Lucene search
K

6 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/10 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2020-35477

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - MediaWiki before 1.35.1 blocks legitimate attempts to hide log entries in some situations. If one sets MediaWiki:Mainpage to Special:MyLanguage/Main Page, visit...

5.3CVSS6.5AI score0.01512EPSS
Exploits1References2
Snyk
Snyk
added 2024/10/04 9:45 p.m.2 views

Improper Access Control

Overview Affected versions of this package are vulnerable to Improper Access Control via the abusefiltercheckmatch API, due to missing checks of the permissions to see the log details for the given filter. This allows an attacker to bypass hidden and protected visibility settings. Remediation A f...

5.4CVSS6.8AI score0.00441EPSS
Exploits1References2
OSV
OSV
added 2021/07/02 7:19 p.m.22 views

GHSA-M738-3RC4-5XV3 A user without PR can reset user authentication failures information

Impact The script service method used to reset the authentication failures record can be executed by any user with Script rights and does not require Programming rights as it should have. Note that being able to reset the authentication failure record mean that an attacker with script right might...

2CVSS5.4AI score0.00499EPSS
Exploits0References3
OSV
OSV
added 2020/12/18 8:15 a.m.1 views

DEBIAN-CVE-2020-35477

MediaWiki before 1.35.1 blocks legitimate attempts to hide log entries in some situations. If one sets MediaWiki:Mainpage to Special:MyLanguage/Main Page, visits a log entry on Special:Log, and toggles the "Change visibility of selected log entries" checkbox or a tags checkbox next to it, there i...

5.3CVSS6AI score0.01512EPSS
Exploits1References1
OSV
OSV
added 2020/12/18 8:15 a.m.3 views

UBUNTU-CVE-2020-35477

MediaWiki before 1.35.1 blocks legitimate attempts to hide log entries in some situations. If one sets MediaWiki:Mainpage to Special:MyLanguage/Main Page, visits a log entry on Special:Log, and toggles the "Change visibility of selected log entries" checkbox or a tags checkbox next to it, there i...

5.3CVSS7.1AI score0.01512EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2018/12/04 6:27 p.m.2 views

ansible: become password logged in plaintext when used with PowerShell on Windows

Execution of Ansible content on Microsoft's Windows platform with Powershell 5 or higher may disclose sensitive execution details including 'become' passwords, Ansible module arguments, and return values via Powershell's 'suspicious scriptblock logging' feature, which is enabled by default. The...

4.4CVSS7.4AI score0.00535EPSS
Exploits0References5
Rows per page
Query Builder