Lucene search
K

8 matches found

OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.21 views

Mageia: Security Advisory (MGASA-2015-0309)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.3AI score0.10986EPSS
Exploits0References6
OSV
OSV
added 2015/11/09 11:59 a.m.5 views

CVE-2015-5730

The sanitizewidgetinstance function in wp-includes/class-wp-customize-widgets.php in WordPress before 4.2.4 does not use a constant-time comparison for widgets, which allows remote attackers to conduct a timing side-channel attack by measuring the delay before inequality is calculated...

6.4AI score
Exploits0References11
CVE
CVE
added 2015/11/09 11:0 a.m.143 views

CVE-2015-5730

CVE-2015-5730 affects WordPress prior to 4.2.4, where sanitize_widget_instance in wp-includes/class-wp-customize-widgets.php does not use a constant-time comparison, enabling a timing side-channel attack on widgets. Public sources (including Debian DSA-3332 and related advisories) corroborate a t...

5CVSS6.4AI score0.08354EPSS
Exploits0References9Affected Software1
Cvelist
Cvelist
added 2015/11/09 11:0 a.m.24 views

CVE-2015-5730

The sanitizewidgetinstance function in wp-includes/class-wp-customize-widgets.php in WordPress before 4.2.4 does not use a constant-time comparison for widgets, which allows remote attackers to conduct a timing side-channel attack by measuring the delay before inequality is calculated...

6.2AI score0.08354EPSS
Exploits0References9
OpenVAS
OpenVAS
added 2015/08/14 12:0 a.m.36 views

Fedora Update for wordpress FEDORA-2015-12148

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS5.7AI score0.10986EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2015/08/14 12:0 a.m.35 views

Fedora Update for wordpress FEDORA-2015-12235

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS5.7AI score0.10986EPSS
Exploits1References2
Debian
Debian
added 2015/08/11 7:55 p.m.45 views

[SECURITY] [DSA 3332-1] wordpress security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3332-1 [email protected] https://www.debian.org/security/ Thijs Kinkhorst August 11, 2015 https://www.debian.org/security/faq -...

7.5CVSS7.3AI score0.10986EPSS
Exploits1
ArchLinux
ArchLinux
added 2015/08/07 12:0 a.m.45 views

wordpress: multiple issues

CVE-2015-2213: SQL injection in comments ID. - CVE-2015-5730: Timing attack in widgets. - CVE-2015-5731: Denial of service by locking a post from being edited. - CVE-2015-5732, CVE-2015-5733 CVE-2015-5734: XSS...

7.5CVSS2.8AI score0.10986EPSS
Exploits0References8
Rows per page
Query Builder