RHSA-2023:3622 Red Hat Security Advisory: jenkins and jenkins-2-plugins security update

Bulletin has no description...

RHSA-2023:3195 Red Hat Security Advisory: jenkins and jenkins-2-plugins security update

Bulletin has no description...

RHSA-2020:2684 Red Hat Security Advisory: containernetworking-plugins security update

Bulletin has no description...

RHSA-2020:2403 Red Hat Security Advisory: OpenShift Container Platform 4.4.8 containernetworking-plugins security update

Bulletin has no description...

RHSA-2020:2443 Red Hat Security Advisory: OpenShift Container Platform 4.3.25 containernetworking-plugins security update

Bulletin has no description...

RHSA-2019:1046 Red Hat Security Advisory: rhvm-setup-plugins security and bug fix update

Bulletin has no description...

RHSA-2018:2328 Red Hat Security Advisory: rhvm-setup-plugins security, bug fix, and enhancement update

Bulletin has no description...

RHSA-2018:1689 Red Hat Security Advisory: rhevm-setup-plugins security update

Bulletin has no description...

RHSA-2018:1674 Red Hat Security Advisory: rhvm-setup-plugins security update

Bulletin has no description...

CVE-2024-47330 Broken Access Control vulnerability on multiple WordPress plugins by Supsystic

Missing Authorization vulnerability in Supsystic Slider by Supsystic, Supsystic Social Share Buttons by Supsystic.This issue affects Slider by Supsystic: from n/a through 1.8.6; Social Share Buttons by Supsystic: from n/a through 2.2.9...

CVE-2024-47330 Broken Access Control vulnerability on multiple WordPress plugins by Supsystic

Missing Authorization vulnerability in Supsystic Slider by Supsystic, Supsystic Social Share Buttons by Supsystic.This issue affects Slider by Supsystic: from n/a through 1.8.6; Social Share Buttons by Supsystic: from n/a through 2.2.9...

CVE-2024-8290

The WCFM – Frontend Manager for WooCommerce along with Bookings Subscription Listings Compatible plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 6.7.12 via the WCFMCustomersManageController::processing function due to missing validation...

CVE-2024-6590 Spreadsheet Integration – Automate Google Sheets With WordPress, WooCommerce & Most Popular Form Plugins. Also, Display Google sheet as a Table. <= 3.8.0 - Missing Authorization to Authenticated (Subscriber+) Settings Update

The Spreadsheet Integration – Automate Google Sheets With WordPress, WooCommerce & Most Popular Form Plugins. Also, Display Google sheet as a Table. plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on several functions in all versions up to...

WordPress Spreadsheet Integration – Automate Google Sheets With WordPress, WooCommerce & Most Popular Form Plugins. Plugin <= 3.8.0 is vulnerable to Broken Access Control

Software Spreadsheet Integration – Automate Google Sheets With WordPress, WooCommerce & Most Popular Form Plugins. Type Plugin Vulnerable versions = 3.8.0 Fixed in 3.8.1 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-6590 Patch priority Medium CVSS severi...

The vulnerability of the SDK plugin for Grafana’s monitoring and observation platform lies in the fact that authentication tokens are transmitted to certain target plugins. This allows a malicious actor to gain access to repository credentials.

The vulnerability of the SDK plugin for Grafana monitoring and observability lies in the fact that authentication tokens are transmitted to certain target plugins. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain access to repository credentials...

gst-plugins-good: Multiple Vulnerabilities

Background gst-plugins-good contains a set of plugins for the GStreamer open source multimedia framework. Description Multiple vulnerabilities have been discovered in gst-plugins-good. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE...

RHSA-2020:0406 Red Hat Security Advisory: containernetworking-plugins security update

Bulletin has no description...

build.less:build.less.gradle.plugin (>=1.0.0-beta1 <=1.0.0-rc2), build.less:buildless-plugin-gradle (>=1.0.0-beta1 <=1.0.0-rc2) +178 more potentially affected by CVE-2024-7254 via com.google.protobuf:protobuf-kotlin (>=3.17.3 <=3.25.3)

com.google.protobuf:protobuf-kotlin MAVEN version =3.17.3, =1.0.0-beta1, =1.0.0-beta1, =7.0.0, =0.5.0, =0.0.1-alpha02, =31.9.0, =31.9.0, =31.9.0, =31.9.0, =31.9.0, =31.9.0, =31.9.0, =31.9.0, =31.9.0, =31.9.0, =32.1.0-alpha04 and more S...

Wordfence Intelligence Weekly WordPress Vulnerability Report (September 9, 2024 to September 15, 2024)

Did you know Wordfence runs aBug Bounty Program for all WordPress plugins and themes at no cost to vendors? Through October 7th, 2024, XSS vulnerabilities in all plugins and themes with =1,000 Active Installs are in scope for all researchers. In addition, through October 14th, 2024 , r esearchers...

openSUSE: Security Advisory for gstreamer (SUSE-SU-2024:3295-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...