126 matches found
CVE-2023-23699
Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Chris Reynolds Progress Bar plugin = 2.2.1 versions...
CVE-2023-23699
CVE-2023-23699 affects the Chris Reynolds Progress Bar plugin for WordPress, specifically versions
CVE-2023-23699 WordPress Progress Bar Plugin <= 2.2.1 is vulnerable to Cross Site Scripting (XSS)
Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Chris Reynolds Progress Bar plugin = 2.2.1 versions...
CVE-2023-23699 WordPress Progress Bar Plugin <= 2.2.1 is vulnerable to Cross Site Scripting (XSS)
Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Chris Reynolds Progress Bar plugin = 2.2.1 versions...
WordPress plugin Progress Bar 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plugin that supports personal blog sites on PHP and MySQL servers. A cross-site scripting vulnerability exists in the...
WordPress Progress Bar Plugin <= 2.2.1 is vulnerable to Cross Site Scripting (XSS)
Software Progress Bar Type Plugin Vulnerable versions = 2.2.1 Fixed in 2.2.2 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-23699 Patch priority Low CVSS severity Low 6.5 Developer jazzs3quence PSID f509ee490678 Credits yuyudhn Required privilege...
PT-2025-41064
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel has a flaw related to the md Multiple Devices subsystem. Specifically, the status resync function can experience a soft lockup during the calculation of 'curr resync -...
[SECURITY] Fedora 38 Update: haruna-0.10.3-3.fc38
Open source video player built with Qt/QML and libmpv. Features: + play online videos, through youtube-dl; + supports youtube playlists; + toggle playlist with mouse-over, playlist overlays the video; + auto skip chapter containing certain words; + configurable shortcuts and mouse buttons; + quic...
Malicious code in prgoressbar2 (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx 3e7b14c0c56cf3ece2b23c361a6199d9920a3ecfdbf3b2f541d4cbc8dfbb8d10 Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...
Exploit for Code Injection in Vmware Spring_Framework
Spring4ShellPoC Spring4Shell PoC CVE-2022-22965 Just playin...
WordPress Catch Scroll Progress Bar plugin <= 1.5 - Unauthorized Plugin Setting Change vulnerability
Unauthorized Plugin Setting Change vulnerability discovered by apple502j in WordPress Catch Scroll Progress Bar plugin versions = 1.5. Solution Update the WordPress Catch Scroll Progress Bar plugin to the latest available version at least 1.6...
openSUSE Security Update : axel (openSUSE-2020-778)
This update for axel fixes the following issues : axel was updated to 2.17.8 : - CVE-2020-13614: SSL Certificate Hostnames were not verified boo1172159 - Replaced progressbar line clearing with terminal control sequence - Fixed parsing of Content-Disposition HTTP header - Fixed User-Agent HTTP...
SUSE SLES15 Security Update : skopeo (SUSE-SU-2020:0712-1)
This update for skopeo fixes the following issues : Update to skopeo v0.1.41 bsc1165715 : Bump github.com/containers/image/v5 from 5.2.0 to 5.2.1 Bump gopkg.in/yaml.v2 from 2.2.7 to 2.2.8 Bump github.com/containers/common from 0.0.7 to 0.1.4 Remove the reference to openshift/api vendor...
curl: Division by zero if terminal width is 2
Summary: In fly there will be a division by zero if progress bar width is 2. That can happen if terminal width is 2. Steps To Reproduce: This script crash: stty rows 10 cols 2 ; curl --progress-bar somefile temp Impact I believe that if it's possible to set terminal width for a service, then that...
curl: huge COLUMNS causes progress-bar to buffer overflow
Summary: If an attacker can set environmental variables, curl will always crash with a buffer overflow when downloading a file if the --progress-bar argument is set. Steps To Reproduce: Just run the following command on a 64-bit Linux system verified on Ubuntu 19.04. bash Of course you can set th...
Zydra - File Password Recovery Tool And Linux Shadow File Cracker
Zydra is a file password recovery tool and Linux shadow file cracker. It uses the dictionary search or Brute force method for cracking passwords. Supported Files RAR Files Legacy ZIP Files PDF Files Linux Shadow Files zydra can find all the user’s password in the linux shadow file one after the...
Fedora 19 : wget-1.16-3.fc19 (2014-15405)
add fix for arches with unsigned char security update Fix the progress bar issue 1159643 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible...
Fedora 20 : wget-1.16-3.fc20 (2014-15385)
add fix for arches with unsigned char - security update - Fix the progress bar issue 1159643 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible...
MS Windows 2000/NT 4/XP Window Message Subsystem Design Error Vulnerability (5)
No description provided by source. source: http://www.securityfocus.com/bid/5408/info A serious design error in the Win32 API has been reported. The issue is related to the inter-window message passing system. This vulnerability is wide-ranging and likely affects almost every Win32 window-based...
MS Windows 2000/NT 4/XP Window Message Subsystem Design Error Vulnerability (8)
No description provided by source. source: http://www.securityfocus.com/bid/5408/info A serious design error in the Win32 API has been reported. The issue is related to the inter-window message passing system. This vulnerability is wide-ranging and likely affects almost every Win32 window-based...