14 matches found
EUVD-2013-4329
Malware in sbrugna...
EUVD-2007-1776
Malware in sbrugna...
EUVD-2004-0148
Malware in sbrugna...
CVE-2024-11351
The Restrict – membership, site, content and user access restrictions for WordPress plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.2.8 via the WordPress core search feature. This makes it possible for unauthenticated attackers to extra...
PT-2024-17330 · WordPress · Mightyforms
Name of the Vulnerable Software and Affected Versions: Contact Form, Survey & Form Builder – MightyForms plugin for WordPress versions up to, and including, 1.3.9 Description: The issue is related to Stored Cross-Site Scripting via the plugin's 'mightyforms' shortcode due to insufficient input...
PT-2024-16130 · WordPress · Sms Alert Order Notifications
Name of the Vulnerable Software and Affected Versions: SMS Alert Order Notifications – WooCommerce plugin for WordPress versions up to, and including, 3.7.5 Description: The issue is related to Stored Cross-Site Scripting via the plugin's sa subscribe shortcode due to insufficient input...
PT-2022-21649 · WordPress · Cleantalk
Name of the Vulnerable Software and Affected Versions: Spam protection, AntiSpam, FireWall by CleanTalk WordPress plugin versions prior to 5.185.1 Description: The issue concerns a lack of validation for ids used in SQL statements, potentially leading to SQL injection. This could be exploited by...
CVE-2021-39355
The Indeed Job Importer WordPress plugin is vulnerable to Stored Cross-Site Scripting due to insufficient input validation and sanitization via several parameters found in the /indeed-job-importer/trunk/indeed-job-importer.php file which allowed attackers with administrative user access to inject...
ImageCache Actions - Critical - Multiple Vulnerabilities - SA-CONTRIB-2019-056
The imagecache actions module defines a number of additional image effects that can be used to create image styles. The "Image styles admin" sub module provides additional functionality to duplicate, export and import image styles. The module uses unserialize to import image styles into another...
Description of the Office 2008 for Mac 12.0.1 Update
Resolves a security vulnerability that exists in Microsoft Office 2008 for Mac that could allow arbitrary code to run when you open a malicious document. This update addresses that vulnerability.Microsoft has released security bulletin MS08-014. This security bulletin contains all the relevant...
CVE-2011-1836
utils/ecryptfs-recover-private in ecryptfs-utils before 90 does not establish a subdirectory with safe permissions, which might allow local users to bypass intended access restrictions via standard filesystem operations during the recovery process...
Ubuntu: Security Advisory (USN-1442-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Microsoft Word Workspace Memory Corruption Remote Code Execution Vulnerability
Description Microsoft Word is prone to a remote code-execution vulnerability. An attacker could exploit this issue by enticing a victim to open a malicious Word file. Successfully exploiting this issue would allow the attacker to execute arbitrary code in the context of the currently logged-in...
CVE-2003-1169
DATEV Nutzungskontrolle 2.1 and 2.2 has insecure write permissions for critical registry keys, which allows local users to bypass access restrictions by importing NukoInfo values in certain DATEV keys, which disables Nutzungskontrolle...