Lucene search
K

115 matches found

Positive Technologies
Positive Technologies
added 2022/07/06 12:0 a.m.6 views

PT-2022-18480 · Hcl · Hcl Launch

Name of the Vulnerable Software and Affected Versions: HCL Launch affected versions not specified Description: The issue concerns the storage of certain data for recurring activities in a plain text format. Recommendations: At the moment, there is no information about a newer version that contain...

5.5CVSS5.3AI score0.0015EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2022/07/01 7:43 p.m.2 views

CVE-2022-27549

HCL Launch may store certain data for recurring activities in a plain text format...

5.5CVSS5.8AI score0.0015EPSS
Exploits0References2
Code423n4
Code423n4
added 2022/05/02 12:0 a.m.11 views

PARMinerV2's liquidate can become stuck

Lines of code Vulnerability details PARMinerV2's liquidate can be run repeatedly for the same collateralToken with different arguments. For example, different Vaults can have the same token, so there can be unrelated runs with different vaultId / DEX data, but the same collateralToken and proxy. ...

6.8AI score
Exploits0
Patchstack
Patchstack
added 2022/02/28 12:0 a.m.11 views

WordPress Recurring Bookings for WooCommerce plugin <= 2.0.0 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress Recurring Bookings for WooCommerce plugin versions = 2.0.0. Solution No patched version available...

4.4AI score
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2022/02/28 12:0 a.m.10 views

WordPress Recurring Bookings for WooCommerce plugin <= 2.0.0 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress Recurring Bookings for WooCommerce plugin versions = 2.0.0. Solution No patched version available...

2.3AI score
Exploits0References2Affected Software1
Code423n4
Code423n4
added 2021/08/13 12:0 a.m.11 views

TimeLock cannot schedule the same calls multiple times

Handle cmichel Vulnerability details The TimeLock.schedule function reverts if the same targets and data fields are used as the txHash will be the same. This means one cannot schedule the same transactions multiple times. Impact Imagine the delay is set to 30 days, but a contractor needs to be pa...

6.9AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2021/03/08 12:0 a.m.35 views

openSUSE Security Update : MozillaThunderbird (openSUSE-2021-387)

This update for MozillaThunderbird fixes the following issues : - Mozilla Thunderbird 78.8 - fixed: Importing an address book from a CSV file always reported an error - fixed: Security information for S/MIME messages was not displayed correctly prior to a draft being saved - fixed: Calendar:...

8.8CVSS7.3AI score0.0153EPSS
Exploits0References6
OPENSUSE Linux
OPENSUSE Linux
added 2021/03/06 12:0 a.m.37 views

Security update for MozillaThunderbird (important)

openSUSE Security Update: Security update for MozillaThunderbird Announcement ID: openSUSE-SU-2021:0387-1 Rating: important References: 1182357 1182614 Cross-References: CVE-2021-23968 CVE-2021-23969 CVE-2021-23973 CVE-2021-23978 CVSS scores: CVE-2021-23968 NVD : 4.3...

8.1CVSS8.6AI score0.0153EPSS
Exploits0References2
OSV
OSV
added 2021/03/05 10:42 p.m.5 views

OPENSUSE-SU-2021:0387-1 Security update for MozillaThunderbird

This update for MozillaThunderbird fixes the following issues: - Mozilla Thunderbird 78.8 fixed: Importing an address book from a CSV file always reported an error fixed: Security information for S/MIME messages was not displayed correctly prior to a draft being saved fixed: Calendar: FileLink UI...

8.8CVSS7.2AI score0.0153EPSS
Exploits0References7
Fedora
Fedora
added 2020/07/22 1:20 a.m.16 views

[SECURITY] Fedora 31 Update: php-horde-kronolith-4.2.29-1.fc31

Kronolith is the Horde calendar application. It provides web-based calendars backed by a SQL database or a Kolab server. Supported features include Ajax and mobile interfaces, shared calendars, remote calendars, invitation management iCalendar/iTip, free/busy management, resource management,...

3.4AI score
Exploits0
Fedora
Fedora
added 2020/07/22 1:6 a.m.13 views

[SECURITY] Fedora 32 Update: php-horde-kronolith-4.2.29-1.fc32

Kronolith is the Horde calendar application. It provides web-based calendars backed by a SQL database or a Kolab server. Supported features include Ajax and mobile interfaces, shared calendars, remote calendars, invitation management iCalendar/iTip, free/busy management, resource management,...

3.4AI score
Exploits0
CNVD
CNVD
added 2019/10/29 12:0 a.m.2 views

WordPress Easy Digital Downloads Recurring Payments extension cross-site scripting vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.Easy Digital Downloads EDD Recurring Payments extension is a payment gateway plugin used in it. A cross-site scripting vulnerability...

6.1CVSS6.3AI score0.00923EPSS
Exploits0References1
NVD
NVD
added 2019/10/23 4:15 p.m.17 views

CVE-2015-9525

The Easy Digital Downloads EDD Recurring Payments extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x before 2.0.5, 2.1.x before 2.1.11, 2.2.x before 2.2.9, and 2.3.x before 2.3.7, has XSS because addqueryarg is misused...

6.1CVSS6.1AI score0.00923EPSS
Exploits0References1
Prion
Prion
added 2019/10/23 4:15 p.m.13 views

Design/Logic Flaw

The Easy Digital Downloads EDD Recurring Payments extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x before 2.0.5, 2.1.x before 2.1.11, 2.2.x before 2.2.9, and 2.3.x before 2.3.7, has XSS because addqueryarg is misused...

4.3CVSS6.3AI score0.00923EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2019/10/23 4:0 p.m.81 views

CVE-2015-9525

The CVE-2015-9525 issue concerns the Easy Digital Downloads (EDD) Recurring Payments extension for WordPress. The vulnerability is an XSS flaw caused by misusing add_query_arg in multiple EDD versions (1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x before 2.0.5, 2.1.x before 2.1.11, 2.2.x before ...

6.1CVSS6AI score0.00923EPSS
Exploits0References1Affected Software2
Cvelist
Cvelist
added 2019/10/23 4:0 p.m.15 views

CVE-2015-9525

The Easy Digital Downloads EDD Recurring Payments extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x before 2.0.5, 2.1.x before 2.1.11, 2.2.x before 2.2.9, and 2.3.x before 2.3.7, has XSS because addqueryarg is misused...

6.1AI score0.00923EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2019/10/07 12:0 a.m.22 views

Fedora 31 : glpi (2019-311441d430)

GLPI version 9.4.4 This is a security release, upgrading is highly recommended Non exhaustive list of changes : - security Prevent account takeover vulnerability , - security Prevent execution of XSS on rich text, - fix cache key lenght issues, - fix user picture removal at login, - several fixes...

5.6AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/10/03 12:0 a.m.18 views

Fedora 30 : glpi (2019-a1636592a3)

GLPI version 9.4.4 This is a security release, upgrading is highly recommended Non exhaustive list of changes : - security Prevent account takeover vulnerability , - security Prevent execution of XSS on rich text, - fix cache key lenght issues, - fix user picture removal at login, - several fixes...

5.6AI score
Exploits0References2
Trend Micro Simply Security
Trend Micro Simply Security
added 2019/08/27 8:20 p.m.80 views

Three Common Email Security Mistakes That MSPs Make

MSPs can generate recurring revenue by being proactive about educating customers about email threats and how to defeat them—if they avoid three common mistakes. Businesses have come to rely on cloud email and file-sharing applications for communication and productivity. But, too often, they assum...

0.3AI score
Exploits0
Talos Blog
Talos Blog
added 2018/12/18 8:33 a.m.53 views

As Cryptocurrency Crash Continues, Will Mining Threat Follow?

Post authored by Nick Biasini. Executive Summary As 2018 draws to a close, one technology has definitively left its mark on the year: cryptocurrencies. Digital currencies started the year out strong after a meteoric rise toward the end of 2017. Since then, it's safe to say that cryptocurrencies...

Exploits0
Rows per page
Query Builder