Lucene search
K

245 matches found

Citrix
Citrix
added 2024/07/13 12:0 a.m.8 views

Best Practice for Setting the Citrix Profile Manager Cache File for Provisioning Services Server

This article describes the best practice for setting the Citrix Profile Manager Cache file for Provisioning Services PVSServer...

7.1AI score
Exploits0
Positive Technologies
Positive Technologies
added 2024/01/29 12:0 a.m.8 views

PT-2024-15229 · WordPress · Wp Staging

Name of the Vulnerable Software and Affected Versions: WP STAGING WordPress Backup plugin versions prior to 3.2.0 Description: The issue allows access to cache files during the cloning process. This provides unauthorized access to sensitive information. Recommendations: For versions prior to 3.2....

7.5CVSS7.8AI score0.00644EPSS
Exploits2References4
wpexploit
wpexploit
added 2024/01/05 12:0 a.m.158 views

WP STAGING WordPress Backup Plugin – Migration Backup Restore < 3.2.0 - Unauthorized Sensitive Data Exposure

Description The plugin allows access to cache files during the cloning process which provides unauthorized access to sensitive data 1 When an admin creates a staging site, an attacker can capture a .cache file which reveals sensitive information including: DBname, DBtables, DBcolumns. 2 These fil...

7.5CVSS6.6AI score0.00644EPSS
Exploits2
ATTACKERKB
ATTACKERKB
added 2023/09/27 3:19 p.m.4 views

CVE-2023-43291

Deserialization of Untrusted Data in emlog pro v.2.1.15 and earlier allows a remote attacker to execute arbitrary code via the cache.php component...

9.8CVSS6.2AI score0.01552EPSS
Exploits1References2
CNNVD
CNNVD
added 2023/04/10 12:0 a.m.4 views

WordPress plugin Hummingbird 路径遍历漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A path traversal vulnerability exis...

9.8CVSS8.4AI score0.01119EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2023/03/29 12:0 a.m.25 views

Wago PFC200 iocheckd service 'I/O-Check' cache gateway Memory Corruption (CVE-2019-5184)

An exploitable double free vulnerability exists in the iocheckd service I/O-Check functionality of WAGO PFC 200. A specially crafted XML cache file written to a specific location on the device can cause a heap pointer to be freed twice, resulting in a denial of service and potentially code...

7.8CVSS7.6AI score0.00848EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2023/03/29 12:0 a.m.18 views

Wago PFC200 iocheckd service 'I/O-Check' cache Memory Corruption (CVE-2019-5185)

An exploitable stack buffer overflow vulnerability vulnerability exists in the iocheckd service I/O-Check functionality of WAGO PFC 200. An attacker can send a specially crafted packet to trigger the parsing of this cache file. At 0x1ea28 the extracted state value from the xml file is used as an...

7CVSS7.4AI score0.00846EPSS
Exploits1References2
WPVulnDB
WPVulnDB
added 2023/03/20 12:0 a.m.40 views

Hummingbird < 3.4.2 - Unauthenticated Path Traversal

The plugin does not validate the generated file path for page cache files before writing them, leading to a path traversal vulnerability in the page cache module. This allows an attacker to: - Enumerate file system directories where the user who starts the web server process has write access. -...

9.8CVSS9AI score0.01119EPSS
Exploits2Affected Software1
Tenable Nessus
Tenable Nessus
added 2023/03/05 12:0 a.m.56 views

FreeBSD : curl -- multiple vulnerabilities (be233fc6-bae7-11ed-a4fb-080027f5fec9)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the be233fc6-bae7-11ed-a4fb-080027f5fec9 advisory. - A cleartext transmission of sensitive information vulnerability exists in curl v7.88.0 that...

9.1CVSS6.5AI score0.01703EPSS
Exploits2References5
SUSE CVE
SUSE CVE
added 2023/02/15 6:21 a.m.4 views

SUSE CVE-2003-0887

ez-ipupdate 3.0.11b7 and earlier creates insecure temporary cache files, which allows local users to conduct unauthorized operations via a symlink attack on the ez-ipupdate.cache file...

2.1CVSS6.5AI score0.00294EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 6:13 a.m.6 views

SUSE CVE-2006-5973

Off-by-one buffer overflow in Dovecot 1.0test53 through 1.0.rc14, and possibly other versions, when index files are used and mmapdisable is set to "yes," allows remote authenticated IMAP or POP3 users to cause a denial of service crash via unspecified vectors involving the cache file...

5CVSS7.2AI score0.02645EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2023/02/15 5:38 a.m.4 views

SUSE CVE-2013-2217

cache.py in Suds 0.4, when tempdir is set to None, allows local users to redirect SOAP queries and possibly have other unspecified impact via a symlink attack on a cache file with a predictable name in /tmp/suds/...

1.2CVSS6.9AI score0.00558EPSS
Exploits0References7
SUSE CVE
SUSE CVE
added 2023/02/15 5:24 a.m.5 views

SUSE CVE-2014-9838

magick/cache.c in ImageMagick 6.8.9-9 allows remote attackers to cause a denial of service crash...

5.5CVSS6.7AI score0.01166EPSS
Exploits0References8
SUSE CVE
SUSE CVE
added 2023/02/15 5:0 a.m.4 views

SUSE CVE-2016-5384

fontconfig before 2.12.1 does not validate offsets, which allows local users to trigger arbitrary free calls and consequently conduct double free attacks and execute arbitrary code via a crafted cache file...

7.8CVSS7.5AI score0.00403EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2023/02/14 12:0 a.m.25 views

Wago PFC200 iocheckd service 'I/O-Check' cache Command Injection (CVE-2019-5173)

An exploitable command injection vulnerability exists in the iocheckd service I/O-Check' function of the WAGO PFC 200 Firmware version 03.02.0214. A specially crafted XML cache file written to a specific location on the device can be used to inject OS commands. An attacker can send a specially...

7.8CVSS7.5AI score0.01358EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2023/02/14 12:0 a.m.20 views

Wago PFC200 iocheckd service 'I/O-Check' cache Code Execution (CVE-2019-5178)

An exploitable stack buffer overflow vulnerability vulnerability exists in the iocheckd service I/O-Check' functionality of WAGO PFC 200 Firmware version 03.02.0214. An attacker can send a specially crafted packet to trigger the parsing of this cache file. The destination buffer sp+0x440 is...

7.8CVSS7.8AI score0.00656EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2023/02/14 12:0 a.m.20 views

Wago PFC200 iocheckd service 'I/O-Check' cache Command Injection (CVE-2019-5170)

An exploitable command injection vulnerability exists in the iocheckd service I/O-Check' function of the WAGO PFC 200 Firmware version 03.02.0214. A specially crafted XML cache file written to a specific location on the device can be used to inject OS commands. An attacker can send a specially...

7.8CVSS7.5AI score0.01358EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2023/02/14 12:0 a.m.20 views

Wago PFC200 iocheckd service 'I/O-Check' cache Command Injection (CVE-2019-5175)

An exploitable command injection vulnerability exists in the iocheckd service I/O-Check' function of the WAGO PFC 200 Firmware version 03.02.0214. A specially crafted XML cache file written to a specific location on the device can be used to inject OS commands. An attacker can send a specially...

7.8CVSS7.5AI score0.01358EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2023/02/14 12:0 a.m.17 views

Wago PFC200 iocheckd service 'I/O-Check' cache Command Injection (CVE-2019-5174)

An exploitable command injection vulnerability exists in the iocheckd service I/O-Check' function of the WAGO PFC 200 version 03.02.0214. A specially crafted XML cache file written to a specific location on the device can be used to inject OS commands. An attacker can send a specially crafted...

7.8CVSS7.5AI score0.01358EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2023/02/14 12:0 a.m.21 views

Wago PFC200 iocheckd service 'I/O-Check' cache Code Execution (CVE-2019-5181)

An exploitable stack buffer overflow vulnerability vulnerability exists in the iocheckd service I/O-Check' functionality of WAGO PFC 200 Firmware version 03.02.0214. A specially crafted XML cache file written to a specific location on the device can cause a stack buffer overflow, resulting in cod...

7.8CVSS8AI score0.00818EPSS
Exploits1References2
Rows per page
Query Builder