Lucene search
K

129 matches found

OSV
OSV
added 2024/01/27 12:15 a.m.4 views

CVE-2023-52187

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Thomas Maier Image Source Control Lite – Show Image Credits and Captions.This issue affects Image Source Control Lite – Show Image Credits and Captions: from n/a through 2.17.0...

7.5CVSS5.8AI score
Exploits0References1
NVD
NVD
added 2024/01/27 12:15 a.m.29 views

CVE-2023-52187

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Thomas Maier Image Source Control Lite – Show Image Credits and Captions.This issue affects Image Source Control Lite – Show Image Credits and Captions: from n/a through 2.17.0...

7.5CVSS6AI score0.00481EPSS
Exploits0References1
Prion
Prion
added 2024/01/27 12:15 a.m.14 views

Code injection

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Thomas Maier Image Source Control Lite – Show Image Credits and Captions.This issue affects Image Source Control Lite – Show Image Credits and Captions: from n/a through 2.17.0...

5CVSS7.1AI score0.00481EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2024/01/27 12:0 a.m.2 views

WordPress plugin Image Source Control Lite security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in the...

7.5CVSS6.6AI score0.00481EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/01/26 11:7 p.m.35 views

CVE-2023-52187 WordPress Image Source Control Plugin <= 2.17.0 is vulnerable to Sensitive Data Exposure

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Thomas Maier Image Source Control Lite – Show Image Credits and Captions.This issue affects Image Source Control Lite – Show Image Credits and Captions: from n/a through 2.17.0...

5.3CVSS7.7AI score0.00481EPSS
Exploits0References1
CVE
CVE
added 2024/01/26 11:7 p.m.49 views

CVE-2023-52187

CVE-2023-52187 affects the WordPress plugin Image Source Control Lite – Show Image Credits and Captions . Public records indicate vulnerability is an Exposure of Sensitive Information to an Unauthorized Actor affecting versions from unknown through 2.17.0 . The data sources also indicate this vul...

7.5CVSS7.8AI score0.00481EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2024/01/26 12:0 a.m.9 views

PT-2024-14454 · Unknown · The Image Source Control Lite

Name of the Vulnerable Software and Affected Versions: Image Source Control Lite – Show Image Credits and Captions versions n/a through 2.17.0 Description: The issue is related to Exposure of Sensitive Information to an Unauthorized Actor. This allows unauthorized access to sensitive information...

7.5CVSS7.7AI score0.00481EPSS
Exploits0References6
Patchstack
Patchstack
added 2023/12/29 12:0 a.m.7 views

WordPress Image Source Control Plugin <= 2.17.0 is vulnerable to Sensitive Data Exposure

Software Image Source Control Type Plugin Vulnerable versions = 2.17.0 Fixed in 2.17.1 OWASP Top 10 A9: Security Logging and Monitoring Failures Classification Sensitive Data Exposure CVE CVE-2023-52187 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 66572409bd51 Credits...

7.5CVSS6.6AI score0.00481EPSS
Exploits0References2Affected Software1
QT
QT
added 2023/10/19 12:0 a.m.28 views

Security advisory: Loading invalid QML image source impacts Qt

An issue when loading an invalid QML image source has been reported and has been assigned the CVE id CVE-2023-45872. When an invalid source is used to indicate an image to be loaded is specified then it will end up trying to load it as a SVG file which will trigger a crash in Qt SVG. This does no...

6.5CVSS8.6AI score0.0035EPSS
Exploits0
wpexploit
wpexploit
added 2023/06/26 12:0 a.m.177 views

Querlo Chatbot <= 1.2.4 - Stored Cross-Site Scripting

The plugin does not escape or sanitize chat messages, leading to a stored Cross-Site Scripting vulnerability. Submit the following in the chat message: """ See the XSS in Querlo...

8.7AI score
Exploits1
SUSE CVE
SUSE CVE
added 2023/02/15 6:12 a.m.5 views

SUSE CVE-2007-2589

Cross-site request forgery CSRF vulnerability in compose.php in SquirrelMail 1.4.0 through 1.4.9a allows remote attackers to send e-mails from arbitrary users via certain data in the SRC attribute of an IMG element...

5CVSS7.2AI score0.01374EPSS
Exploits1References4
SUSE CVE
SUSE CVE
added 2023/02/15 5:59 a.m.3 views

SUSE CVE-2010-1989

Opera 9.52 executes a mail application in situations where an IMG element has a SRC attribute that is a redirect to a mailto: URL, which allows remote attackers to cause a denial of service excessive application launches via an HTML document with many images, a related issue to CVE-2010-0181...

5CVSS9.1AI score0.02255EPSS
Exploits1References3
Hacker One
Hacker One
added 2022/12/17 10:52 a.m.14 views

GitLab: Stored XSS via Kroki diagram

Arbitrary javascript could be executed when a victim views a comment on GitLab due to a stored XSS vulnerability via Kroki diagram. This was possible by crafting a pre block so that arbitrary attributes can be injected into the resulting img tag. The vulnerability was caused by the lang attribute...

5.8AI score
Exploits0
Kitploit
Kitploit
added 2022/01/12 11:30 a.m.28 views

RAUDI - A Repo To Automatically Generate And Keep Updated A Series Of Docker Images Through GitHub Actions

RAUDI Regularly and Automatically Updated Docker Images automatically generates and keep updated a series of Docker Images through GitHub Actions for tools that are not provided by the developers. What is RAUDI RAUDI is what will save you from creating and managing a lot of Docker Images manually...

7.3AI score
Exploits0References28
ATTACKERKB
ATTACKERKB
added 2021/12/02 10:15 p.m.2 views

CVE-2020-36129

AOM v2.0.1 was discovered to contain a stack buffer overflow via the component src/aomimage.c...

8.8CVSS5.6AI score0.01371EPSS
Exploits1References3
CNVD
CNVD
added 2021/11/04 12:0 a.m.15 views

WordPress Image Source Control Plugin Access Control Error Vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The WordPress Image Source Control Plugin is vulnerable to an access control error in versions prior to 2.3.1. The vulnerability stems from the lack of proper restrictions on the role permissions of the...

4.3CVSS1.8AI score0.00768EPSS
Exploits2References1
OSV
OSV
added 2021/11/01 9:15 a.m.4 views

CVE-2021-24781

The Image Source Control WordPress plugin before 2.3.1 allows users with a role as low as Contributor to change arbitrary post meta fields of arbitrary posts even those they should not be able to edit...

4.3CVSS5.9AI score0.00768EPSS
Exploits2References2
NVD
NVD
added 2021/11/01 9:15 a.m.28 views

CVE-2021-24781

The Image Source Control WordPress plugin before 2.3.1 allows users with a role as low as Contributor to change arbitrary post meta fields of arbitrary posts even those they should not be able to edit...

4.3CVSS0.00768EPSS
Exploits2References2
Prion
Prion
added 2021/11/01 9:15 a.m.16 views

Design/Logic Flaw

The Image Source Control WordPress plugin before 2.3.1 allows users with a role as low as Contributor to change arbitrary post meta fields of arbitrary posts even those they should not be able to edit...

4CVSS4.7AI score0.00768EPSS
Exploits2References2Affected Software1
CVE
CVE
added 2021/11/01 8:46 a.m.47 views

CVE-2021-24781

CVE-2021-24781 affects the WordPress Image Source Control plugin (versions before 2.3.1). The vulnerability allows users with a role as low as Contributor to change arbitrary post meta fields on arbitrary posts, indicating an access control error and insufficient restrictions on post-edit permiss...

4.3CVSS4.6AI score0.00768EPSS
Exploits2References2Affected Software1
Rows per page
Query Builder