WordPress KB Support Plugin <= 1.6.6 is vulnerable to Broken Access Control

Software KB Support Type Plugin Vulnerable versions = 1.6.6 Fixed in 1.6.7 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-8632 Patch priority Medium CVSS severity Medium 6.5 Developer Claim ownership PSID 987ce6d6ccaa Credits Krzysztof Zając Required...

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.35 and prior and 8.2.0 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).

...

WordPress Similarity Plugin <= 3.0 is vulnerable to Cross Site Request Forgery (CSRF)

Software Similarity Type Plugin Vulnerable versions = 3.0 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-3971 Patch priority Low CVSS severity Low 5.4 Developer Claim ownership PSID 9a13b3ce24a3 Credits Bob Matyas Required privilege...

Polkit 0.105-26 0.117-2 - Local Privilege Escalation

Exploit Title: Polkit 0.105-26 0.117-2 - Local Privilege Escalation Date: 06/11/2021 Exploit Author: J Smith CadmusofThebes Vendor Homepage: https://www.freedesktop.org/ Software Link: https://www.freedesktop.org/software/polkit/docs/latest/polkitd.8.html Version: polkit 0.105-26 Ubuntu, polkit...

Fedora Update for GraphicsMagick FEDORA-2016-f7195d5e5a

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

VM Turbo Operations Manager 4.5.x Directory Traversal Vulnerability

VM Turbo Operations Manager version 4.5.x suffers from a directory traversal vulnerability. Product: VM Turbo Operations Manager Vendor: VM Turbo Vulnerable Versions: 4.5.x earlier Tested Version: 4.0 Advisory Publication: April 11, 2014 Vendor Notification: April 11, 2014 Public Disclosure: May ...

Lenovo Hotkey Driver <= v5.33 Privilege Escalation Exploit

Exploit for unknown platform in category local exploits ========================================================== Lenovo Hotkey Driver in Lenovo Hotkey Driver and Access Connections version =v5.33 Impact: A privilege escalation attack can be used as a backdoor to bypass login and run arbitrary...