CVE-2024-33668

An issue in Zammad prior to 6.3.0 affects the Upload Cache: insecure, partially guessable FormIDs identify content, enabling brute-force attempts to upload malicious content to article drafts the attacker cannot access. Impact is high (CVE-2024-33668) with the base CVSS v3.1 score of 9.1 (NETWORK...

CVE-2024-33668

An issue was discovered in Zammad before 6.3.0. The Zammad Upload Cache uses insecure, partially guessable FormIDs to identify content. An attacker could try to brute force them to upload malicious content to article drafts they have no access to...

CVE-2024-33668

An issue was discovered in Zammad before 6.3.0. The Zammad Upload Cache uses insecure, partially guessable FormIDs to identify content. An attacker could try to brute force them to upload malicious content to article drafts they have no access to...

PT-2024-25425 · Zammad · Zammad

Name of the Vulnerable Software and Affected Versions: Zammad versions prior to 6.3.0 Description: An issue was discovered where the Zammad Upload Cache uses insecure, partially guessable FormIDs to identify content. This could allow an attacker to brute force these IDs and upload malicious conte...

GHSA-9J39-4686-M3C4 Ibexa Kernel's files with blacklisted extensions can be still saved to drafts

Impact File validation can be configured to reject certain files by file type. When this happens, validation fails, and the content can't be published. However, the file can be saved when saving the content draft. This means unwanted files can be present in storage, even if they are not easily...

CVE-2024-0592

The Related Posts for WordPress plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.2.1. This is due to missing or incorrect nonce validation on the handlecreatelink function. This makes it possible for unauthenticated attackers to add related...

CVE-2023-7072

The Post Grid Combo – 36+ Gutenberg Blocks plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.2.68 via the 'getposts' REST API Endpoint. This makes it possible for unauthenticated attackers to extract sensitive data including full draft...

CVE-2023-7072

The Post Grid Combo – 36+ Gutenberg Blocks plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.2.68 via the 'getposts' REST API Endpoint. This makes it possible for unauthenticated attackers to extract sensitive data including full draft...

WordPress plugin Relevanssi security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. The WordPress plugin Relevanssi version...

[SECURITY] Fedora 38 Update: fizz-2023.10.16.00-1.fc38

Fizz is a TLS 1.3 implementation. Fizz currently supports TLS 1.3 drafts 28, 26 both wire-compatible with the final specification, and 23. All major handshake modes are supported, includ ing PSK resumption, early data, client authentication, and HelloRetryRequest...

[SECURITY] Fedora 37 Update: fizz-2023.10.16.00-1.fc37

Fizz is a TLS 1.3 implementation. Fizz currently supports TLS 1.3 drafts 28, 26 both wire-compatible with the final specification, and 23. All major handshake modes are supported, includ ing PSK resumption, early data, client authentication, and HelloRetryRequest...

CVE-2023-38706 Discourse vulnerable to DoS via drafts

Discourse is an open-source discussion platform. Prior to version 3.1.1 of the stable branch and version 3.2.0.beta1 of the beta and tests-passed branches, a malicious user can create an unlimited number of drafts with very long draft keys which may end up exhausting the resources on the server...

CVE-2023-38706 Discourse vulnerable to DoS via drafts

Discourse is an open-source discussion platform. Prior to version 3.1.1 of the stable branch and version 3.2.0.beta1 of the beta and tests-passed branches, a malicious user can create an unlimited number of drafts with very long draft keys which may end up exhausting the resources on the server...

Discourse Security Breach

Discourse is an open source community discussion platform. The platform includes features such as communities, e-mail and chat rooms. A security vulnerability exists in Discourse, which stems from a vulnerability that allows an attacker to create an unlimited number of drafts by using a long draf...

UBUNTU-CVE-2023-4875

Null pointer dereference when composing from a specially crafted draft message in Mutt 1.5.2 2.2.12...

HackerOne: 2M Reports on HackerOne Celebration! - Ability to bulk-submit many reports.

Vulnerability description not provided...

WordPress Plugin Shortcodes Ultimate 信息泄露漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. An information disclosure vulnerability...

CVE-2023-0749

The Ocean Extra WordPress plugin before 2.1.3 does not ensure that the template to be loaded via a shortcode is actually a template, allowing any authenticated users such as subscriber to retrieve the content of arbitrary posts, such as draft, private or even password protected ones...

CVE-2023-0772

The Popup Builder by OptinMonster WordPress plugin before 2.12.2 does not ensure that the campaign to be loaded via some shortcodes is actually a campaign, allowing any authenticated users such as subscriber to retrieve the content of arbitrary posts, like draft, private or even password protecte...

SUSE CVE-2015-5332

Atto in Moodle 2.8.x before 2.8.9 and 2.9.x before 2.9.3 allows remote attackers to cause a denial of service disk consumption by leveraging the guest role and entering drafts with the editor-autosave feature...