8 matches found
Linux Distros Unpatched Vulnerability : CVE-2020-4050
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In affected versions of WordPress, misuse of the set-screen-option filter's return value allows arbitrary user meta fields to be saved. It does require an admin...
Debian: Security Advisory (DLA-2269-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DLA 2269-1] wordpress security update
Package : wordpress Version : 4.1.31+dfsg-0+deb8u1 CVE ID : CVE-2020-4046 CVE-2020-4047 CVE-2020-4048 CVE-2020-4049 CVE-2020-4050 Debian Bug : 962685 Several vulnerabilities were discovered in Wordpress, a web blogging tool. They allowed remote attackers to perform various Cross-Side Scripting XS...
[SECURITY] [DSA 4709-1] wordpress security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4709-1 [email protected] https://www.debian.org/security/ Sebastien Delafond June 23, 2020 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4709-1] wordpress security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4709-1 [email protected] https://www.debian.org/security/ Sebastien Delafond June 23, 2020 https://www.debian.org/security/faq -...
CVE-2020-4050
In affected versions of WordPress, misuse of the set-screen-option filter's return value allows arbitrary user meta fields to be saved. It does require an admin to install a plugin that would misuse the filter. Once installed, it can be leveraged by low privileged users. This has been patched in...
CVE-2020-4050 set-screen-option filter misuse by plugins leading to privilege escalation in WordPress
In affected versions of WordPress, misuse of the set-screen-option filter's return value allows arbitrary user meta fields to be saved. It does require an admin to install a plugin that would misuse the filter. Once installed, it can be leveraged by low privileged users. This has been patched in...
CVE-2020-4050
CVE-2020-4050 (WordPress) is a vulnerability where misusing the set-screen-option filter’s return value can enable arbitrary user meta fields to be saved. It requires an admin to install a plugin that misuses the filter, after which low-privilege users may exploit it. The issue was fixed in WordP...