12 matches found
Linux Distros Unpatched Vulnerability : CVE-2015-8078
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Integer overflow in the indexurlfetch function in imap/index.c in Cyrus IMAP 2.3.19, 2.4.18, and 2.5.6 allows remote attackers to have unspecified impact via...
CVE-2024-37491
Cross-Site Request Forgery CSRF vulnerability in apollo13themes Rife Free rife-free allows Cross Site Request Forgery.This issue affects Rife Free: from n/a through = 2.4.18...
CVE-2024-37491
The CVE-2024-37491 entry concerns a Cross-Site Request Forgery (CSRF) vulnerability in the Apollo13Themes Rife Free WordPress theme. Public records indicate Rife Free versions up to 2.4.18 are affected. The vulnerability is described as CSRF, but the connected documents do not provide exploit det...
WordPress plugin Rife Free 跨站请求伪造漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin. A cross-site request forge...
WordPress Rife Free Theme <= 2.4.18 is vulnerable to Cross Site Request Forgery (CSRF)
Software Rife Free Type Theme Vulnerable versions = 2.4.18 Fixed in 2.4.19 OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-37491 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 4f4234705ec1 Credits Dhabaleshwar Das Require...
Apache HTTP Server Memory Access Vulnerability - Linux
Apache HTTP Server is prone to a memory access vulnerability. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:apache:httpserver";...
Apache 2.4.18 / 2.4.20 X.509 Certificate Authentication Bypass
According to its banner, the version of Apache running on the remote host is either 2.4.18 or 2.4.20. Additionally, HTTP/2 is enabled over TLS or SSL. It is, therefore, affected by the an authentication bypass vulnerability in the experimental module for the HTTP/2 protocol due to a failure to...
Apache HTTP Server Denial of Service Vulnerability (Jul 2016)
Apache HTTP Server is prone to a denial of service vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
Fedora 22 : cyrus-imapd-2.4.18-1.fc22 (2015-8d4b507cb0)
Update to 2.4.18, rhbz1267871 and rhbz1267878 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...
Security fix for the ALT Linux 7 package cyrus-imapd version 2.4.18-alt1.M70P.1
2.4.18-alt1.M70P.1 built Jan. 7, 2016 Sergey Y. Afonin in task 155557 Dec. 15, 2015 Sergey Y. Afonin - updated to git 20151026 of "cyrus-imapd-2.4" branch CVE-2015-8077, CVE-2015-8078...
Updated cyrus-imapd packages fix security vulnerabilities
Updated cyrus-imapd packages fix security vulnerability: The cyrus-imapd package has been updated to version 2.4.18, fixing a security issue with a urlfetch range starting outside the message range, as well as several other bugs. See the upstream release announcement for details...
DSA-1069-1 kernel-source-2.4.18 - several
Bulletin has no description...