CVE-2024-30481 WordPress JCH Optimize plugin <= 4.0.0 - Broken Access Control vulnerability

Broken Access Control vulnerability in Samuel Marshall JCH Optimize.This issue affects JCH Optimize: from n/a through 4.0.0...

CVE-2024-30481

CVE-2024-30481 affects the WordPress JCH Optimize plugin (versions

CVE-2024-30481 WordPress JCH Optimize plugin <= 4.0.0 - Broken Access Control vulnerability

Broken Access Control vulnerability in Samuel Marshall JCH Optimize.This issue affects JCH Optimize: from n/a through 4.0.0...

WordPress plugin JCH Optimize security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

JCH Optimize < 4.2.1 - Authenticated (Subscriber+) Directory Traversal

Description The JCH Optimize plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 4.2.0. This makes it possible for authenticated attackers, with subscriber access and above, to access directory information on the Optimize Image page...

CVE-2024-34808

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Samuel Marshall JCH Optimize.This issue affects JCH Optimize: from n/a through 4.2.0...

CVE-2024-34808 WordPress JCH Optimize plugin <= 4.2.0 - Path Traversal vulnerability

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Samuel Marshall JCH Optimize.This issue affects JCH Optimize: from n/a through 4.2.0...

CVE-2024-34808

CVE-2024-34808 is an authenticated path traversal vulnerability in JCH Optimize for WordPress (JCH Optimize

CVE-2024-34808 WordPress JCH Optimize plugin <= 4.2.0 - Path Traversal vulnerability

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Samuel Marshall JCH Optimize.This issue affects JCH Optimize: from n/a through 4.2.0...

WordPress Plugin JCH Optimize 路径遍历漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A path traversal...

WordPress JCH Optimize plugin <= 4.2.0 - Path Traversal vulnerability

Path Traversal vulnerability discovered by Dhabaleshwar Das Patchstack Alliance in WordPress Plugin JCH Optimize versions = 4.2.0...

WordPress JCH Optimize Plugin <= 4.2.0 is vulnerable to Path Traversal

Software JCH Optimize Type Plugin Vulnerable versions = 4.2.0 Fixed in 4.2.1 OWASP Top 10 A6: Security Misconfiguration Classification Path Traversal CVE CVE-2024-34808 Patch priority Medium CVSS severity Medium 4.3 Developer Claim ownership PSID 076d61af6638 Credits Dhabaleshwar Das Required...

SUSE CVE-2024-26987

In the Linux kernel, the following vulnerability has been resolved: mm/memory-failure: fix deadlock when hugetlboptimizevmemmap is enabled When I did hard offline test with hugetlb pages, below deadlock occurs: ====================================================== WARNING: possible circular...

UBUNTU-CVE-2024-26987

In the Linux kernel, the following vulnerability has been resolved: mm/memory-failure: fix deadlock when hugetlboptimizevmemmap is enabled When I did hard offline test with hugetlb pages, below deadlock occurs: ====================================================== WARNING: possible circular...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a deadlock issue when hugetlboptimizevmemmap is enabled...

CVE-2024-26910

CVE-2024-26910 – Linux kernel netfilter ipset swap operation is fixed by patch 28628fa9, which resolves a race between swap/destroy and kernel side add/del/test. The issue arose because a synchronize_rcu() added to the swap path slowed it down; the patch moves the synchronization to destroy and u...

LWS Optimize < 2.0 - Cross-Site Request Forgery

Description The LWS Optimize plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.9.1. This is due to missing or incorrect nonce validation on the several functions. This makes it possible for unauthenticated attackers to perform unauthorized action...

CVE-2024-30541

Cross-Site Request Forgery CSRF vulnerability in LWS LWS Optimize.This issue affects LWS Optimize: from n/a through 1.9.1...

CVE-2024-30541

CVE-2024-30541 is a CSRF vulnerability in LWS LWS Optimize, affecting versions up to 1.9.1. The connected Red Hat entry repeats the CSRF description and affected product, but the initial documents do not provide deeper root-cause analysis, confirmed impact details, or remediation specifics. Techn...

CVE-2024-30541 WordPress LWS Optimize plugin <= 1.9.1 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in LWS LWS Optimize.This issue affects LWS Optimize: from n/a through 1.9.1...