CVE-2013-10024

CVE-2013-10024 affects the Exit Strategy Plugin for WordPress (versions 1.55–1.58; addressed in 1.59). The vulnerability, triggered in exitpage.php, enables information disclosure via a remotely exploitable condition. A patch is available (patch ID d964b8e961b2634158719f3328f16eda16ce93ac), upgra...

CVE-2013-10024 Exit Strategy Plugin exitpage.php information disclosure

A vulnerability has been found in Exit Strategy Plugin 1.55 on WordPress and classified as problematic. Affected by this vulnerability is an unknown functionality of the file exitpage.php. The manipulation leads to information disclosure. The attack can be launched remotely. Upgrading to version...

PT-2023-10014 · Unknown · Exit Strategy Plugin

Name of the Vulnerable Software and Affected Versions: Exit Strategy Plugin versions 1.55 through 1.58 Description: A vulnerability was found in the Exit Strategy Plugin and classified as problematic. The issue affects the exitpageadmin function of the file exitpage.php. This manipulation leads t...

WordPress Plugin Exit Strategy 信息泄露漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed in the PHP language that supports personal blogs on PHP and MySQL servers.WordPress plugin is an application...

PT-2023-10013 · Unknown · Exit Strategy Plugin

Name of the Vulnerable Software and Affected Versions: Exit Strategy Plugin versions 1.55 through 1.58 Description: A vulnerability has been found in the Exit Strategy Plugin, affecting an unknown functionality of the file exitpage.php. This issue leads to information disclosure and can be...

WordPress Plugin Exit Strategy 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed in the PHP language that supports personal blogs on PHP and MySQL servers.WordPress plugin is an application...

Linux/x86_64 - bash Shellcode with xor encoding Shellcode (71 bytes)

Exploit Title: Linux/x8664 - bash shellcode with xor encoding Date: 05/02/2023 Exploit Author: Jeenika Anadani Contact: https://twitter.com/cyberjeeni Category: Shellcode Architectue: Linux x8664 Shellcode Length: 71 Bytes ----------------------- section .data section .text global start start: ;...

The vulnerability of real-time operating systems like Wind River VxWorks arises from executing a loop with an unreachable exit condition, allowing attackers to cause system failures.

The vulnerability of real-time operating systems like Wind River VxWorks lies in the execution of a loop with an unavailable exit condition. Exploiting this vulnerability allows a malicious actor to cause a service failure by sending a specially crafted package from the RADIUS server...

PT-2023-3340 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux Kernel affected versions not specified Description: A flaw was found in the cpufreq subsystem of the Linux Kernel, specifically in the drivers/cpufreq/qcom-cpufreq-hw.c file. This issue is related to the qcom cpufreq hw cpu exit functio...

The vulnerability of the Exiv2 metadata management library commands, related to executing a loop with an unreachable exit condition, allows a hacker to cause a service failure.

The vulnerability of the Exiv2 metadata management library commands is related to the execution of a loop with an unreachable exit condition. Exploiting this vulnerability could allow a malicious actor to cause service failure by using a specially created image file...

The vulnerability of the Exiv2 metadata management library commands, related to executing a loop with an unreachable exit condition, allows a hacker to cause a service failure.

The vulnerability of the Exiv2 metadata management library commands is related to the execution of a loop with an unavailable exit condition. Exploiting this vulnerability could allow a malicious actor to cause service failure by using a specially created image file...

The vulnerability of the Convert::ASN1 module in the data processing library using ASN.1 definitions allows a attacker to cause a service failure.

The vulnerability of the Convert::ASN1 module in the data processing library that uses ASN.1 definitions allows for a loop with an unreachable exit condition. Exploiting this vulnerability can enable a malicious actor to cause service failures...

UBUNTU-CVE-2023-28100

Flatpak is a system for building, distributing, and running sandboxed desktop applications on Linux. Versions prior to 1.10.8, 1.12.8, 1.14.4, and 1.15.4 contain a vulnerability similar to CVE-2017-5226, but using the TIOCLINUX ioctl command instead of TIOCSTI. If a Flatpak app is run on a Linux...

Flatpak 输入验证错误漏洞

Flatpak is an application virtualization system for Linux desktop application computer environments. An input validation error vulnerability exists in Flatpak versions prior to 1.10.8, 1.12.x through 1.12.8, 1.14.x through 1.14.4, and 1.15.x through 1.15.4. An attacker using this vulnerability...

GSD-2023-1002360 powerpc/64s/interrupt: Fix interrupt exit race with security mitigation switch

powerpc/64s/interrupt: Fix interrupt exit race with security mitigation switch This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.94 by commi...

The vulnerability of the spectre_v2_select_mitigation() function in the Linux operating system allows a hacker to execute arbitrary code.

The vulnerability of the spectrev2selectmitigation function in the Linux operating system is related to errors in Intel processors when processing the RET instruction after the termination of a virtual machine. Exploiting this vulnerability allows an attacker to execute arbitrary code...

The vulnerability of AMD’s SMT processor technology, which allows a hacker to disclose protected information

The vulnerability of AMD’s SMT processor technology is related to errors that occur after the processor’s core exits the C0 sleep state. Exploiting this vulnerability can allow an attacker to disclose protected information i.e., gain access to the RAP Return Address Predictor...

K15912: Linux kernel driver vulnerabilities CVE-2014-3185, CVE-2014-3611, CVE-2014-3645, and CVE-2014-3646

Security Advisory Description CVE-2014-3185 Multiple buffer overflows in the commandportreadcallback function in drivers/usb/serial/whiteheat.c in the Whiteheat USB Serial Driver in the Linux kernel before 3.16.2 allow physically proximate attackers to execute arbitrary code or cause a denial of...

K40181790: BIND vulnerability CVE-2016-9444

Security Advisory Description named in ISC BIND 9.x before 9.9.9-P5, 9.10.x before 9.10.4-P5, and 9.11.x before 9.11.0-P2 allows remote attackers to cause a denial of service assertion failure and daemon exit via a crafted DS resource record in an answer. CVE-2016-9444 Impact When the BIND...

K16108: BIND vulnerability CVE-2014-8680

Security Advisory Description The GeoIP functionality in ISC BIND 9.10.0 through 9.10.1 allows remote attackers to cause a denial of service assertion failure and named exit via vectors related to 1 the lack of GeoIP databases for both IPv4 and IPv6, or 2 IPv6 support with certain options...