DSA-5204-1 gst-plugins-good1.0 - security update

Bulletin has no description...

DLA-3069-1 gst-plugins-good1.0 - security update

Bulletin has no description...

USN-5555-1 gst-plugins-good1.0 vulnerabilities

It was discovered that GStreamer Good Plugins incorrectly handled certain files. An attacker could possibly use this issue to execute arbitrary code. CVE-2022-1920, CVE-2022-1921 It was discovered that GStreamer Good Plugins incorrectly handled certain files. An attacker could possibly use this...

USN-5555-1: GStreamer Good Plugins vulnerabilities

It was discovered that GStreamer Good Plugins incorrectly handled certain files. An attacker could possibly use this issue to execute arbitrary code. CVE-2022-1920, CVE-2022-1921 It was discovered that GStreamer Good Plugins incorrectly handled certain files. An attacker could possibly use this...

CVE-2022-2046

The Directorist WordPress plugin before 7.2.3 allows administrators to download other plugins from the same vendor directly to the site, but does not check the URL domain it gets the zip files from. This could allow administrators to run code on the server, which is a problem in multisite...

Sql injection

A vulnerability, which was classified as critical, was found in SourceCodester Gym Management System. This affects an unknown part of the file login.php. The manipulation of the argument userlogin with the input email protected' OR SELECT 9084 FROMSELECT COUNT,CONCAT0x7178767871,SELECT...

CVE-2022-2707 SourceCodester Online Class and Exam Scheduling System faculty_sched.php sql injection

A vulnerability classified as critical was found in SourceCodester Online Class and Exam Scheduling System 1.0. Affected by this vulnerability is an unknown functionality of the file /pages/facultysched.php. The manipulation of the argument faculty with the input ' OR SELECT 2078 FROMSELECT...

au.net.causal.maven.plugins:boxdb-maven-plugin (=3.2), co.elastic.docker-base:co.elastic.docker-base.gradle.plugin (>=0.0.1 <=0.0.5) +78 more potentially affected by CVE-2022-25914 via com.google.cloud.tools:jib-core (>=0.10.0 <=0.21.0)

com.google.cloud.tools:jib-core MAVEN version =0.10.0, =0.0.1, =0.0.1, =0.0.1, =0.0.1, =0.1.0, =1.0, =0.4.0, =0.34.0, =4.3.0, =4.3.0, =4.3.0, =4.3.0, =4.3.0, =4.3.0, =4.4.2 and more Source cves: CVE-2022-25914 Source advisory: SNYK:JAVA-COMGOOGLECLOUDTOOLS-2968871...

acryl-datahub-airflow-plugin (>=0.8.44.4 <=0.9.2.1rc2), aglow (>=0.1.0rc3 <=0.1.0rc4) +130 more potentially affected by CVE-2022-31177 via flask-appbuilder (>=1.10.0 <=4.1.2)

flask-appbuilder PYPI version =1.10.0, =0.8.44.4, =0.1.0rc3, =0.1.0, =2022.9.19, =1.0.7, =0.5.1, =0.2.0, =0.1.0, =1.0.0, =0.0.7, =0.0.1, =0.0.3, =0.0.6, =0.0.1, =0.0.3 and more Source cves: CVE-2022-31177 Source advisory: OSV:PYSEC-2022-247...

CVE-2022-34567

An issue in \Roaming\Mango\Plugins of University of Texas Multi-image Analysis GUI Mango 4.1 allows attackers to escalate privileges via crafted plugins...

CVE-2022-34567

An issue in \Roaming\Mango\Plugins of University of Texas Multi-image Analysis GUI Mango 4.1 allows attackers to escalate privileges via crafted plugins...

CVE-2022-34567

An issue in \Roaming\Mango\Plugins of University of Texas Multi-image Analysis GUI Mango 4.1 allows attackers to escalate privileges via crafted plugins...

Code injection

An issue in \Roaming\Mango\Plugins of University of Texas Multi-image Analysis GUI Mango 4.1 allows attackers to escalate privileges via crafted plugins...

CVE-2022-34567

Summary: CVE-2022-34567 affects the University of Texas Multi-image Analysis GUI (Mango) 4.1, specifically the RoamingMangoPlugins directory. A vulnerability in this directory allows attackers to escalate privileges via crafted plugins. The NVD entry lists a high-severity score (CVSS 3.1: 8.8; AV...

CVE-2022-34567

An issue in \Roaming\Mango\Plugins of University of Texas Multi-image Analysis GUI Mango 4.1 allows attackers to escalate privileges via crafted plugins...

Multiple Plugins from Puvox.software - Reflected Cross-Site Scripting

The plugins do not escape some URLs before outputting them back in attributes, leading to Reflected Cross-Site Scripting PoC https://example.com/wp-admin/admin.php?page=wp-phpmyadmin-extension=errors-logreset"...

Multi-image Analysis GUI 安全漏洞

Multi-image Analysis GUI Mango is a viewer of medical research images organized by the University of Texas Health Science Center. A security vulnerability in University of Texas Health Science Center Multi-image Analysis GUI version 4.1, which stems from an issue in RoamingMangoPlugins allows...

PT-2022-22207 · University Of Texas · Mango

Name of the Vulnerable Software and Affected Versions: University of Texas Multi-image Analysis GUI Mango version 4.1 Description: An issue in the RoamingMangoPlugins directory allows attackers to escalate privileges via crafted plugins. Recommendations: For University of Texas Multi-image Analys...

acryl-datahub-airflow-plugin (>=0.8.44.4 <=0.9.2.1rc2), aglow (>=0.1.0rc3 <=0.1.0rc4) +130 more potentially affected by CVE-2022-31177 via flask-appbuilder (>=1.10.0 <=4.1.2)

flask-appbuilder PYPI version =1.10.0, =0.8.44.4, =0.1.0rc3, =0.1.0, =2022.9.19, =1.0.7, =0.5.1, =0.2.0, =0.1.0, =1.0.0, =0.0.7, =0.0.1, =0.0.3, =0.0.6, =0.0.1, =0.0.3 and more Source cves: CVE-2022-31177 Source advisory: OSV:GHSA-32FF-4G79-VGFC...

com.base2services.jenkins:github-sqs-plugin (>=1.0 <=1.5), com.elasticbox.jenkins-ci.plugins:elasticbox (>=4.0.9 <=4.1.6) +24 more potentially affected by CVE-2022-36885 via com.coravy.hudson.plugins.github:github (>=1.10 <=1.3)

com.coravy.hudson.plugins.github:github MAVEN version =1.10, =1.0, =4.0.9, =1.0-alpha-1, =1.0-alpha-1, =1.0-alpha-1, =1.0.0, =1.0.0, =1.0-alpha-8, =1.0-alpha-4, =0.1-preview-4, =1.0-alpha-1, =1.3.0, =1.0, =0.9.14, =1.36.0, =1.42.2 and more Source cves: CVE-2022-36885 Source advisory:...