8338 matches found
WordPress B Slider plugin information disclosure vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress plugin is an application plugin. WordPress B Slider plugin has an information disclosure vulnerability, the vulnerability stems from a sensitive information disclosure in the getactiveplugins function, which ca...
SUSE SLES12 Security Update : gstreamer-0_10-plugins-base (SUSE-SU-2025:02919-1)
The remote SUSE Linux SLES12 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:02919-1 advisory. - CVE-2025-47808: Fixed stack buffer overflow in SubRip subtitle parser bsc1244404 - CVE-2025-47807: Fixed NULL-pointer dereference in TMPlaye...
Fedora: Security Advisory (FEDORA-2025-dd97126e3a)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora: Security Advisory (FEDORA-2025-8327c1ad81)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Security update for gstreamer-0_10-plugins-base
This update for gstreamer-010-plugins-base fixes the following issues: CVE-2025-47808: Fixed stack buffer overflow in SubRip subtitle parser bsc1244404 CVE-2025-47807: Fixed NULL-pointer dereference in TMPlayer subtitle parser bsc1244403 CVE-2025-47806: Fixed NULL-pointer dereference in SubRip...
CVE-2025-7654
Multiple FunnelKit plugins are vulnerable to Sensitive Information Exposure via the wfgetcookie shortcode. This makes it possible for authenticated attackers, with Contributor-level access and above, to extract sensitive data including authentication cookies of other site users, which may make...
CVE-2025-7654
CVE-2025-7654 concerns multiple FunnelKit plugins (FunnelKit Automations and FunnelKit – Funnel Builder for WooCommerce Checkout). The vulnerability is a Sensitive Information Exposure via the wf_get_cookie shortcode that authenticated attackers with Contributor-level access and above can leverag...
CVE-2025-7654 Multiple Plugins By FunnelKit <= (Various Versions) - Authenticated (Contributor+) Sensitive Information Exposure to Privilege Escalation via Woofunnel Library
Multiple FunnelKit plugins are vulnerable to Sensitive Information Exposure via the wfgetcookie shortcode. This makes it possible for authenticated attackers, with Contributor-level access and above, to extract sensitive data including authentication cookies of other site users, which may make...
[SECURITY] Fedora 41 Update: mingw-gstreamer1-plugins-base-1.26.3-1.fc41
GStreamer is a streaming media framework, based on graphs of filters which operate on media data. Applications using this library can do anything from real-time sound processing to playing videos, and just about anything else media-related. Its plugin-based architecture means that new data types ...
[SECURITY] Fedora 41 Update: mingw-gstreamer1-plugins-bad-free-1.26.3-4.fc41
GStreamer is a streaming media framework, based on graphs of elements which operate on media data. This package contains plug-ins that aren't tested well enough, or the code is not of good enough quality...
[SECURITY] Fedora 41 Update: mingw-gstreamer1-plugins-good-1.26.3-1.fc41
GStreamer is a streaming media framework, based on graphs of filters which operate on media data. Applications using this library can do anything from real-time sound processing to playing videos, and just about anything else media-related. Its plugin-based architecture means that new data types ...
[SECURITY] Fedora 42 Update: mingw-gstreamer1-plugins-bad-free-1.26.3-4.fc42
GStreamer is a streaming media framework, based on graphs of elements which operate on media data. This package contains plug-ins that aren't tested well enough, or the code is not of good enough quality...
[SECURITY] Fedora 42 Update: mingw-gstreamer1-plugins-base-1.26.3-1.fc42
GStreamer is a streaming media framework, based on graphs of filters which operate on media data. Applications using this library can do anything from real-time sound processing to playing videos, and just about anything else media-related. Its plugin-based architecture means that new data types ...
[SECURITY] Fedora 42 Update: mingw-gstreamer1-plugins-good-1.26.3-1.fc42
GStreamer is a streaming media framework, based on graphs of filters which operate on media data. Applications using this library can do anything from real-time sound processing to playing videos, and just about anything else media-related. Its plugin-based architecture means that new data types ...
PT-2025-33711 · WordPress · Funnelkit – Funnel Builder For Woocommerce Checkout +1
Name of the Vulnerable Software and Affected Versions: FunnelKit – Funnel Builder for WooCommerce Checkout FunnelKit Automations – Email Marketing Automation and CRM for WordPress & WooCommerce Description: Multiple FunnelKit plugins are vulnerable to Sensitive Information Exposure via the wf get...
Linux Distros Unpatched Vulnerability : CVE-2017-5099
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Insufficient validation of untrusted input in PPAPI Plugins in Google Chrome prior to 60.0.3112.78 for Mac allowed a remote attacker to potentially gain privile...
Medium: gstreamer-plugins-bad-free
Issue Overview: Integer overflow leading to heap overwrite in MXF file handling with uncompressed video NOTE: https://gstreamer.freedesktop.org/security/sa-2023-0006.html NOTE: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/mergerequests/5362 NOTE: Fixed by:...
Linux Distros Unpatched Vulnerability : CVE-2017-5092
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Insufficient validation of untrusted input in PPAPI Plugins in Google Chrome prior to 60.0.3112.78 for Windows allowed a remote attacker to potentially perform ...
Amazon Linux 2 : gstreamer-plugins-bad-free (ALAS-2025-2972)
The version of gstreamer-plugins-bad-free installed on the remote host is prior to 0.10.23-42. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2025-2972 advisory. Integer overflow leading to heap overwrite in MXF file handling with uncompressed video NOTE:...
Fedora 42 : mingw-gstreamer1 / mingw-gstreamer1-plugins-bad-free / etc (2025-8327c1ad81)
The remote Fedora 42 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2025-8327c1ad81 advisory. Update to 1.26.3. Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested...