3 matches found
PT-2023-24720 · WordPress · Wp-Cirrus
Name of the Vulnerable Software and Affected Versions: WP-Cirrus plugin versions 0.6.11 and earlier Description: A Cross-Site Request Forgery CSRF issue exists, which can be exploited by an attacker to perform unauthorized actions on the affected system. Recommendations: For WP-Cirrus plugin...
PT-2023-24246 · Unknown · Iden3 Snarkjs
Name of the Vulnerable Software and Affected Versions: iden3 snarkjs versions through 0.6.11 Description: The issue allows double spending due to the lack of validation that the publicSignals length is less than the field modulus. Recommendations: For iden3 snarkjs versions through 0.6.11, consid...
libcroco 'cr_tknzr_parse_rgb' function denial of service vulnerability
libcroco is a CSS2 parsing library. A security vulnerability exists in the 'crtknzrparsergb' function of the cr-tknzr.c file in libcroco versions 0.6.11 and 0.6.12. A remote attacker can exploit this vulnerability to cause a denial of service application crash with the help of a specially crafted...