Lucene search
K

347 matches found

NVD
NVD
added 2024/09/25 3:15 a.m.32 views

CVE-2024-8485

The REST API TO MiniProgram plugin for WordPress is vulnerable to privilege escalation via account takeovr in all versions up to, and including, 4.7.1 via the updateUserInfo due to missing validation on the 'openid' user controlled key that determines what user will be updated. This makes it...

9.8CVSS0.0059EPSS
Exploits0References3
CVE
CVE
added 2024/09/25 2:5 a.m.88 views

CVE-2024-8485

The REST API TO MiniProgram plugin for WordPress is vulnerable to unauthenticated privilege escalation up to version 4.7.1. The flaw is in updateUserInfo(), caused by missing validation of the openid user-controlled key, allowing an attacker to update arbitrary user accounts (e.g., changing email...

9.8CVSS9.7AI score0.0059EPSS
Exploits0References3Affected Software1
CNVD
CNVD
added 2024/09/18 12:0 a.m.5 views

SAP NetWeaver AS Cross-Site Scripting Vulnerability (CNVD-2024-49630)

SAP NetWeaver AS is a SAP network application server from SAP. It not only provides network services, but also the basic platform for SAP software. SAP NetWeaver AS suffers from a cross-site scripting vulnerability that stems from insufficient coding of user control input, which can be exploited ...

4.8CVSS6.4AI score0.00231EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/09/10 12:0 a.m.4 views

Fortinet FortiAnalyzer和FortiManager 安全漏洞

Fortinet FortiManager and Fortinet FortiAnalyzer are both products of Fortinet, Inc. Fortinet FortiManager is a centralized network security management platform. The platform supports centralized management of any number of Fortinet devices, and can be grouped into different management domains AD...

6.5CVSS6.7AI score0.00529EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/09/02 11:3 a.m.12 views

CVE-2024-5148 Gnome-remote-desktop: inadequate validation of session agents using d-bus methods may expose rdp tls certificate

A flaw was found in the gnome-remote-desktop package. The gnome-remote-desktop system daemon performs inadequate validation of session agents using D-Bus methods related to transitioning a client connection from the login screen to the user session. As a result, the system RDP TLS certificate and...

7.5CVSS6.7AI score0.00569EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/08/26 12:0 a.m.3 views

WordPress plugin Zephyr Project Manager 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin.... A security vulnerability...

7.1CVSS6.6AI score0.00321EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/08/16 12:0 a.m.5 views

upKeeper 安全漏洞

upKeeper is a cloud-based or local solution from upKeeper, Inc. A security vulnerability exists in upKeeper version 5.1.9 and earlier, which stems from the presence of an authorization bypass via user control key vulnerability that allows the use of REST trust in system resources to gain access t...

7.6CVSS6.6AI score0.00312EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/06/27 12:0 a.m.3 views

Talya Informatics Travel APPS Security Breach

Talya Informatics Travel APPS is a travel software from the Turkish company Talya Informatics. A security vulnerability exists in Talya Informatics Travel APPS prior to version v17.0.68, which stems from a vulnerability that allows an attacker to bypass user control key authorization using...

9.8CVSS6.7AI score0.00468EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/06/22 4:32 a.m.19 views

CVE-2024-4874 Bricks Builder <= 1.9.8 - Insecure Direct Object Reference

The Bricks Builder plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 1.9.8 via the postId parameter due to missing validation on a user controlled key. This makes it possible for authenticated attackers, with Contributor-level access and...

4.3CVSS6.5AI score0.00314EPSS
Exploits0References2
OSV
OSV
added 2024/06/20 11:15 a.m.1 views

DEBIAN-CVE-2022-48717

In the Linux kernel, the following vulnerability has been resolved: ASoC: max9759: fix underflow in speakergaincontrolput Check for negative values of "priv-gain" to prevent an out of bounds access. The concern is that these might come from the user via: - sndctlelemwriteuser - sndctlelemwrite -...

7.8CVSS5.4AI score0.00219EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/06/08 12:0 a.m.4 views

WordPress plugin KiviCare security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

8.8CVSS6.8AI score0.00336EPSS
Exploits0References2
OSV
OSV
added 2024/05/28 4:55 p.m.19 views

GHSA-8FMJ-33GW-G7PW Denial of service of Minder Server from maliciously crafted GitHub attestations

Minder is vulnerable to a denial-of-service DoS attack which could allow an attacker to crash the Minder server and deny other users access to it. The root cause of the vulnerability is that Minders sigstore verifier reads an untrusted response entirely into memory without enforcing a limit on th...

5.3CVSS5.2AI score0.0053EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.16 views

RHEL 5 : freeradius (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - freeradius: Out-of-bounds write in radcoalesce CVE-2017-10979 - An FR-GV-201 issue in FreeRADIUS 2.x befo...

8.2AI score0.06983EPSS
Exploits3References8
WPVulnDB
WPVulnDB
added 2024/04/24 12:0 a.m.15 views

WP-Recall – Registration, Profile, Commerce & More < 16.26.6 - Insecure Direct Object Reference

Description The WP-Recall – Registration, Profile, Commerce & More plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 16.26.5 due to missing validation on a user controlled key. This makes it possible for authenticated attackers, with...

4.3CVSS6.7AI score0.00357EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2024/04/09 7:15 p.m.29 views

CVE-2024-1289

The LearnPress – WordPress LMS Plugin plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 4.2.6.3 due to missing validation on a user controlled key when looking up order information. This makes it possible for authenticated attackers to...

6.5CVSS6.1AI score0.00391EPSS
Exploits0References2
OSV
OSV
added 2024/03/25 7:46 p.m.14 views

GHSA-Q7G6-XFH2-VHPX phpMyFAQ stored Cross-site Scripting at user email

Summary The email field in phpMyFAQ's user control panel page is vulnerable to stored XSS attacks due to the inadequacy of PHP's FILTERVALIDATEEMAIL function, which only validates the email format, not its content. This vulnerability enables an attacker to execute arbitrary client-side JavaScript...

5.5CVSS5.9AI score0.00691EPSS
Exploits1References5
NVD
NVD
added 2024/03/25 7:15 p.m.20 views

CVE-2024-27300

phpMyFAQ is an open source FAQ web application for PHP 8.1+ and MySQL, PostgreSQL and other databases. The email field in phpMyFAQ's user control panel page is vulnerable to stored XSS attacks due to the inadequacy of PHP's FILTERVALIDATEEMAIL function, which only validates the email format, not...

5.5CVSS5.6AI score0.00691EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2024/03/25 6:30 p.m.21 views

CVE-2024-27300 phpMyFAQ Stored XSS at user email

phpMyFAQ is an open source FAQ web application for PHP 8.1+ and MySQL, PostgreSQL and other databases. The email field in phpMyFAQ's user control panel page is vulnerable to stored XSS attacks due to the inadequacy of PHP's FILTERVALIDATEEMAIL function, which only validates the email format, not...

5.5CVSS6.3AI score0.00691EPSS
Exploits1References3
CNNVD
CNNVD
added 2024/03/25 12:0 a.m.6 views

phpMyFAQ 安全漏洞

phpMyFAQ is a multilingual, fully database-driven Frequently Asked Questions FAQ system by the individual developer Thorsten Rinne. A security vulnerability exists in phpMyFAQ, which stems from the email field in the phpMyFAQ User Control Panel page being vulnerable to a stored cross-site scripti...

5.5CVSS4.6AI score0.00691EPSS
Exploits1References4
Malwarebytes
Malwarebytes
added 2024/02/22 11:11 a.m.18 views

Signal to shield user phone numbers by default

Chat app Signal will shield user’s phone numbers by default from now on. And, it will no longer be necessary to exchange phone numbers when people want to connect through the app. In November, we reported that Signal was testing usernames to eliminate the need to share your phone number. Signal h...

7.1AI score
Exploits0
Rows per page
Query Builder