Lucene search
K

28 matches found

NVD
NVD
added 5 days ago8 views

CVE-2026-12685

The EscortWP escortwp WordPress theme through 3.6.2 was distributed with a vendor-authored, obfuscated backdoor that lets an unauthenticated attacker who supplies a hard-coded, per-build key permanently delete all of the site's content, and that covertly transmits the site URL, administrator emai...

7.5CVSS0.00222EPSS
Exploits0References1
EUVD
EUVD
added 5 days ago6 views

EUVD-2026-42830

The EscortWP escortwp WordPress theme through 3.6.2 was distributed with a vendor-authored, obfuscated backdoor that lets an unauthenticated attacker who supplies a hard-coded, per-build key permanently delete all of the site's content, and that covertly transmits the site URL, administrator emai...

7.5CVSS6AI score0.00222EPSS
Exploits0References1
CVE
CVE
added 5 days ago9 views

CVE-2026-12685

The CVE describes a backdoor in the EscortWP escortwp WordPress theme up to version 3.6.2. The backdoor is vendor-authored and obfuscated, allowing an unauthenticated attacker who supplies a hard-coded per-build key to permanently delete all site content. It also covertly transmits the site URL, ...

7.5CVSS5.8AI score0.00222EPSS
Exploits0References1
Cvelist
Cvelist
added 5 days ago32 views

CVE-2026-12685 EscortWP <= 3.6.2 - Content Deletion via Vendor-Authored Backdoor

The EscortWP escortwp WordPress theme through 3.6.2 was distributed with a vendor-authored, obfuscated backdoor that lets an unauthenticated attacker who supplies a hard-coded, per-build key permanently delete all of the site's content, and that covertly transmits the site URL, administrator emai...

0.00222EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2025/02/25 12:0 a.m.5 views

openSUSE Security Advisory (SUSE-SU-2024:0444-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.8AI score
Exploits0References5
Snyk
Snyk
added 2024/12/06 4:41 p.m.3 views

Use of Weak Hash

Overview asu is an An image on demand server for OpenWrt based distributions Affected versions of this package are vulnerable to Use of Weak Hash which allows the ASU server to be polluted with malicious firmware images. Due to the low entropy employed when only 12 characters are used from the...

10CVSS7.1AI score0.01867EPSS
Exploits0References2
OSV
OSV
added 2024/07/12 1:55 p.m.5 views

SUSE-SU-2024:2467-1 Security update for fdo-client

This update for fdo-client fixes the following issues: - Removed build key via utils/keysgen.sh. bsc1216293...

7.2AI score
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/07/12 12:0 a.m.6 views

PT-2024-41000 · Unknown · Fdo-Client

Name of the Vulnerable Software and Affected Versions: fdo-client affected versions not specified Description: The issue concerns the removal of a build key via utils/keys gen.sh. Recommendations: At the moment, there is no information about a newer version that contains a fix for this...

7AI score
Exploits0References3
OpenVAS
OpenVAS
added 2024/03/04 12:0 a.m.8 views

openSUSE: Security Advisory for suse (SUSE-SU-2023:4672-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/02/12 12:0 a.m.22 views

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : suse-build-key (SUSE-SU-2024:0444-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2024:0444-1 advisory. This update runs a import-suse-build-key script. The previous libzypp-post-script based installation is...

5.9AI score
Exploits0References3
OpenVAS
OpenVAS
added 2024/02/12 12:0 a.m.9 views

SUSE: Security Advisory (SUSE-SU-2024:0444-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.8AI score
Exploits0References5
OSV
OSV
added 2024/02/09 3:39 p.m.6 views

SUSE-SU-2024:0444-1 Security update for suse-build-key

This update for suse-build-key fixes the following issues: This update runs a import-suse-build-key script. The previous libzypp-post-script based installation is replaced with a systemd timer and service bsc1217215 bsc1216410 jscPED-2777. - suse-build-key-import.service -...

7.3AI score
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2023/12/07 12:0 a.m.13 views

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : suse-build-key (SUSE-SU-2023:4672-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2023:4672-1 advisory. This update runs a import-suse-build-key script. The previous libzypp-post-script based installation is...

5.9AI score
Exploits0References3
OpenVAS
OpenVAS
added 2023/12/07 12:0 a.m.7 views

SUSE: Security Advisory (SUSE-SU-2023:4672-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.8AI score
Exploits0References5
OSV
OSV
added 2023/12/06 1:38 p.m.4 views

SUSE-SU-2023:4672-1 Security update for suse-build-key

This update for suse-build-key fixes the following issues: This update runs a import-suse-build-key script. The previous libzypp-post-script based installation is replaced with a systemd timer and service bsc1217215 bsc1216410 jscPED-2777. - suse-build-key-import.service -...

7.2AI score
Exploits0References3
Positive Technologies
Positive Technologies
added 2023/12/06 12:0 a.m.6 views

PT-2023-36296 · Suse · Suse-Build-Key

Name of the Vulnerable Software and Affected Versions: suse-build-key affected versions not specified Description: This issue involves an update for suse-build-key that replaces the previous libzypp-post-script based installation with a systemd timer and service. The update imports the future SUS...

6.9AI score
Exploits0References4
OSV
OSV
added 2023/11/24 8:12 a.m.4 views

SUSE-SU-2023:4550-1 Security update for fdo-client

This update for fdo-client fixes the following issues: - Removed build key via utils/keysgen.sh. bsc1216293...

7.2AI score
Exploits0References2
OSV
OSV
added 2023/11/24 8:12 a.m.4 views

SUSE-SU-2023:4549-1 Security update for fdo-client

This update for fdo-client fixes the following issues: - Removed build key via utils/keysgen.sh. bsc1216293...

7.2AI score
Exploits0References2
OSV
OSV
added 2023/11/24 8:12 a.m.5 views

SUSE-SU-2023:4548-1 Security update for fdo-client

This update for fdo-client fixes the following issues: - Removed build key via utils/keysgen.sh. bsc1216293...

7.2AI score
Exploits0References2
OSV
OSV
added 2023/11/24 8:12 a.m.4 views

SUSE-SU-2023:4547-1 Security update for fdo-client

This update for fdo-client fixes the following issues: - Removed build key via utils/keysgen.sh. bsc1216293...

7.2AI score
Exploits0References2
Rows per page
Query Builder