Lucene search
K

422 matches found

RedHat Linux
RedHat Linux
added 2019/10/29 9:53 a.m.6 views

Mozilla: Potentially exploitable crash due to 360 Total Security

A flaw was found in the 360 Total Security code in Firefox and Thunderbird. Memory corruption is possible in the accessibility engine that could lead to an exploit to run arbitrary code. This vulnerability could be exploited over a network connection and would affect confidentiality and integrity...

8.8CVSS7.4AI score0.01326EPSS
Exploits1References5
Prion
Prion
added 2019/10/28 3:15 p.m.19 views

Design/Logic Flaw

In K7 Antivirus Premium 16.0.xxx through 16.0.0120; K7 Total Security 16.0.xxx through 16.0.0120; and K7 Ultimate Security 16.0.xxx through 16.0.0120, the module K7TSHlpr.dll improperly validates the administrative privileges of the user, allowing arbitrary registry writes in the K7AVOptn.dll...

7.5CVSS9.5AI score0.01617EPSS
Exploits1References1Affected Software3
Cvelist
Cvelist
added 2019/10/28 2:54 p.m.27 views

CVE-2019-16897

In K7 Antivirus Premium 16.0.xxx through 16.0.0120; K7 Total Security 16.0.xxx through 16.0.0120; and K7 Ultimate Security 16.0.xxx through 16.0.0120, the module K7TSHlpr.dll improperly validates the administrative privileges of the user, allowing arbitrary registry writes in the K7AVOptn.dll...

9.6AI score0.01617EPSS
Exploits1References1
RedHat Linux
RedHat Linux
added 2019/10/24 9:33 p.m.80 views

Critical: Red Hat Security Advisory: firefox security update

An update for firefox is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

8.8CVSS6.9AI score0.06707EPSS
Exploits3References9
RedHat Linux
RedHat Linux
added 2019/10/24 9:33 p.m.6 views

Mozilla: Potentially exploitable crash due to 360 Total Security

A flaw was found in the 360 Total Security code in Firefox and Thunderbird. Memory corruption is possible in the accessibility engine that could lead to an exploit to run arbitrary code. This vulnerability could be exploited over a network connection and would affect confidentiality and integrity...

8.8CVSS7.4AI score0.01326EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2019/10/24 9:19 p.m.6 views

Mozilla: Potentially exploitable crash due to 360 Total Security

A flaw was found in the 360 Total Security code in Firefox and Thunderbird. Memory corruption is possible in the accessibility engine that could lead to an exploit to run arbitrary code. This vulnerability could be exploited over a network connection and would affect confidentiality and integrity...

8.8CVSS7.4AI score0.01326EPSS
Exploits1References5
Veracode
Veracode
added 2019/10/24 12:22 a.m.26 views

Denial Of Service (DoS)

Mozilla Firefox is vulnerable to denial of service DoS. It is potentially exploitable crash due to 360 Total Security...

8.8CVSS2.4AI score0.01326EPSS
Exploits1References7Affected Software2
Tenable Nessus
Tenable Nessus
added 2019/10/24 12:0 a.m.38 views

RHEL 7 : firefox (RHSA-2019:3193)

The remote Redhat Enterprise Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2019:3193 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox...

8.8CVSS7.8AI score0.06707EPSS
Exploits3References20
Kaspersky
Kaspersky
added 2019/09/22 12:0 a.m.61 views

KLA11591 Multiple vulnerabilities in Mozilla Thunderbird

Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, bypass security restrictions. Below is a complete list of vulnerabilities: 1. Vulnerability related to document.domain can be exploited...

8.8CVSS9.4AI score0.06707EPSS
Exploits3References4
CNVD
CNVD
added 2019/09/05 12:0 a.m.3 views

WordPress total-security plugin input validation error vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. total-security is a website security vulnerability scanning plugin used in it. An input validation error vulnerability exists in the...

5.3CVSS6.7AI score0.01139EPSS
Exploits0References1
CNVD
CNVD
added 2019/08/23 12:0 a.m.2 views

WordPress total-security plugin cross-site scripting vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. total-security is a website security vulnerability scanning plugin used in it. A cross-site scripting vulnerability exists in the...

6.1CVSS6.2AI score0.00913EPSS
Exploits0References1
NVD
NVD
added 2019/08/21 12:15 p.m.16 views

CVE-2016-10898

The total-security plugin before 3.4.1 for WordPress has XSS...

6.1CVSS6.4AI score0.00913EPSS
Exploits0References1
OSV
OSV
added 2019/08/21 12:15 p.m.4 views

CVE-2016-10898

The total-security plugin before 3.4.1 for WordPress has XSS...

6.1CVSS5.8AI score0.00913EPSS
Exploits0References1
OSV
OSV
added 2019/08/21 12:15 p.m.7 views

CVE-2016-10899

The total-security plugin before 3.4.1 for WordPress has a settings-change vulnerability...

5.3CVSS5.8AI score0.01139EPSS
Exploits0References1
Prion
Prion
added 2019/08/21 12:15 p.m.17 views

Cross site scripting

The total-security plugin before 3.4.1 for WordPress has XSS...

4.3CVSS7.2AI score0.00913EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2019/08/21 12:15 p.m.18 views

Design/Logic Flaw

The total-security plugin before 3.4.1 for WordPress has a settings-change vulnerability...

5CVSS7.2AI score0.01139EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2019/08/21 11:53 a.m.37 views

CVE-2016-10898

The CVE-2016-10898 entry corresponds to a Cross-Site Scripting (XSS) vulnerability in the WordPress plugin total-security. Multiple connected sources confirm the affected product is the Total Security WordPress plugin and indicate the issue exists in versions before 3.4.1. The Red Hat, CNVD, CVE ...

6.1CVSS6.4AI score0.00913EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2019/08/21 11:51 a.m.23 views

CVE-2016-10899

The total-security plugin before 3.4.1 for WordPress has a settings-change vulnerability...

5.4AI score0.01139EPSS
Exploits0References1
CVE
CVE
added 2019/08/21 11:51 a.m.40 views

CVE-2016-10899

The CVE-2016-10899 entry concerns the WordPress Total Security plugin prior to version 3.4.1, described as a settings-change vulnerability. Multiple connected sources (Red Hat, NVD, CNVD, WPVulnDB, CVE listing) converge on a vulnerability in the plugin’s settings handling that could allow unautho...

5.3CVSS5.4AI score0.01139EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2019/07/18 7:15 p.m.23 views

Information disclosure

Information Disclosure in Kaspersky Anti-Virus, Kaspersky Internet Security, Kaspersky Total Security versions up to 2019 could potentially disclose unique Product ID by forcing victim to visit a specially crafted webpage for example, via clicking phishing link. Vulnerability has CVSS v3.0 base...

4.3CVSS4.4AI score0.02211EPSS
Exploits0References2Affected Software5
Rows per page
Query Builder