Lucene search
K

14 matches found

Tenable Nessus
Tenable Nessus
added 2026/06/24 12:0 a.m.8 views

Oracle Linux 9 : jmc (ELSA-2026-20568)

The remote Oracle Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2026-20568 advisory. 8.2.0-5 - Remove the websocket plugin. Related: RHEL-168615 8.2.0-4 - Bump LZ4 Version to 1.10.2. Related: RHEL-135478 Tenable has extracted the...

9.1CVSS6.8AI score0.01127EPSS
Exploits1References3
OSV
OSV
added 2025/12/22 11:44 a.m.3 views

OPENSUSE-SU-2025:20175-1 Security update for mariadb

This update for mariadb fixes the following issues: - Update to 11.8.5: CVE-2025-13699: Fixed Directory Traversal Remote Code Execution Vulnerability bsc1254313 Other fixes: - Add %license tags to license files bsc1252162 - Add INSTALLDOCREADMEDIR cmake flag to install readme and license files -...

7CVSS5.8AI score0.00414EPSS
Exploits0References5
OSV
OSV
added 2025/12/22 11:13 a.m.2 views

SUSE-SU-2026:20018-1 Security update for mariadb

This update for mariadb fixes the following issues: - Update to 11.8.5: CVE-2025-13699: Fixed Directory Traversal Remote Code Execution Vulnerability bsc1254313 Other fixes: - Add %license tags to license files bsc1252162 - Add INSTALLDOCREADMEDIR cmake flag to install readme and license files -...

7CVSS5.8AI score0.00414EPSS
Exploits0References6
Wordfence Blog
Wordfence Blog
added 2023/06/21 5:15 p.m.17 views

Wordfence 7.10.0 Released!

Wordfence remains the number one security plugin of choice for website owners serious about protecting their investment and their customers. Our Threat Intelligence team and engineering team stay abreast of the newest threats and ensure that Wordfence is able to protect against them. But keeping ...

6.7AI score
Exploits0
Wordfence Blog
Wordfence Blog
added 2022/07/13 5:52 p.m.25 views

PSA: Sudden Increase In Attacks On Modern WPBakery Page Builder Addons Vulnerability

The Wordfence Threat Intelligence team has been monitoring a sudden increase in attack attempts targeting Kaswara Modern WPBakery Page Builder Addons. This ongoing campaign is attempting to take advantage of an arbitrary file upload vulnerability, tracked as CVE-2021-24284, which has been...

7.5CVSS9.8AI score0.4214EPSS
Exploits3
OPENSUSE Linux
OPENSUSE Linux
added 2022/05/27 12:0 a.m.55 views

Security update for seamonkey (important)

openSUSE Security Update: Security update for seamonkey Announcement ID: openSUSE-SU-2022:0150-1 Rating: important References: 1194735 Cross-References: CVE-2021-45417 CVSS scores: CVE-2021-45417 SUSE: 7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: openSUSE Leap 15.3 An update...

7CVSS8.1AI score0.00493EPSS
Exploits1References1
CNVD
CNVD
added 2022/05/20 12:0 a.m.18 views

WordPress Jupiter Theme Access Control Error Vulnerability

WordPress and others are products of the WordPress Foundation. WordPress is a blogging platform developed using the PHP language. WordPress theme is a WordPress theme. JupiterX Core and others are products of the JupiterX Core is a Wordpress WordPress Jupiter Theme has an access control error...

5.5CVSS3.4AI score0.00697EPSS
Exploits1References1
CNNVD
CNNVD
added 2021/04/16 12:0 a.m.3 views

Zenario CMS SQL注入漏洞

Zenario CMS is a Zenario open source application . Provides a web-based content management system. A security vulnerability exists in Zenario CMS 8.8.52729 SQL Injection, which allows remote attackers to exploit the vulnerability to access the database or remove plugins...

9.1CVSS8.5AI score0.04572EPSS
Exploits1References2
wpexploit
wpexploit
added 2021/04/08 12:0 a.m.157 views

Imagements <= 1.2.5 - Unauthenticated Arbitrary File Upload to RCE

The Imagements WordPress plugin, versions = 1.2.5, allowed images to be uploaded in comments, however, only checked for the Content-Type HTTP header for validation, which can be tampered with. This allows unauthenticated attackers to upload arbitrary files by using a valid image Content-Type head...

7.5CVSS1.6AI score0.0714EPSS
Exploits2References1
CNVD
CNVD
added 2020/10/10 12:0 a.m.3 views

PyroCMS Cross-Site Request Forgery Vulnerability

PyroCMS is an easy-to-use, powerful and modular CMS and development platform built using Laravel 5. A cross-site request forgery vulnerability exists in PyroCMS 3.7. An attacker can exploit this vulnerability to remove arbitrary plugins via the admin/addons/uninstall/anomaly.module.blocks URI...

7.1CVSS7.1AI score0.00592EPSS
Exploits1References1
ThreatPost
ThreatPost
added 2019/01/28 2:39 p.m.97 views

Wordpress Users Urged to Delete Zero-Day-Ridden Plugin

Researchers are urging WordPress site owners to delete a compromised plugin after multiple zero-day vulnerabilities were discovered being exploited by a malicious actor. Researchers at Wordfence said on Friday that flaws in the plugin, Total Donations, are being exploited by malicious actors to...

7.5CVSS0.26076EPSS
Exploits1References5
Oracle linux
Oracle linux
added 2017/01/05 12:0 a.m.31 views

gstreamer1-plugins-good security update

1.4.5-3 - Remove insecure FLX plugin Resolves: rhbz1400892...

9.8CVSS1.9AI score0.09192EPSS
Exploits4
Debian
Debian
added 2016/11/24 8:43 p.m.32 views

[SECURITY] [DSA 3724-1] gst-plugins-good0.10 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3724-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso November 24, 2016 https://www.debian.org/security/faq -...

9.8CVSS10AI score0.09192EPSS
Exploits3
securityvulns
securityvulns
added 2013/10/03 12:0 a.m.85 views

Event Easy Calendar 1.0.0 WP plugin

Details ======================== Application: Event Easy Calendar Version: 1.0.0 Type: WordPress Plugin Vendor: Adamson http://profiles.wordpress.org/adamson/ Url: http://wordpress.org/plugins/event-easy-calendar/ Vulnerability: - Improper Input Validation CWE-20 - Cross-Site Scripting CWE-79 -...

0.2AI score
Exploits0
Rows per page
Query Builder