Lucene search
K

245 matches found

OSV
OSV
added 2025/01/09 6:52 p.m.3 views

CVE-2024-13246 Node Access Rebuild Progressive - Less critical - Access bypass - SA-CONTRIB-2024-010

Improper Ownership Management vulnerability in Drupal Node Access Rebuild Progressive allows Target Influence via Framing.This issue affects Node Access Rebuild Progressive: from 0.0.0 before 2.0.2...

5.3CVSS6.1AI score0.00258EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/01/09 12:0 a.m.4 views

Drupal 安全漏洞

Drupal is an open source content management system developed in the PHP language by the Drupal community. A security vulnerability previously existed in Drupal Node Access Rebuild Progressive version 2.0.2, which stemmed from the inclusion of an ownership mismanagement vulnerability...

5.3CVSS6.8AI score0.00258EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/12/09 11:39 a.m.22 views

CVE-2023-48277 WordPress Super Progressive Web Apps plugin <= 2.2.21 - Broken Access Control vulnerability

Missing Authorization vulnerability in SuperPWA Super Progressive Web Apps super-progressive-web-apps allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Super Progressive Web Apps: from n/a through = 2.2.21...

4.3CVSS0.00584EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/12/09 11:39 a.m.15 views

CVE-2023-48277 WordPress Super Progressive Web Apps plugin <= 2.2.21 - Broken Access Control vulnerability

Missing Authorization vulnerability in SuperPWA Super Progressive Web Apps super-progressive-web-apps allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Super Progressive Web Apps: from n/a through = 2.2.21...

4.3CVSS8.6AI score0.00584EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/12/09 12:0 a.m.6 views

WordPress plugin Super Progressive Web Apps 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exist...

4.3CVSS8.7AI score0.00584EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/11/01 12:0 a.m.10 views

PT-2024-32530 · WordPress · Magazine3 Pwa For Wp & Amp

Name of the Vulnerable Software and Affected Versions: Magazine3 PWA for WP & AMP versions 1.7.72 and earlier Description: The issue is related to a Missing Authorization vulnerability, which allows exploiting incorrectly configured access control security levels. Recommendations: For Magazine3 P...

8.8CVSS7.2AI score0.00307EPSS
Exploits0References5
CNNVD
CNNVD
added 2024/11/01 12:0 a.m.5 views

WordPress plugin PWA for WP & AMP 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

8.8CVSS6.6AI score0.00307EPSS
Exploits0References1
OSV
OSV
added 2024/10/02 8:15 a.m.3 views

CVE-2024-8967

The PWA — easy way to Progressive Web App plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 1.6.3 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...

5.4CVSS5.9AI score0.00311EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2024/10/02 7:35 a.m.10 views

CVE-2024-8967 PWA — easy way to Progressive Web App <= 1.6.3 - Authenticated (Author+) Stored Cross-Site Scripting via SVG File Upload

The PWA — easy way to Progressive Web App plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 1.6.3 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...

6.4CVSS5.8AI score0.00311EPSS
Exploits0References4
CNNVD
CNNVD
added 2024/10/02 12:0 a.m.2 views

WordPress plugin PWA — easy way to Progressive Web App 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

6.4CVSS6.2AI score0.00311EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2024/09/03 12:0 a.m.16 views

SUSE SLES15: libQt5Quick3D5 / libQt5Quick3DAssetImport5 / libqt5-qtquick3d-devel / etc (SUSE-SU-2024:3078-1)

The remote SUSE Linux SLES15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2024:3078-1 advisory. - CVE-2024-40724: Fixed heap-based buffer overflow in the PLY importer class in assimp bsc1228199 Other fixes: - Fix progressive...

8.4CVSS7.5AI score0.00281EPSS
Exploits0References4
OSV
OSV
added 2024/09/02 2:43 p.m.12 views

SUSE-SU-2024:3078-1 Security update for libqt5-qtquick3d

This update for libqt5-qtquick3d fixes the following issues: - CVE-2024-40724: Fixed heap-based buffer overflow in the PLY importer class in assimp bsc1228199 Other fixes: - Fix progressive anti-aliasing, which doesn't work if any object in the scene used a PrincipledMaterial - Skip processing...

8.4CVSS7.9AI score0.00281EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/08/21 12:0 a.m.15 views

SUSE SLES15 Security Update : libqt5-qtquick3d (SUSE-SU-2024:2985-1)

The remote SUSE Linux SLES15 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2024:2985-1 advisory. - CVE-2024-40724: Fixed a heap-based buffer overflow in the PLY importer class bsc1228199 - Fixed progressive anti-aliasing, which doesn't work if any...

8.4CVSS8AI score0.00281EPSS
Exploits0References4
HackRead
HackRead
added 2024/08/20 10:49 p.m.14 views

New Phishing Attacks Target Eastern European Bank Users on iOS and Android

Cybercriminals exploit Progressive Web Apps PWAs in the latest phishing scam, targeting mobile users in Czechia, Hungary, and…...

7.3AI score
Exploits0
Spring Security Advisories
Spring Security Advisories
added 2024/08/07 12:0 a.m.11 views

Spring Tips: HTMX

Hi, Spring fans! HTMX is the progressive hypertext sensation that's sweeping the process of web app creation, and - thanks to a nice integration by Spring community legend Wim Deblauwe, it's easier than ever to use it with Spring Boot and Thymeleaf. And, it's the topic of today's installment! jav...

7.2AI score
Exploits0
NVD
NVD
added 2024/05/03 9:15 a.m.11 views

CVE-2024-33937

Missing Authorization vulnerability in Nico Martin Progressive WordPress PWA.This issue affects Progressive WordPress PWA: from n/a through 2.1.13...

4.3CVSS5.1AI score0.00372EPSS
Exploits0References1
CVE
CVE
added 2024/05/03 8:18 a.m.64 views

CVE-2024-33937

CVE-2024-33937 describes a Missing Authorization vulnerability in the Progressive WordPress (PWA) plugin. Connected Red Hat advisory confirms this issue affects Progressive WordPress (PWA) versions up to 2.1.13 and does not provide explicit patch details in the documents. The available informatio...

4.3CVSS5.1AI score0.00372EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/05/03 12:0 a.m.5 views

WordPress plugin Progressive WordPress 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plug-in. A security vulnerability...

4.3CVSS6.4AI score0.00372EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/05/03 12:0 a.m.6 views

PT-2024-25570 · Nico Martin · Progressive Wordpress

Name of the Vulnerable Software and Affected Versions: Progressive WordPress PWA versions 2.1.13 and earlier Description: The issue is related to a Missing Authorization vulnerability in Nico Martin Progressive WordPress PWA. Recommendations: For versions 2.1.13 and earlier, update to a version...

4.3CVSS6.7AI score0.00372EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2024/04/30 10:33 a.m.8 views

freerdp: Out-of-bounds write in the `progressive_decompress` function due to incorrect calculations

A flaw was found in FreeRDP. Incorrect calculations in the progressivedecompress function may allow for a buffer overflow, resulting in a crash...

9.8CVSS5.9AI score0.01106EPSS
Exploits1References5
Rows per page
Query Builder