Lucene search
K

2942 matches found

Cvelist
Cvelist
added 2022/02/04 10:29 p.m.27 views

CVE-2022-0218 WP HTML Mail <= 3.0.9 Missing Authorization on REST-API Route

The WP HTML Mail WordPress plugin is vulnerable to unauthorized access which allows unauthenticated attackers to retrieve and modify theme settings due to a missing capability check on the /themesettings REST-API endpoint found in the /includes/class-template-designer.php file, in versions up to...

8.3CVSS8.4AI score0.70511EPSS
Exploits3References2
OSV
OSV
added 2022/01/18 5:15 p.m.4 views

CVE-2022-0236

The WP Import Export WordPress plugin both free and premium versions is vulnerable to unauthenticated sensitive data disclosure due to a missing capability check on the download function wpieprocessfiledownload found in the /includes/classes/class-wpie-general.php file. This made it possible for...

7.5CVSS7AI score0.04284EPSS
Exploits2References3
VulnCheck KEV
VulnCheck KEV
added 2022/01/13 12:0 a.m.3 views

VulnCheck KEV: CVE-2022-0218

The WP HTML Mail WordPress plugin is vulnerable to unauthorized access which allows unauthenticated attackers to retrieve and modify theme settings due to a missing capability check on the /themesettings REST-API endpoint found in the /includes/class-template-designer.php file, in versions up to...

8.3CVSS6.5AI score0.70511EPSS
Exploits3References1
OSV
OSV
added 2021/11/08 6:15 p.m.6 views

CVE-2021-24816

The Phoenix Media Rename WordPress plugin before 3.4.4 does not have capability checks in its phoenixmediarename AJAX action, which could allow users with Author roles to rename any uploaded media files, including ones they do not own...

4.3CVSS5.8AI score0.00654EPSS
Exploits2References1
OSV
OSV
added 2021/10/21 8:15 p.m.10 views

CVE-2021-39321

Version 3.3.23 of the Sassy Social Share WordPress plugin is vulnerable to PHP Object Injection via the wpajaxheateorsssimportconfig AJAX action due to deserialization of unvalidated user supplied inputs via the importconfig function found in the /admin/class-sassy-social-share-admin.php file. Th...

8.8CVSS5.8AI score0.01976EPSS
Exploits2References3
NVD
NVD
added 2021/10/11 4:15 p.m.16 views

CVE-2021-39317

A WordPress plugin and several WordPress themes developed by AccessPress Themes are vulnerable to malicious file uploads via the pluginofflineinstaller AJAX action due to a missing capability check in the pluginofflineinstallercallback function found in the /demo-functions.php file or /welcome.ph...

8.8CVSS0.01652EPSS
Exploits2References4
Prion
Prion
added 2021/10/11 4:15 p.m.14 views

Design/Logic Flaw

A WordPress plugin and several WordPress themes developed by AccessPress Themes are vulnerable to malicious file uploads via the pluginofflineinstaller AJAX action due to a missing capability check in the pluginofflineinstallercallback function found in the /demo-functions.php file or /welcome.ph...

6.5CVSS8.4AI score0.01652EPSS
Exploits2References4Affected Software43
Cvelist
Cvelist
added 2021/10/11 3:48 p.m.13 views

CVE-2021-39317 AccessPress Themes - Authenticated Malicious File Upload

A WordPress plugin and several WordPress themes developed by AccessPress Themes are vulnerable to malicious file uploads via the pluginofflineinstaller AJAX action due to a missing capability check in the pluginofflineinstallercallback function found in the /demo-functions.php file or /welcome.ph...

8.8CVSS8.8AI score0.01652EPSS
Exploits2References4
Positive Technologies
Positive Technologies
added 2021/10/11 12:0 a.m.6 views

PT-2021-22526 · Accesspress · Accesspress-Parallax +6

Name of the Vulnerable Software and Affected Versions: AccessPress Demo Importer versions 1.0.6 and earlier accesspress-basic versions 3.2.1 and earlier accesspress-lite versions 2.92 and earlier accesspress-mag versions 2.6.5 and earlier accesspress-parallax version 4.5 accesspress-root version...

8.8CVSS8.3AI score0.01652EPSS
Exploits2References9
WPVulnDB
WPVulnDB
added 2021/10/06 12:0 a.m.20 views

Access Demo Importer < 1.0.7 - Subscriber+ Arbitrary File Upload

Versions up to, and including, 1.0.6, of the Access Demo Importer WordPress plugin are vulnerable to arbitrary file uploads via the pluginofflineinstaller AJAX action due to a missing capability check in the pluginofflineinstallercallback functionfound in the /inc/demo-functions.php file along wi...

8.8CVSS1.7AI score0.01652EPSS
Exploits2References1Affected Software1
VulnCheck KEV
VulnCheck KEV
added 2021/09/06 12:0 a.m.4 views

VulnCheck KEV: CVE-2021-4380

The Pinterest Automatic plugin for WordPress is vulnerable to authorization bypass due to missing capability checks on the 'wppinterestautomaticparserequest' function and the 'processform.php' script in versions up to, and including, 1.14.3. This makes it possible for unauthenticated...

9.8CVSS7.3AI score0.04528EPSS
Exploits1References1
OSV
OSV
added 2021/06/14 2:15 p.m.4 views

CVE-2021-24354

A lack of capability checks and insufficient nonce check on the AJAX action in the Simple 301 Redirects by BetterLinks WordPress plugin before 2.0.4, made it possible for authenticated users to install arbitrary plugins on vulnerable sites...

8.8CVSS5.9AI score0.0148EPSS
Exploits2References2
VulnCheck KEV
VulnCheck KEV
added 2020/12/17 12:0 a.m.2 views

VulnCheck KEV: CVE-2020-36719

The ListingPro - WordPress Directory & Listing Theme for WordPress is vulnerable to Arbitrary Plugin Installation, Activation and Deactivation in versions before 2.6.1. This is due to a missing capability check on the lpccaddonsactions function. This makes it possible for unauthenticated...

9.8CVSS7.3AI score0.04304EPSS
Exploits1References1
RedHat Linux
RedHat Linux
added 2017/08/01 2:13 p.m.1 views

Kernel: fs: umount denial of service

The doumount function in fs/namespace.c in the Linux kernel through 3.17 does not require the CAPSYSADMIN capability for doremountsb calls that change the root filesystem to read-only, which allows local users to cause a denial of service loss of writability by making certain unshare system calls...

5.5CVSS6.6AI score0.00461EPSS
Exploits0References4
OSV
OSV
added 2017/05/15 2:29 p.m.3 views

UBUNTU-CVE-2017-7490

In Moodle 2.x and 3.x, searching of arbitrary blogs is possible because a capability check is missing...

5.3CVSS6.3AI score0.01046EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2014/05/12 12:0 a.m.36 views

Oracle Linux 5 / 6 : Unbreakable Enterprise kernel (ELSA-2014-3023)

The remote Oracle Linux 5 / 6 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2014-3023 advisory. kernel-uek 2.6.32-400.34.5uek - aacraid: missing capable check in compat ioctl Dan Carpenter Orabug: 18723276 CVE-2013-6383 Tenable has extracted the...

6.9CVSS7.2AI score0.0049EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2014/03/12 6:28 p.m.4 views

Kernel: AACRAID Driver compat IOCTL missing capability check

The aaccompatioctl function in drivers/scsi/aacraid/linit.c in the Linux kernel before 3.11.8 does not require the CAPSYSRAWIO capability, which allows local users to bypass intended access restrictions via a crafted ioctl call...

6.9CVSS7.1AI score0.0049EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2010/03/22 12:0 a.m.59 views

RedHat Update for kernel RHSA-2010:0147-01

Check for the Version of kernel OpenVAS Vulnerability Test RedHat Update for kernel RHSA-2010:0147-01 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...

7.8CVSS0.7AI score0.12426EPSS
Exploits7References2
OSV
OSV
added 2009/08/18 9:0 p.m.2 views

DEBIAN-CVE-2009-2854

Wordpress before 2.8.3 does not check capabilities for certain actions, which allows remote attackers to make unauthorized edits or additions via a direct request to 1 edit-comments.php, 2 edit-pages.php, 3 edit.php, 4 edit-category-form.php, 5 edit-link-category-form.php, 6 edit-tag-form.php, 7...

6.4CVSS6.6AI score0.02276EPSS
Exploits1References1
RedHat Linux
RedHat Linux
added 2009/01/05 7:8 a.m.3 views

kernel: missing capability checks in sbni_ioctl()

The sbniioctl function in drivers/net/wan/sbni.c in the wan subsystem in the Linux kernel 2.6.26.3 does not check for the CAPNETADMIN capability before processing a 1 SIOCDEVRESINSTATS, 2 SIOCDEVSHWSTATE, 3 SIOCDEVENSLAVE, or 4 SIOCDEVEMANSIPATE ioctl request, which allows local users to bypass...

7.2CVSS7.1AI score0.0053EPSS
Exploits0References4
Rows per page
Query Builder