5 matches found
SUSE CVE-2025-3063
The Shopper Approved Reviews plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the ajaxcallbackupdatesaoption function in versions 2.0 to 2.1. This makes it possible for authenticated attackers, with...
Security update for chromium (important)
openSUSE security update: security update for chromium ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20277-1 Rating: important References: bsc1258733 Cross-References: CVE-2025-3063 CVE-2026-3061 CVE-2026-3062 Affected Products: openSUSE Leap 16.0...
OPENSUSE-SU-2026:20277-1 Security update for chromium
This update for chromium fixes the following issues: Changes in chromium: - Chromium 145.0.7632.116 boo1258733: CVE-2026-3061: Out of bounds read in Media CVE-2026-3062: Out of bounds read and write in Tint CVE-2025-3063: Inappropriate implementation in DevTools...
CVE-2025-3063
The Shopper Approved Reviews plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the ajaxcallbackupdatesaoption function in versions 2.0 to 2.1. This makes it possible for authenticated attackers, with...
CVE-2025-3063
CVE-2025-3063 (Shopper Approved Reviews, WordPress) is a real vulnerability affecting the Shopper Approved Reviews plugin (versions 2.0–2.1) where a missing capability check in ajax_callback_update_sa_option() allows authenticated users with Subscriber+ privileges to modify arbitrary site options...