Adminer plugin for WordPress is vulnerable to authorization bypass due to a lack of file access controls in nearly every file of the plugin in versions up to, and including, 1.1.14. This makes it possible for unauthenticated attackers to call the files directly and perform a wide variety ...
CVE-2019-25215 ARI-Adminer <= 1.1.14 - Missing Authorization and No Direct File Access Restrictions
The ARI-Adminer plugin for WordPress is vulnerable to authorization bypass due to a lack of file access controls in nearly every file of the plugin in versions up to, and including, 1.1.14. This makes it possible for unauthenticated attackers to call the files directly and perform a wide variety ...
CVE-2019-25215
The ARI-Adminer plugin for WordPress (up to version 1.1.14) is vulnerable to authorization bypass due to a lack of file access controls in nearly every file. This allows unauthenticated attackers to directly call plugin files and perform unauthorized actions such as accessing or modifying a site’...
WordPress plugin ARI-Adminer 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plug-in. A security vulnerability...
VulnCheck KEV: CVE-2019-25215
The ARI-Adminer plugin for WordPress is vulnerable to authorization bypass due to a lack of file access controls in nearly every file of the plugin in versions up to, and including, 1.1.14. This makes it possible for unauthenticated attackers to call the files directly and perform a wide...
PT-2024-10746 · WordPress · Ari Adminer
Name of the Vulnerable Software and Affected Versions: ARI-Adminer plugin for WordPress versions up to, and including, 1.1.14 Description: The ARI-Adminer plugin for WordPress is vulnerable to authorization bypass due to a lack of file access controls in nearly every file of the plugin. This make...
CVE-2020-19156
Cross Site Scripting XSS in Ari Adminer v1 allows remote attackers to execute arbitrary code via the 'Title' parameter of the 'Add New Connections' component when the 'save' function is called...
CVE-2020-19156
Cross Site Scripting XSS in Ari Adminer v1 allows remote attackers to execute arbitrary code via the 'Title' parameter of the 'Add New Connections' component when the 'save' function is called...
CVE-2020-19156
Cross Site Scripting XSS in Ari Adminer v1 allows remote attackers to execute arbitrary code via the 'Title' parameter of the 'Add New Connections' component when the 'save' function is called...
CVE-2020-19156
CVE-2020-19156 affects Ari Adminer v1 (WordPress plugin). An XSS flaw in the Add New Connections -> save() path via the Title parameter allows remote input handling that could lead to code execution. Root cause: insufficient input sanitization in the vulnerable component. Impact stated as XSS ...
WordPress 插件跨站脚本漏洞
WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language . The platform supports personal blog sites on PHP and MySQL servers.WordPress Plugin is an open source application plugin for WordPress. A cross-site scripting vulnerability exists in the WordPress...
WordPress Ari Adminer 1.1.12 Database Disclosure
Exploit Title : WordPress Ari Adminer Plugins 1.1.12 Database Backup Disclosure Author Discovered By : KingSkrupellos from Cyberizm Digital Security Army Date : 06/12/2018 Vendor Homepage : ari-soft.com wordpress.org/plugins/ari-adminer/ Software Download Link :...