Lucene search
K

111 matches found

OSV
OSV
added 2024/06/07 5:33 a.m.14 views

CVE-2024-4354 TablePress – Tables in WordPress made easy <= 2.3 - Authenticated (Author+) Server-Side Request Forgery via DNS Rebind

The TablePress – Tables in WordPress made easy plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 2.3 via the getfilestoimport function. This makes it possible for authenticated attackers, with author-level access and above, to make web request...

6.4CVSS5.9AI score0.00368EPSS
Exploits0References7
Cvelist
Cvelist
added 2024/06/07 5:33 a.m.35 views

CVE-2024-4354 TablePress – Tables in WordPress made easy <= 2.3 - Authenticated (Author+) Server-Side Request Forgery via DNS Rebind

The TablePress – Tables in WordPress made easy plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 2.3 via the getfilestoimport function. This makes it possible for authenticated attackers, with author-level access and above, to make web request...

6.4CVSS0.00368EPSS
Exploits0References5
CVE
CVE
added 2024/06/07 5:33 a.m.59 views

CVE-2024-4354

CVE-2024-4354 concerns the WordPress plugin TablePress (

6.4CVSS6.4AI score0.00368EPSS
Exploits0References5Affected Software1
Vulnrichment
Vulnrichment
added 2024/06/07 5:33 a.m.23 views

CVE-2024-4354 TablePress – Tables in WordPress made easy <= 2.3 - Authenticated (Author+) Server-Side Request Forgery via DNS Rebind

The TablePress – Tables in WordPress made easy plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 2.3 via the getfilestoimport function. This makes it possible for authenticated attackers, with author-level access and above, to make web request...

6.4CVSS6.4AI score0.00368EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2024/05/21 1:58 a.m.4 views

SUSE CVE-2024-35974

In the Linux kernel, the following vulnerability has been resolved: block: fix q-blkglist corruption during disk rebind Multiple gendisk instances can allocated/added for single request queue in case of disk rebind. blkg may still stay in q-blkglist when calling blkcginitdisk for rebind, then...

5.5CVSS6.8AI score0.00225EPSS
Exploits0References13
NVD
NVD
added 2024/05/20 10:15 a.m.18 views

CVE-2024-35974

In the Linux kernel, the following vulnerability has been resolved: block: fix q-blkglist corruption during disk rebind Multiple gendisk instances can allocated/added for single request queue in case of disk rebind. blkg may still stay in q-blkglist when calling blkcginitdisk for rebind, then...

5.5CVSS6.7AI score0.00225EPSS
Exploits0References5
OSV
OSV
added 2024/05/20 10:15 a.m.2 views

DEBIAN-CVE-2024-35974

In the Linux kernel, the following vulnerability has been resolved: block: fix q-blkglist corruption during disk rebind Multiple gendisk instances can allocated/added for single request queue in case of disk rebind. blkg may still stay in q-blkglist when calling blkcginitdisk for rebind, then...

5.5CVSS5.8AI score0.00225EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2024/05/20 10:15 a.m.25 views

CVE-2024-35974

In the Linux kernel, the following vulnerability has been resolved: block: fix q-blkglist corruption during disk rebind Multiple gendisk instances can allocated/added for single request queue in case of disk rebind. blkg may still stay in q-blkglist when calling blkcginitdisk for rebind, then...

5.5CVSS6.3AI score0.00225EPSS
Exploits0References9
OSV
OSV
added 2024/05/20 10:15 a.m.2 views

UBUNTU-CVE-2024-35974

In the Linux kernel, the following vulnerability has been resolved: block: fix q-blkglist corruption during disk rebind Multiple gendisk instances can allocated/added for single request queue in case of disk rebind. blkg may still stay in q-blkglist when calling blkcginitdisk for rebind, then...

5.5CVSS6.6AI score0.00225EPSS
Exploits0References10
Vulnrichment
Vulnrichment
added 2024/05/20 9:42 a.m.17 views

CVE-2024-35974 block: fix q->blkg_list corruption during disk rebind

In the Linux kernel, the following vulnerability has been resolved: block: fix q-blkglist corruption during disk rebind Multiple gendisk instances can allocated/added for single request queue in case of disk rebind. blkg may still stay in q-blkglist when calling blkcginitdisk for rebind, then...

7AI score0.00225EPSS
Exploits0References5
Cvelist
Cvelist
added 2024/05/20 9:42 a.m.22 views

CVE-2024-35974 block: fix q->blkg_list corruption during disk rebind

In the Linux kernel, the following vulnerability has been resolved: block: fix q-blkglist corruption during disk rebind Multiple gendisk instances can allocated/added for single request queue in case of disk rebind. blkg may still stay in q-blkglist when calling blkcginitdisk for rebind, then...

6.6AI score0.00225EPSS
Exploits0References5
OSV
OSV
added 2024/05/20 9:42 a.m.18 views

CVE-2024-35974 block: fix q->blkg_list corruption during disk rebind

In the Linux kernel, the following vulnerability has been resolved: block: fix q-blkglist corruption during disk rebind Multiple gendisk instances can allocated/added for single request queue in case of disk rebind. blkg may still stay in q-blkglist when calling blkcginitdisk for rebind, then...

5.5CVSS6.2AI score0.00225EPSS
Exploits0References8
CVE
CVE
added 2024/05/20 9:42 a.m.91 views

CVE-2024-35974

CVE-2024-35974 affects the Linux kernel block subsystem. The vulnerability arises from a q-&gt;blkg_list corruption introduced when multiple gendisk instances are allocated for a single request queue during disk rebind, allowing a blkg to linger in q-&gt;blkg_list during blkcg_init_disk() and thu...

5.5CVSS6.9AI score0.00225EPSS
Exploits0References5Affected Software1
Debian CVE
Debian CVE
added 2024/05/20 9:42 a.m.17 views

CVE-2024-35974

In the Linux kernel, the following vulnerability has been resolved: block: fix q-blkglist corruption during disk rebind Multiple gendisk instances can allocated/added for single request queue in case of disk rebind. blkg may still stay in q-blkglist when calling blkcginitdisk for rebind, then...

5.5CVSS7.4AI score0.00225EPSS
Exploits0
OSV
OSV
added 2024/05/01 6:15 a.m.1 views

UBUNTU-CVE-2024-26996

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: fncm: Fix UAF ncm object at re-bind after usb ep transport error When ncm function is working and then stop usb0 interface for link down, ethstop is called. At this piont, accidentally if usb transport error should...

7.8CVSS6.1AI score0.00233EPSS
Exploits0References44
Veracode
Veracode
added 2024/03/27 7:30 a.m.29 views

DNS Rebind Attack

Docker is vulnerable to DNS Rebind Attack. This vulnerability is due to the lack of proper isolation between containers and the host's DNS resolver, allowing malicious actors to exploit DNS rebinding to bypass network restrictions...

7.5CVSS6.7AI score0.0075EPSS
Exploits0References4Affected Software3
OSV
OSV
added 2023/03/30 8:15 p.m.4 views

CVE-2023-28462

A JNDI rebind operation in the default ORB listener in Payara Server 4.1.2.191 Enterprise, 5.20.0 and newer Enterprise, and 5.2020.1 and newer Community, when Java 1.8u181 and earlier is used, allows remote attackers to load malicious code on the server once a JNDI directory scan is performed...

9.8CVSS7.4AI score0.0093EPSS
Exploits0References1
NVD
NVD
added 2023/03/30 8:15 p.m.28 views

CVE-2023-28462

A JNDI rebind operation in the default ORB listener in Payara Server 4.1.2.191 Enterprise, 5.20.0 and newer Enterprise, and 5.2020.1 and newer Community, when Java 1.8u181 and earlier is used, allows remote attackers to load malicious code on the server once a JNDI directory scan is performed...

9.8CVSS9.5AI score0.0093EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/03/30 12:0 a.m.27 views

CVE-2023-28462

A JNDI rebind operation in the default ORB listener in Payara Server 4.1.2.191 Enterprise, 5.20.0 and newer Enterprise, and 5.2020.1 and newer Community, when Java 1.8u181 and earlier is used, allows remote attackers to load malicious code on the server once a JNDI directory scan is performed...

9.7AI score0.0093EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/03/30 12:0 a.m.5 views

CVE-2023-28462

A JNDI rebind operation in the default ORB listener in Payara Server 4.1.2.191 Enterprise, 5.20.0 and newer Enterprise, and 5.2020.1 and newer Community, when Java 1.8u181 and earlier is used, allows remote attackers to load malicious code on the server once a JNDI directory scan is performed...

7.1AI score0.0093EPSS
Exploits0References1
Rows per page
Query Builder