CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8 matches found

SUSE CVE•added 2023/02/15 3:55 a.m.•1 views

SUSE CVE-2020-16126

An Ubuntu-specific modification to AccountsService in versions before 0.6.55-0ubuntu13.2, among other earlier versions, improperly dropped the ruid, allowing untrusted users to send signals to AccountService, thus stopping it from handling D-Bus messages in a timely fashion...

3.3CVSS6.8AI score0.01989EPSS

Exploits2References3

WPVulnDB•added 2023/01/16 12:0 a.m.•14 views

Restaurant Menu < 2.3.6 - Contributor+ Stored XSS via Shortcode

The plugin does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks PoC The exploit requires at least a...

5.4CVSS5AI score0.00198EPSS

Exploits2Affected Software1

wpexploit•added 2023/01/16 12:0 a.m.•88 views

Restaurant Menu < 2.3.6 - Contributor+ Stored XSS via Shortcode

5.4CVSS5.2AI score0.00198EPSS

Exploits2

NVD•added 2020/11/11 4:15 a.m.•16 views

CVE-2020-16126

3.3CVSS3.6AI score0.01989EPSS

Exploits2References1

Prion•added 2020/11/11 4:15 a.m.•20 views

Design/Logic Flaw

2.1CVSS4.1AI score0.01989EPSS

Exploits2References1Affected Software1

CVE•added 2020/11/11 4:10 a.m.•160 views

CVE-2020-16126

The CVE-2020-16126 issue affects Ubuntu’s AccountsService in versions older than 0.6.55-0ubuntu13.2, where an Ubuntu-specific modification dropped the ruid, allowing untrusted users to send signals to AccountsService and hindering its handling of D-Bus messages (denial of service). Remediation: u...

3.3CVSS4.5AI score0.01989EPSS

Exploits2References1Affected Software1