7 matches found
WordPress WP All Import Pro plugin <= 4.9.3 - Authenticated (Administrator+) Server-Side Request Forgery via File Import vulnerability
Authenticated Administrator+ Server-Side Request Forgery via File Import vulnerability discovered by Ivan Kuzymchak in WordPress Plugin WP All Import Pro versions = 4.9.3...
WordPress plugin Newsletters security vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plugin that supports personal blog sites on PHP and MySQL servers. A security vulnerability in the WordPress plugin...
UBUNTU-CVE-2023-40014
OpenZeppelin Contracts is a library for secure smart contract development. Starting in version 4.0.0 and prior to version 4.9.3, contracts using ERC2771Context along with a custom trusted forwarder may see msgSender return address0 in calls that originate from the forwarder with calldata shorter...
tcpdump 缓冲区错误漏洞
tcpdump is a set of sniffing tools from Tcpdump team running under command line. The tool is mainly used for packet analysis and network traffic capturing, among others. A security vulnerability exists in tcpdump version 4.99.3, which stems from an SMB protocol decoder that can perform...
PT-2022-35888 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v4.9.332 Description: The issue is related to the hugetlb lock not being taken before decrementing h-resv huge pages. This could potentially lead to security vulnerabilities, although the actual impact and attac...
tcpdump: SMB data printing mishandled
tcpdump before 4.9.3 mishandles the printing of SMB data issue 2 of 2...
tcpdump: Buffer over-read in babel_print_v2() in print-babel.c
The Babel parser in tcpdump before 4.9.3 has a buffer over-read in print-babel.c:babelprintv2...