Lucene search
K

8 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 9:28 a.m.6 views

CVE-2024-12263

The Child Theme Creator by Orbisius plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the clouddelete and cloudupdate functions in all versions up to, and including, 1.5.5. This makes it possible for authenticated attackers, with...

4.3CVSS6.5AI score0.0034EPSS
Exploits0References1
OSV
OSV
added 2025/02/21 11:0 a.m.7 views

SUSE-SU-2025:0624-1 Security update for grafana

This update for grafana fixes the following issues: grafana was updated from version 10.4.13 to 10.4.15: - Security issues fixed: CVE-2024-45339: Fixed vulnerability when creating log files bsc1236559 CVE-2024-11741: Fixed the Grafana Alerting VictorOps integration bsc1236734 CVE-2025-21613:...

9.8CVSS6.6AI score0.01956EPSS
Exploits0References9
NVD
NVD
added 2024/12/12 6:15 a.m.11 views

CVE-2024-12263

The Child Theme Creator by Orbisius plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the clouddelete and cloudupdate functions in all versions up to, and including, 1.5.5. This makes it possible for authenticated attackers, with...

4.3CVSS0.0034EPSS
Exploits0References2
CVE
CVE
added 2024/12/12 5:24 a.m.43 views

CVE-2024-12263

CVE-2024-12263 affects the WordPress plugin Child Theme Creator by Orbisius . The issue is a missing capability check in the cloud_delete() and cloud_update() functions, enabling authenticated attackers with Subscriber-level access and above to modify or delete cloud snippets. The vulnerability w...

4.3CVSS6.5AI score0.0034EPSS
Exploits0References2
OSV
OSV
added 2024/08/21 3:15 p.m.2 views

UBUNTU-CVE-2024-43407

CKEditor4 is an open source what-you-see-is-what-you-get HTML editor. A potential vulnerability has been discovered in CKEditor 4 Code Snippet GeSHi plugin. The vulnerability allowed a reflected XSS attack by exploiting a flaw in the GeSHi syntax highlighter library hosted by the victim. The GeSH...

6.1CVSS5.8AI score0.00424EPSS
Exploits0References7
Wallarm Lab
Wallarm Lab
added 2024/07/10 5:50 a.m.14 views

Polyfill.io Supply Chain Attack: Malicious JavaScript Injection Puts Over 100k Websites At Risk

Polyfill.io helps web developers achieve cross-browser compatibility by automatically managing necessary polyfills. By adding a script tag to their HTML, developers can ensure that features like JavaScript functions, HTML5 elements, and various APIs work across different browsers. Originally...

6.5AI score
Exploits0
Oracle linux
Oracle linux
added 2021/10/21 12:0 a.m.82 views

java-11-openjdk security and bug fix update

1:11.0.13.0.8-1.0.1 - link atomic for ix86 build 1:11.0.13.0.8-1 - Revert addition of libharfbuzz.so after its removal by JDK-8255790 - Resolves: rhbz2012332 1:11.0.13.0.8-1 - Update to jdk-11.0.12.0+8 - Update release notes to 11.0.12.0+8 - Switch to GA mode for final release. - This tarball is...

7.1CVSS0.7AI score0.14839EPSS
Exploits0
securityvulns
securityvulns
added 2005/06/30 12:0 a.m.31 views

[SA15855] PostNuke XML-RPC Library PHP Code Execution Vulnerability

---------------------------------------------------------------------- Bist Du interessiert an einem neuen Job in IT-Sicherheit? Secunia hat zwei freie Stellen als Junior und Senior Spezialist in IT- Sicherheit: http://secunia.com/secuniavacancies/...

0.6AI score
Exploits0
Rows per page
Query Builder