127 matches found
CVE-2022-1845
The WP Post Styling WordPress plugin before 1.3.1 does not have CSRF checks in various actions, which could allow attackers to make a logged in admin delete plugin's data, update the settings, add new entries and more via CSRF attacks...
CVE-2022-1845
The WP Post Styling WordPress plugin before 1.3.1 does not have CSRF checks in various actions, which could allow attackers to make a logged in admin delete plugin's data, update the settings, add new entries and more via CSRF attacks...
CVE-2022-1845
The WP Post Styling WordPress plugin before 1.3.1 does not have CSRF checks in various actions, which could allow attackers to make a logged in admin delete plugin's data, update the settings, add new entries and more via CSRF attacks...
CVE-2022-1845 WP Post Styling < 1.3.1 - Multiple CSRF
The WP Post Styling WordPress plugin before 1.3.1 does not have CSRF checks in various actions, which could allow attackers to make a logged in admin delete plugin's data, update the settings, add new entries and more via CSRF attacks...
CVE-2022-1845
The CVE-2022-1845 entry concerns the WordPress WP Post Styling plugin (version
WordPress plugin WP Post Styling 跨站请求伪造漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a set of blogging platforms developed using the PHP language. WordPress plugin is an application plugin. WordPress WP Post Styling plugin version prior to 1.3.1 is vulnerable to cross-site request forgery,...
Malicious code in jive-styling-toolkit (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a59989394c92f8fba37cb005d3969162434ceead403efd05bcb866970e799795 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-4034 Malicious code in jive-styling-toolkit (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a59989394c92f8fba37cb005d3969162434ceead403efd05bcb866970e799795 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
WP Post Styling < 1.3.1 - Multiple CSRF
The plugin does not have CSRF checks in various actions, which could allow attackers to make a logged in admin delete plugin's data, update the settings, add new entries and more via CSRF attacks PoC...
WP Post Styling < 1.3.1 - Multiple CSRF
The plugin does not have CSRF checks in various actions, which could allow attackers to make a logged in admin delete plugin's data, update the settings, add new entries and more via CSRF attacks HTMLFormElement.prototype.submit.call document.getElementById"test" ;...
CVE-2022-1416
Missing sanitization of data in Pipeline error messages in GitLab CE/EE affecting all versions starting from 1.0.2 before 14.8.6, all versions from 14.9.0 before 14.9.4, and all versions from 14.10.0 before 14.10.1 allows for rendering of attacker controlled HTML tags and CSS styling...
CVE-2022-1416
Missing sanitization of data in Pipeline error messages in GitLab CE/EE affecting all versions starting from 1.0.2 before 14.8.6, all versions from 14.9.0 before 14.9.4, and all versions from 14.10.0 before 14.10.1 allows for rendering of attacker controlled HTML tags and CSS styling...
CVE-2021-29961
CVE-2021-29961 affects Mozilla Firefox (pre-89 releases). The issue is a content spoofing vulnerability where styling/rendering an oversized element failed to clip correctly, enabling an attacker to paint over the user interface. Root cause: incorrect clipping during rendering of oversized selec...
SUSE: Security Advisory (SUSE-SU-2019:2902-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
VulnCheck KEV: CVE-2015-5468
Directory traversal vulnerability in the WP e-Commerce Shop Styling plugin before 2.6 for WordPress allows remote attackers to read arbitrary files via a .. dot dot in the filename parameter to includes/download.php...
openSUSE Security Update : gdb (openSUSE-2019-2494)
This update for gdb fixes the following issues : Update to gdb 8.3.1: jscECO-368 Security issues fixed : - CVE-2019-1010180: Fixed a potential buffer overflow when loading ELF sections larger than the file. bsc1142772 Upgrade libipt from v2.0 to v2.0.1. - Enable librpm for version librpm.so.3...
Security update for gdb (moderate)
openSUSE Security Update: Security update for gdb Announcement ID: openSUSE-SU-2019:2493-1 Rating: moderate References: 1115034 1142772 1145692 Cross-References: CVE-2019-1010180 Affected Products: openSUSE Leap 15.0 An update that solves one vulnerability and has two fixes is now available...
openSUSE Security Update : gdb (openSUSE-2019-2493)
This update for gdb fixes the following issues : Update to gdb 8.3.1: jscECO-368 Security issues fixed : - CVE-2019-1010180: Fixed a potential buffer overflow when loading ELF sections larger than the file. bsc1142772 Upgrade libipt from v2.0 to v2.0.1. - Enable librpm for version librpm.so.3...
OPENSUSE-SU-2019:2493-1 Security update for gdb
This update for gdb fixes the following issues: Update to gdb 8.3.1: jscECO-368 Security issues fixed: - CVE-2019-1010180: Fixed a potential buffer overflow when loading ELF sections larger than the file. bsc1142772 Upgrade libipt from v2.0 to v2.0.1. - Enable librpm for version librpm.so.3...
SUSE SLED15 / SLES15 Security Update : gdb (SUSE-SU-2019:2913-1)
This update for gdb fixes the following issues : Update to gdb 8.3.1: jscECO-368 Security issues fixed : CVE-2019-1010180: Fixed a potential buffer overflow when loading ELF sections larger than the file. bsc1142772 Upgrade libipt from v2.0 to v2.0.1. Enable librpm for version librpm.so.3...