Lucene search
K

8338 matches found

CNVD
CNVD
added 2025/08/20 12:0 a.m.4 views

WordPress B Slider plugin information disclosure vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress plugin is an application plugin. WordPress B Slider plugin has an information disclosure vulnerability, the vulnerability stems from a sensitive information disclosure in the getactiveplugins function, which ca...

4.3CVSS6.3AI score0.00326EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/08/20 12:0 a.m.2 views

SUSE SLES12 Security Update : gstreamer-0_10-plugins-base (SUSE-SU-2025:02919-1)

The remote SUSE Linux SLES12 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:02919-1 advisory. - CVE-2025-47808: Fixed stack buffer overflow in SubRip subtitle parser bsc1244404 - CVE-2025-47807: Fixed NULL-pointer dereference in TMPlaye...

5.6CVSS8.3AI score0.00428EPSS
Exploits3References10
OpenVAS
OpenVAS
added 2025/08/20 12:0 a.m.0 views

Fedora: Security Advisory (FEDORA-2025-dd97126e3a)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS7.5AI score0.00578EPSS
Exploits5References4
OpenVAS
OpenVAS
added 2025/08/20 12:0 a.m.0 views

Fedora: Security Advisory (FEDORA-2025-8327c1ad81)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS7.5AI score0.00578EPSS
Exploits5References4
SUSE Linux
SUSE Linux
added 2025/08/19 1:52 p.m.3 views

Security update for gstreamer-0_10-plugins-base

This update for gstreamer-010-plugins-base fixes the following issues: CVE-2025-47808: Fixed stack buffer overflow in SubRip subtitle parser bsc1244404 CVE-2025-47807: Fixed NULL-pointer dereference in TMPlayer subtitle parser bsc1244403 CVE-2025-47806: Fixed NULL-pointer dereference in SubRip...

5.5CVSS7.9AI score0.00428EPSS
Exploits3References12
NVD
NVD
added 2025/08/19 8:15 a.m.4 views

CVE-2025-7654

Multiple FunnelKit plugins are vulnerable to Sensitive Information Exposure via the wfgetcookie shortcode. This makes it possible for authenticated attackers, with Contributor-level access and above, to extract sensitive data including authentication cookies of other site users, which may make...

8.8CVSS0.00572EPSS
Exploits0References3
CVE
CVE
added 2025/08/19 7:26 a.m.33 views

CVE-2025-7654

CVE-2025-7654 concerns multiple FunnelKit plugins (FunnelKit Automations and FunnelKit – Funnel Builder for WooCommerce Checkout). The vulnerability is a Sensitive Information Exposure via the wf_get_cookie shortcode that authenticated attackers with Contributor-level access and above can leverag...

8.8CVSS6.6AI score0.00572EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/08/19 7:26 a.m.10 views

CVE-2025-7654 Multiple Plugins By FunnelKit <= (Various Versions) - Authenticated (Contributor+) Sensitive Information Exposure to Privilege Escalation via Woofunnel Library

Multiple FunnelKit plugins are vulnerable to Sensitive Information Exposure via the wfgetcookie shortcode. This makes it possible for authenticated attackers, with Contributor-level access and above, to extract sensitive data including authentication cookies of other site users, which may make...

8.8CVSS0.00572EPSS
Exploits0References3
Fedora
Fedora
added 2025/08/19 4:45 a.m.5 views

[SECURITY] Fedora 41 Update: mingw-gstreamer1-plugins-base-1.26.3-1.fc41

GStreamer is a streaming media framework, based on graphs of filters which operate on media data. Applications using this library can do anything from real-time sound processing to playing videos, and just about anything else media-related. Its plugin-based architecture means that new data types ...

8.1CVSS6.3AI score0.00578EPSS
Exploits5
Fedora
Fedora
added 2025/08/19 4:45 a.m.5 views

[SECURITY] Fedora 41 Update: mingw-gstreamer1-plugins-bad-free-1.26.3-4.fc41

GStreamer is a streaming media framework, based on graphs of elements which operate on media data. This package contains plug-ins that aren't tested well enough, or the code is not of good enough quality...

8.1CVSS6.5AI score0.00578EPSS
Exploits5
Fedora
Fedora
added 2025/08/19 4:45 a.m.4 views

[SECURITY] Fedora 41 Update: mingw-gstreamer1-plugins-good-1.26.3-1.fc41

GStreamer is a streaming media framework, based on graphs of filters which operate on media data. Applications using this library can do anything from real-time sound processing to playing videos, and just about anything else media-related. Its plugin-based architecture means that new data types ...

8.1CVSS6.3AI score0.00578EPSS
Exploits5
Fedora
Fedora
added 2025/08/19 4:16 a.m.5 views

[SECURITY] Fedora 42 Update: mingw-gstreamer1-plugins-bad-free-1.26.3-4.fc42

GStreamer is a streaming media framework, based on graphs of elements which operate on media data. This package contains plug-ins that aren't tested well enough, or the code is not of good enough quality...

8.1CVSS6.5AI score0.00578EPSS
Exploits5
Fedora
Fedora
added 2025/08/19 4:16 a.m.7 views

[SECURITY] Fedora 42 Update: mingw-gstreamer1-plugins-base-1.26.3-1.fc42

GStreamer is a streaming media framework, based on graphs of filters which operate on media data. Applications using this library can do anything from real-time sound processing to playing videos, and just about anything else media-related. Its plugin-based architecture means that new data types ...

8.1CVSS6.3AI score0.00578EPSS
Exploits5
Fedora
Fedora
added 2025/08/19 4:16 a.m.6 views

[SECURITY] Fedora 42 Update: mingw-gstreamer1-plugins-good-1.26.3-1.fc42

GStreamer is a streaming media framework, based on graphs of filters which operate on media data. Applications using this library can do anything from real-time sound processing to playing videos, and just about anything else media-related. Its plugin-based architecture means that new data types ...

8.1CVSS6.3AI score0.00578EPSS
Exploits5
Positive Technologies
Positive Technologies
added 2025/08/19 12:0 a.m.7 views

PT-2025-33711 · WordPress · Funnelkit – Funnel Builder For Woocommerce Checkout +1

Name of the Vulnerable Software and Affected Versions: FunnelKit – Funnel Builder for WooCommerce Checkout FunnelKit Automations – Email Marketing Automation and CRM for WordPress & WooCommerce Description: Multiple FunnelKit plugins are vulnerable to Sensitive Information Exposure via the wf get...

8.8CVSS6.1AI score0.00572EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2025/08/19 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2017-5099

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Insufficient validation of untrusted input in PPAPI Plugins in Google Chrome prior to 60.0.3112.78 for Mac allowed a remote attacker to potentially gain privile...

8.8CVSS8.1AI score0.01474EPSS
Exploits0References2
Amazon
Amazon
added 2025/08/19 12:0 a.m.4 views

Medium: gstreamer-plugins-bad-free

Issue Overview: Integer overflow leading to heap overwrite in MXF file handling with uncompressed video NOTE: https://gstreamer.freedesktop.org/security/sa-2023-0006.html NOTE: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/mergerequests/5362 NOTE: Fixed by:...

8.8CVSS7.3AI score0.01871EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/08/19 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2017-5092

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Insufficient validation of untrusted input in PPAPI Plugins in Google Chrome prior to 60.0.3112.78 for Windows allowed a remote attacker to potentially perform ...

8.8CVSS8.1AI score0.01427EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/19 12:0 a.m.7 views

Amazon Linux 2 : gstreamer-plugins-bad-free (ALAS-2025-2972)

The version of gstreamer-plugins-bad-free installed on the remote host is prior to 0.10.23-42. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2025-2972 advisory. Integer overflow leading to heap overwrite in MXF file handling with uncompressed video NOTE:...

8.8CVSS7AI score0.01871EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/08/19 12:0 a.m.3 views

Fedora 42 : mingw-gstreamer1 / mingw-gstreamer1-plugins-bad-free / etc (2025-8327c1ad81)

The remote Fedora 42 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2025-8327c1ad81 advisory. Update to 1.26.3. Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested...

8.1CVSS7.9AI score0.00578EPSS
Exploits5References6
Rows per page
Query Builder