7 matches found
Linux Distros Unpatched Vulnerability : CVE-2021-43854
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - NLTK Natural Language Toolkit is a suite of open source Python modules, data sets, and tutorials supporting research and development in Natural Language...
CVE-2024-8447 Narayana: deadlock via multiple join requests sent to lra coordinator
A security issue was discovered in the LRA Coordinator component of Narayana. When Cancel is called in LRA, an execution time of approximately 2 seconds occurs. If Join is called with the same LRA ID within that timeframe, the application may crash or hang indefinitely, leading to a denial of...
CVE-2024-9611 Increase upload file size & Maximum Execution Time limit <= 2.0 - Reflected Cross-Site Scripting
The Increase upload file size & Maximum Execution Time limit plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of addqueryarg without appropriate escaping on the URL in all versions up to, and including, 2.0. This makes it possible for unauthenticated attackers t...
CVE-2024-9611
CVE-2024-9611 refers to the WordPress plugin “Increase upload file size & Maximum Execution Time limit” with vulnerable code that uses add_query_arg without proper escaping, enabling Reflected Cross‑Site Scripting in all versions up to 2.0. This allows unauthenticated attackers to inject scripts ...
WordPress Increase upload file size & Maximum Execution Time limit plugin <= 2.0 - Reflected Cross-Site Scripting vulnerability
Reflected Cross-Site Scripting vulnerability discovered by vgo0 in WordPress Plugin Increase upload file size & Maximum Execution Time limit versions = 2.0...
Denial Of Service (DoS)
php is vulnerable to denial of service DoS. The vulnerability exists as an integer signedness issue was found in the PHP zip extension. An attacker could use a specially-crafted ZIP archive to cause the PHP interpreter to use an excessive amount of CPU time until the script execution time limit i...
Joomla Component MisterEstate Blind SQL Injection Exploit
No description provided by source. ?php echo 'h2Joomla Component MisterEstate Blind SQL Injection Exploit/h2'; // http://www.misterestate.com/ iniset "memorylimit", "512M" ; iniset "maxexecutiontime", 0 ; settimelimit 0 ; if !isset $GET'url' die 'Usage: '.$SERVER'SCRIPTNAME'.'?url=www.victim.com'...