Lucene search
K

4329 matches found

Patchstack
Patchstack
added 2021/06/29 12:0 a.m.22 views

WordPress Secure Copy Content Protection and Content Locking plugin <= 2.6.6 - Authenticated Blind SQL Injection (SQLi) vulnerability

Authenticated Blind SQL Injection SQLi vulnerability discovered by To Quang Duong in WordPress Secure Copy Content Protection and Content Locking plugin versions = 2.6.6. Solution Update the WordPress Secure Copy Content Protection and Content Locking plugin to the latest available version at lea...

7.2CVSS3.2AI score0.01344EPSS
Exploits2References3Affected Software1
Tenable Nessus
Tenable Nessus
added 2021/06/21 12:0 a.m.44 views

SUSE SLES15: caribou / caribou-common / caribou-devel / etc (SUSE-SU-2021:2007-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2021:2007-1 advisory. Security issue fixed: - CVE-2021-3567: Fixed a segfault when attempting to use shifted characters bsc1186617. Tenable has extracted the...

7.5CVSS7.2AI score0.01112EPSS
Exploits0References4
Code423n4
Code423n4
added 2021/06/16 12:0 a.m.9 views

Wrong calculation on _collectRentAction

Handle adelamo Vulnerability details Impact The method collectRentAction contains the following code: ... else if !foreclosed && limitHit && marketLocked // CASE 4 // didn't foreclose AND // did hit time limit AND // did lock market // THEN refund rent between the earliest event and now if...

6.8AI score
Exploits0
Code423n4
Code423n4
added 2021/06/16 12:0 a.m.7 views

Check that marketLockingTime >= marketOpeningTime

Handle pauliax Vulnerability details Impact There is no check that timestamps1 marketLockingTime = timestamps0 marketOpeningTime. I think that should be enforced just in case to prevent market locking before opening. Recommended Mitigation Steps Add in Factory createMarket: require timestamps1 =...

6.9AI score
Exploits0
Oracle linux
Oracle linux
added 2021/06/15 12:0 a.m.231 views

Unbreakable Enterprise kernel-container security update

4.14.35-2047.504.2.el7 - md/raid1: properly indicate failure when ending a failed write request Paul Clements Orabug: 32887159 - video: hypervfb: Add ratelimit on error message Michael Kelley Orabug: 32856879 - Drivers: hv: vmbus: Initialize unloadevent statically Andrea Parri Microsoft Orabug:...

6.7CVSS7.3AI score0.0072EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2021/06/12 12:0 a.m.72 views

SUSE SLED12: caribou / caribou-common / caribou-devel / etc (SUSE-SU-2021:1943-1)

The remote SUSE Linux SLED12 / SLES12 / SLESSAP12 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2021:1943-1 advisory. Security issue fixed: - CVE-2021-3567: Fixed a segfault when attempting to use shifted characters bsc1186617. Tenable has extracted...

7.5CVSS7.2AI score0.01112EPSS
Exploits0References4
Prion
Prion
added 2021/06/11 4:15 p.m.13 views

Denial of service

Nextcloud End-to-End Encryption before 1.5.3, 1.6.3 and 1.7.1 suffers from a denial of service vulnerability due to permitting any authenticated users to lock files of other users...

4CVSS6.3AI score0.00722EPSS
Exploits1References2Affected Software1
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.32 views

SUSE: Security Advisory (SUSE-SU-2020:3718-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.1AI score0.00928EPSS
Exploits6References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.30 views

SUSE: Security Advisory (SUSE-SU-2013:0858-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS8.1AI score0.04113EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.24 views

SUSE: Security Advisory (SUSE-SU-2021:0097-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.4AI score0.01659EPSS
Exploits9References2
Veracode
Veracode
added 2021/06/06 10:35 a.m.55 views

Denial Of Service (DoS)

kernel is vulnerable to denial of service. A race condition getoldroot in fs/btrfs/ctree.c allows attackers to cause a denial of service due to the lack of locking on an extent buffer before a cloning operation...

4.7CVSS4.9AI score0.00267EPSS
Exploits0References11Affected Software3
OSV
OSV
added 2021/05/31 3:39 p.m.11 views

GSD-2021-1000484 mtd: require write permissions for locking and badblock ioctls

mtd: require write permissions for locking and badblock ioctls This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.9.269 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2021/05/31 3:39 p.m.13 views

GSD-2021-1000436 mtd: require write permissions for locking and badblock ioctls

mtd: require write permissions for locking and badblock ioctls This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.119 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2021/05/31 3:39 p.m.6 views

GSD-2021-1000459 mtd: require write permissions for locking and badblock ioctls

mtd: require write permissions for locking and badblock ioctls This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.19.191 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2021/05/31 3:39 p.m.12 views

GSD-2021-1000475 mtd: require write permissions for locking and badblock ioctls

mtd: require write permissions for locking and badblock ioctls This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.14.233 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2021/05/31 3:39 p.m.8 views

GSD-2021-1000401 soc/tegra: regulators: Fix locking up when voltage-spread is out of range

soc/tegra: regulators: Fix locking up when voltage-spread is out of range This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.37 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2021/05/31 3:39 p.m.9 views

GSD-2021-1000428 nvmet-tcp: fix incorrect locking in state_change sk callback

nvmet-tcp: fix incorrect locking in statechange sk callback This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.119 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2021/05/31 3:39 p.m.11 views

GSD-2021-1000488 mtd: require write permissions for locking and badblock ioctls

mtd: require write permissions for locking and badblock ioctls This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.4.269 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2021/05/31 3:39 p.m.7 views

GSD-2021-1000290 mtd: require write permissions for locking and badblock ioctls

mtd: require write permissions for locking and badblock ioctls This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.12.4 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2021/05/31 3:39 p.m.13 views

GSD-2021-1000388 mtd: require write permissions for locking and badblock ioctls

mtd: require write permissions for locking and badblock ioctls This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.37 by commit...

7.2AI score
Exploits0
Rows per page
Query Builder