4 matches found
GLSA-202409-10 : Xen: Multiple Vulnerabilities
The remote host is affected by the vulnerability described in GLSA-202409-10 Xen: Multiple Vulnerabilities Multiple vulnerabilities have been discovered in Xen. Please review the CVE identifiers referenced below for details. Tenable has extracted the preceding description block directly from the...
CVE-2022-4949
The AdSanity plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'ajaxupload' function in versions up to, and including, 1.8.1. This makes it possible for authenticated attackers with Contributor+ level privileges to upload arbitrary files on th...
CVE-2022-4949
CVE-2022-4949 affects the AdSanity WordPress plugin. The vulnerability stems from missing file type validation in the ajax_upload function, vulnerable through versions up to and including 1.8.1. An authenticated attacker with Contributor+ privileges can upload arbitrary files to the server, which...
CVE-2022-4949 AdSanity < 1.8.2 - Authenticated Arbitrary File Upload
The AdSanity plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'ajaxupload' function in versions up to, and including, 1.8.1. This makes it possible for authenticated attackers with Contributor+ level privileges to upload arbitrary files on th...