Cross site scripting

The Popup box WordPress plugin before 3.8.6 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

PT-2023-32389 · WordPress · Popup Box

Name of the Vulnerable Software and Affected Versions: Popup box WordPress plugin versions prior to 3.8.6 Description: The issue allows high privilege users, such as admins, to perform Stored Cross-Site Scripting attacks due to the plugin's failure to sanitise and escape some of its settings. Thi...

PT-2023-8204 · Ami · Ami Aptiov

Name of the Vulnerable Software and Affected Versions: AMI AptioV affected versions not specified Description: The issue is related to the BMP Logo Handler component in the AMI AptioV BIOS setup utility, which allows for an unrestricted upload of dangerous file types, including PNG logo files. Th...

Amazon Linux 2 : xorg-x11-server (ALAS-2023-2352)

It is, therefore, affected by a vulnerability as referenced in the ALAS2-2023-2352 advisory. A use-after-free flaw was found in xorg-x11-server-Xvfb. This issue occurs in Xvfb with a very specific and legacy configuration a multi-screen setup with multiple protocol screens, also known as Zaphod...

Multiple Post Passwords < 1.1.2 - Admin+ Stored XSS

Description The plugin does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

Evergreen Content Poster < 1.4.1 - Admin+ Stored XSS

Description The plugin does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

Use After Free

xorg-server is vulnerable to Use After Free. The vulnerability is caused when using X server in Zaphod mode a multi-screen setup with multiple protocol screens when the pointer is warped from within a window on one screen to the root window of the other screen and if the original window is...

Mouse pointer in Citrix session shifted

When using Citrix Published virtual apps on a setup with 3 monitors with a resolution of "2560x1440" each and one of them is in portrait mode, the mouse pointer is shifted in the app and it is not possible to use it correctly. The mouse pointer appears to be about 5cm next to where it is shown on...

App protection setup issue

Error in configuring App Protection using the following guide: https://docs.citrix.com/en-us/tech-zone/learn/poc-guides/app-protection-policies.html. When running the below commandlet to enable app protection: Set-BrokerDesktopGroup -Name Applicationprotection - $true Error is displayed saying th...

TriPay Payment Gateway < 3.2.8 - Admin+ Stored XSS

Description The plugin does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

kernel: md/raid10: fix memleak of md thread

A memory leak was found in the MD RAID10 driver. When raid10run fails after setupconf succeeds but before mddev-thread is set, the conf-thread is not freed, leaking kernel thread resources...

Cross site scripting

The gAppointments WordPress plugin through 1.9.5.1 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

CVE-2023-2707 Appointment booking addon for Gravity Forms <= 1.9.5.1 - Admin+ Stored XSS

The gAppointments WordPress plugin through 1.9.5.1 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

GLSA-202311-17 : phpMyAdmin: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202311-17 phpMyAdmin: Multiple Vulnerabilities - PhpMyAdmin 5.1.1 and before allows an attacker to retrieve potentially sensitive information by creating invalid requests. This affects the lang parameter, the pmaparameter, and the...

Exploit for CVE-2023-38646

CVE-2023-38646 Metabase Pre-Auth RCE 11/26/2023 Metabase ope...

The vulnerability of the installation and preliminary configuration tools for new Windows Autopilot devices on Lenovo devices is related to incorrect default access settings, allowing attackers to increase their privileges.

The vulnerability of the installation and initial configuration tools for new Windows Autopilot devices on Lenovo devices is related to incorrect default access settings. Exploiting this vulnerability could allow an attacker to increase their privileges...

Code injection

The Forminator WordPress plugin before 1.27.0 does not properly sanitize the redirect-url field in the form submission settings, which could allow high-privilege users such as an administrator to inject arbitrary web scripts even when the unfilteredhtml capability is disallowed for example in a...

File Manager < 6.3 - Admin+ Arbitrary OS File/Folder Access + Path Traversal

Description The plugin does not restrict the file managers root directory, allowing an administrator to set a root outside of the WordPress root directory, giving access to system files and directories even in a multisite setup, where site administrators should not be allowed to modify the sites...

Exploit for Incorrect Comparison in Dynamic-Linq Linq

Dynamic Linq injection to RCE - CVE-2023-32571 About Dynami...

Fedora 37 : tigervnc (2023-4708733ccc)

The remote Fedora 37 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-4708733ccc advisory. Fixes CVEs reported against Xserver. Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that...