321 matches found
CVE-2023-44982
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Jordy Meow Perfect Images Manage Image Sizes, Thumbnails, Replace, Retina.This issue affects Perfect Images Manage Image Sizes, Thumbnails, Replace, Retina: from n/a through 6.4.5...
Code injection
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Jordy Meow Perfect Images Manage Image Sizes, Thumbnails, Replace, Retina.This issue affects Perfect Images Manage Image Sizes, Thumbnails, Replace, Retina: from n/a through 6.4.5...
CVE-2023-44982 WordPress WP Retina 2x Plugin <= 6.4.5 is vulnerable to Sensitive Data Exposure
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Jordy Meow Perfect Images Manage Image Sizes, Thumbnails, Replace, Retina.This issue affects Perfect Images Manage Image Sizes, Thumbnails, Replace, Retina: from n/a through 6.4.5...
Square Thumbnails <= 1.1.0 - Missing Authorization
Description The Square Thumbnails plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on an unknown function in versions up to, and including, 1.1.0. This makes it possible for unauthenticated attackers to perform an unauthorized action...
WordPress Square Thumbnails Plugin <= 1.1.1 is vulnerable to Broken Access Control
Software Square Thumbnails Type Plugin Vulnerable versions = 1.1.1 Fixed in 1.1.2 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2023-49851 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID a70912944c5a Credits Nguyen Xuan Chien Required...
CVE-2023-47260
Redmine before 4.2.11 and 5.0.x before 5.0.6 allows XSS via thumbnails...
CVE-2023-47260
Redmine before 4.2.11 and 5.0.x before 5.0.6 allows XSS via thumbnails...
DEBIAN-CVE-2023-47260
Redmine before 4.2.11 and 5.0.x before 5.0.6 allows XSS via thumbnails...
CVE-2023-47260
Redmine before 4.2.11 and 5.0.x before 5.0.6 allows XSS via thumbnails...
Design/Logic Flaw
Redmine before 4.2.11 and 5.0.x before 5.0.6 allows XSS via thumbnails...
CVE-2023-47260
Redmine before 4.2.11 and 5.0.x before 5.0.6 allows XSS via thumbnails...
UBUNTU-CVE-2023-47260
Redmine before 4.2.11 and 5.0.x before 5.0.6 allows XSS via thumbnails...
CVE-2023-47260
Redmine before 4.2.11 and 5.0.x before 5.0.6 allows XSS via thumbnails...
CVE-2023-47260
Redmine before 4.2.11 and 5.0.x before 5.0.6 allows XSS via thumbnails...
Redmine Security Vulnerabilities
Redmine is a set of open source Web-based project management and defect tracking tools . The product provides features such as project management, issue tracking and role-based access control. A security vulnerability exists in Redmine versions prior to 4.2.11 and 5.0.x prior to 5.0.6, which stem...
CVE-2023-47260
Redmine before 4.2.11 and 5.0.x before 5.0.6 allows XSS via thumbnails...
PT-2023-9189 · Redmine · Redmine
Name of the Vulnerable Software and Affected Versions: Redmine versions prior to 4.2.11 Redmine versions 5.0.x prior to 5.0.6 Description: The issue is related to a lack of protection for the web page structure in the Thumbnails component of the Redmine web application, allowing for cross-site...
CVE-2023-45630
Unauth. Stored Cross-Site Scripting XSS vulnerability in wpdevart Gallery – Image and Video Gallery with Thumbnails plugin = 2.0.3 versions...
CVE-2023-45630
Unauth. Stored Cross-Site Scripting XSS vulnerability in wpdevart Gallery – Image and Video Gallery with Thumbnails plugin = 2.0.3 versions...
CVE-2023-45630 WordPress Responsive Image Gallery, Gallery Album Plugin <= 2.0.3 is vulnerable to Cross Site Scripting (XSS)
Unauth. Stored Cross-Site Scripting XSS vulnerability in wpdevart Gallery – Image and Video Gallery with Thumbnails plugin = 2.0.3 versions...