542 matches found
WordPress Animated Counters plugin <= 2.0 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by theviper17y in WordPress Plugin Animated Counters versions = 2.0...
PT-2024-17338 · WordPress · Animated Counters
Name of the Vulnerable Software and Affected Versions: Animated Counters plugin for WordPress versions up to, and including, 2.0 Description: The Animated Counters plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'animatedcounte' shortcode due to insufficient inp...
WordPress plugin Animated Counters 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...
kernel: octeontx2-af: fix the double free in rvu_npc_freemem()
In the Linux kernel, the following vulnerability has been resolved: octeontx2-af: fix the double free in rvunpcfreemem Clang static checkerscan-build warning: drivers/net/ethernet/marvell/octeontx2/af/rvunpc.c:line 2184, column 2 Attempt to free released memory. npcmcamrsrcsdeinit has released...
SUSE CVE-2024-49973
In the Linux kernel, the following vulnerability has been resolved: r8169: add tally counter fields added with RTL8125 RTL8125 added fields to the tally counter, what may result in the chip dma'ing these new fields to unallocated memory. Therefore make sure that the allocated memory area is big...
The vulnerability of the gpmi_nfc_exec_op() function (drivers/mtd/nand/raw/gpmi-nand/gpmi-nand.c) in the Linux kernel’s MTD driver allows a attacker to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of the gpminfcexecop function drivers/mtd/nand/raw/gpmi-nand/gpmi-nand.c in Linux kernel-based drivers is related to incorrect updates of link counters. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of...
Performance Counter Side Channel
Bulletin ID: AMD-SB-3013 Potential Impact: N/A Severity: N/A Summary Researchers from Graz University of Technology, Austria, have reported a way for a malicious hypervisor to monitor performance counters and potentially recover data from a guest VM...
BITS performance counters not working after publishing App Layering image to PVS
When you published an image from App Layering to PVS, Target Devices may not show BITS performance counters...
CVE-2024-46790
In the Linux kernel, the following vulnerability has been resolved: codetag: debug: mark codetags for poisoned page as empty When PGhwpoison pages are freed they are treated differently in freepagesprepare and instead of being released they are isolated. Page allocation tag counters are decrement...
UBUNTU-CVE-2024-46790
In the Linux kernel, the following vulnerability has been resolved: codetag: debug: mark codetags for poisoned page as empty When PGhwpoison pages are freed they are treated differently in freepagesprepare and instead of being released they are isolated. Page allocation tag counters are decrement...
DEBIAN-CVE-2024-46711
In the Linux kernel, the following vulnerability has been resolved: mptcp: pm: fix ID 0 endp usage after multiple re-creations 'localaddrused' and 'addaddraccepted' are decremented for addresses not related to the initial subflow ID0, because the source and destination addresses of the initial...
CVE-2024-43957
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Sk. Abul Hasan Animated Number Counters allows PHP Local File Inclusion.This issue affects Animated Number Counters: from n/a through 1.9...
CVE-2024-43957
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Sk. Abul Hasan Animated Number Counters allows PHP Local File Inclusion.This issue affects Animated Number Counters: from n/a through 1.9...
CVE-2024-43957 WordPress Animated Number Counters plugin <= 1.9 - Editor+ Limited Local File Inclusion vulnerability
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Sk. Abul Hasan Animated Number Counters allows PHP Local File Inclusion.This issue affects Animated Number Counters: from n/a through 1.9...
CVE-2024-43957 WordPress Animated Number Counters plugin <= 1.9 - Editor+ Limited Local File Inclusion vulnerability
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Sk. Abul Hasan Animated Number Counters allows PHP Local File Inclusion.This issue affects Animated Number Counters: from n/a through 1.9...
CVE-2024-43957
CVE-2024-43957 affects the Animated Number Counters WordPress plugin (up to version 1.9) and is a Path Traversal (PHP Local File Inclusion) flaw caused by improper pathname restriction. Exploitation requires Editor-level access (Authenticated), enabling an attacker to attempt local file access vi...
PT-2024-30819 · WordPress · Sk. Abul Hasan Animated Number Counters
Name of the Vulnerable Software and Affected Versions: Sk. Abul Hasan Animated Number Counters versions n/a through 1.9 Description: The issue is related to an Improper Limitation of a Pathname to a Restricted Directory, also known as 'Path Traversal', which allows PHP Local File Inclusion in the...
WordPress plugin Animated Number Counters 路径遍历漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A path traversal...
WordPress Animated Number Counters plugin <= 2.1 - Editor+ Limited Local File Inclusion vulnerability
Editor+ Limited Local File Inclusion vulnerability discovered by João Pedro Soares de Alcântara - Kinorth Patchstack Alliance in WordPress Plugin Animated Number Counters versions = 2.1...
PT-2024-32203
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.10.9 Description The issue arises when PG hwpoison pages are freed and treated differently in free pages prepare, leading to isolation instead of release. Page allocation tag counters are decremented, consideri...