2464 matches found
Aiodnsbrute - DNS Asynchronous Brute Force Utility
A Python 3.5+ tool that uses asyncio to brute force domain names asynchronously. Speed It's fast. Benchmarks on small VPS hosts put around 100k DNS resoultions at 1.5-2mins. An amazon M3 box was used to make 1 mil requests in just over 3 minutes. Your mileage may vary. It's probably best to avoid...
GSD-2022-1004023 zsmalloc: fix races between asynchronous zspage free and page migration
zsmalloc: fix races between asynchronous zspage free and page migration This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.14.282 by commit...
GSD-2022-1003930 zsmalloc: fix races between asynchronous zspage free and page migration
zsmalloc: fix races between asynchronous zspage free and page migration This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.19.246 by commit...
GSD-2022-1003659 zsmalloc: fix races between asynchronous zspage free and page migration
zsmalloc: fix races between asynchronous zspage free and page migration This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.120 by commit...
GSD-2022-1003451 zsmalloc: fix races between asynchronous zspage free and page migration
zsmalloc: fix races between asynchronous zspage free and page migration This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.45 by commit...
GSD-2022-1003184 zsmalloc: fix races between asynchronous zspage free and page migration
zsmalloc: fix races between asynchronous zspage free and page migration This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.17.13 by commit...
GSD-2022-1002867 zsmalloc: fix races between asynchronous zspage free and page migration
zsmalloc: fix races between asynchronous zspage free and page migration This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.18.2 by commit...
CVE-2022-1903
The ARMember WordPress plugin before 3.4.8 is vulnerable to account takeover even the administrator due to missing nonce and authorization checks in an AJAX action available to unauthenticated users, allowing them to change the password of arbitrary users by knowing their username...
The vulnerability of the asynchronous input/output interface io_uring in Linux kernel allows a attacker to prematurely terminate the process or gain elevated privileges.
The vulnerability of the asynchronous input/output interface iouring in Linux operating systems is related to data type mixing errors. Exploiting this vulnerability can allow an attacker to abruptly terminate the process or gain increased privileges...
CVE-2022-1905
The Events Made Easy WordPress plugin before 2.2.81 does not properly sanitise and escape a parameter before using it in a SQL statement via an AJAX action available to unauthenticated users, leading to a SQL injection...
WordPress plugin Events Made Easy SQL注入漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a set of blogging platforms developed using the PHP language. The WordPress plugin is an application plugin. versions of the WordPress Events Made Easy plugin prior to 2.2.81 are vulnerable to SQL injection...
CVE-2022-22068
kernel event may contain unexpected content which is not generated by NPU software in asynchronous execution mode in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables...
CVE-2022-22068
kernel event may contain unexpected content which is not generated by NPU software in asynchronous execution mode in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables...
CVE-2022-22068
kernel event may contain unexpected content which is not generated by NPU software in asynchronous execution mode in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables...
The vulnerability of the asynchronous Moxa NPort 5110 server, related to the possibility of recording outside the allowed range, allows a intruder to trigger a service failure.
The vulnerability of the asynchronous Moxa NPort 5110 server lies in its ability to record data beyond the allowed range. Exploiting this vulnerability could allow a malicious actor to cause service failures remotely...
CVE-2022-1659
Vulnerable versions of the JupiterX Core = 2.0.6 plugin register an AJAX action jupiterxconditionalmanager which can be used to call any function in the includes/condition/class-condition-manager.php file by sending the desired function to call in the subaction parameter. This can be used to view...
CVE-2022-0786
The KiviCare WordPress plugin before 2.3.9 does not sanitise and escape some parameters before using them in SQL statements via the ajaxpost AJAX action with the getdoctordetails route, leading to SQL Injections exploitable by unauthenticated users...
WordPress plugin Filr 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. An authorization issue...
WordPress plugin Simple Membership 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plugin. A cross-site scripting vulnerability exists in versions of the WordPress Simple Membership plugin prior to...
PT-2022-2878 · Moxa · Moxa Nport 5110
Name of the Vulnerable Software and Affected Versions: Moxa NPort 5110 version 2.10 Description: The issue is related to an out-of-bounds write vulnerability in the Moxa NPort 5110 asynchronous server. This vulnerability can be exploited by a remote attacker to cause the device to become...