Lucene search
+L

85 matches found

prion
prion
added 2019/09/26 2:15 a.m.17 views

Cross site request forgery (csrf)

The qtranslate-x plugin before 3.4.4 for WordPress has CSRF with resultant XSS via the wp-admin/options-general.php?page=qtranslate-x jsonconfigfiles or jsoncustomi18nconfig parameter...

4.3CVSS6.2AI score0.00867EPSS
Exploits1References3Affected Software1
veracode
veracode
added 2019/05/16 1:47 a.m.23 views

Denial Of Service (DoS)

MySQL is vulnerable to denial of service Dos attacks. A remote authenticated user could exploit a flaw in the X Plugin component to compromise MySQL Server via multiple protocols which leads to cause a hang or frequently repeatable crash...

4.9CVSS5.2AI score0.0245EPSS
Exploits0References11Affected Software1
redhat
redhat
added 2017/10/12 7:53 a.m.9 views

mysql: X Plugin unspecified vulnerability (CPU Jul 2017)

Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: X Plugin. Supported versions that are affected are 5.7.18 and earlier. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

5.3CVSS7.3AI score0.01996EPSS
Exploits0References5
redhat
redhat
added 2017/10/12 7:53 a.m.6 views

mysql: Server: X Plugin unspecified vulnerability (CPU Jan 2017)

Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Server: X Plugin. Supported versions that are affected are 5.7.16 and earlier. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server...

3.5CVSS7.2AI score0.01346EPSS
Exploits0References5
redhat
redhat
added 2017/10/12 7:53 a.m.8 views

mysql: X Plugin unspecified vulnerability (CPU Jul 2017)

Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: X Plugin. Supported versions that are affected are 5.7.16 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attac...

4.9CVSS7.3AI score0.0245EPSS
Exploits0References5
nessus
nessus
added 2017/08/24 12:0 a.m.44 views

Oracle MySQL 5.7.x < 5.7.19 Multiple Vulnerabilities

Binary data 700185.prm...

6.5CVSS6AI score0.03198EPSS
Exploits0References22
nvd
nvd
added 2017/08/08 3:29 p.m.21 views

CVE-2017-3646

Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: X Plugin. Supported versions that are affected are 5.7.16 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attac...

4.9CVSS4.6AI score0.0245EPSS
Exploits0References4
prion
prion
added 2017/08/08 3:29 p.m.19 views

Design/Logic Flaw

Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: X Plugin. Supported versions that are affected are 5.7.18 and earlier. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

3.5CVSS4.9AI score0.01996EPSS
Exploits0References4Affected Software1
osv
osv
added 2017/08/08 3:29 p.m.2 views

UBUNTU-CVE-2017-3646

Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: X Plugin. Supported versions that are affected are 5.7.16 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attac...

4.9CVSS6.6AI score0.0245EPSS
Exploits0References3
vulnrichment
vulnrichment
added 2017/08/08 3:0 p.m.10 views

CVE-2017-3646

Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: X Plugin. Supported versions that are affected are 5.7.16 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attac...

5.7AI score0.0245EPSS
Exploits0References4
cve
cve
added 2017/08/08 3:0 p.m.90 views

CVE-2017-3646

CVE-2017-3646 affects the Oracle MySQL Server X Plugin. Affected: MySQL 5.7.16 and earlier. An attacker with network access via multiple protocols and high privileges can cause a hang or crash (DOS). CVSS 3.0 base 4.9. Remediation: apply vendor patches to move to a later MySQL 5.7.x (e.g., RH adv...

4.9CVSS4.5AI score0.0245EPSS
Exploits0References4Affected Software1
cve
cve
added 2017/08/08 3:0 p.m.99 views

CVE-2017-3637

CVE-2017-3637 affects Oracle MySQL Server (X Plugin). Affected: MySQL 5.7.18 and earlier. Vulnerability arises in the X Plugin allowing a low-privilege, network-attached attacker via multiple protocols to cause a hang or crash (DOS). Mitigation: vendor advisories indicate fixed in 5.7.19 and newe...

5.3CVSS4.8AI score0.01996EPSS
Exploits0References4Affected Software1
cnvd
cnvd
added 2017/07/28 12:0 a.m.6 views

Oracle MySQL Server Denial of Service Vulnerability (CNVD-2017-24326)

Oracle MySQL is an open source relational database management system from Oracle. A security vulnerability exists in the X Plugin subcomponent of the MySQL Server component in Oracle MySQL, version 5.7.16 and earlier. A remote attacker could exploit this vulnerability to cause a denial of service...

4.9CVSS5.5AI score0.0245EPSS
Exploits0References1
nessus
nessus
added 2017/07/26 12:0 a.m.400 views

MySQL 5.7.x < 5.7.19 Multiple Vulnerabilities (RPM Check) (July 2017 CPU) (October 2017 CPU)

The version of MySQL running on the remote host is 5.7.x prior to 5.7.19. It is, therefore, affected by multiple vulnerabilities : - An unspecified flaw exists in the UDF component that allows an authenticated, remote attacker to cause a denial of service condition. CVE-2017-3529 - An unspecified...

7.5CVSS6.5AI score0.57595EPSS
Exploits1References32
cnvd
cnvd
added 2017/07/21 12:0 a.m.3 views

Oracle MySQL Server Denial of Service Vulnerability (CNVD-2017-17188)

Oracle MySQL is an open source relational database management system from Oracle Corporation, of which the MySQL Server component is a server component. A security vulnerability exists in the X Plugin subcomponent of the MySQL Server component of Oracle MySQL. A remotely authorized attacker could...

5.3CVSS6.1AI score0.01996EPSS
Exploits0References1
redhatcve
redhatcve
added 2017/07/19 8:54 a.m.23 views

CVE-2017-3646

Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: X Plugin. Supported versions that are affected are 5.7.16 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attac...

4.9CVSS4.5AI score0.0245EPSS
Exploits0References2
redhatcve
redhatcve
added 2017/07/19 8:50 a.m.35 views

CVE-2017-3637

Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: X Plugin. Supported versions that are affected are 5.7.18 and earlier. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

5.3CVSS5.1AI score0.01996EPSS
Exploits0References2
openvas
openvas
added 2017/07/19 12:0 a.m.47 views

Oracle Mysql Security Updates (jul2017-3236622) 01 - Linux

Oracle MySQL is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:oracle:mysql"; ifdescription...

5.3CVSS5.7AI score0.0245EPSS
Exploits0References11
osv
osv
added 2017/07/19 12:0 a.m.2 views

UBUNTU-CVE-2017-3637

Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: X Plugin. Supported versions that are affected are 5.7.18 and earlier. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

5.3CVSS7AI score0.01996EPSS
Exploits0References4
nessus
nessus
added 2017/07/19 12:0 a.m.44 views

MySQL 5.7.x < 5.7.19 Multiple Vulnerabilities (Jul 2017 CPU) (Oct 2017 CPU) (Jul 2019 CPU)

The version of MySQL running on the remote host is 5.7.x prior to 5.7.19. It is, therefore, affected by multiple vulnerabilities : - An unspecified flaw exists in the UDF component that allows an authenticated, remote attacker to cause a denial of service condition. CVE-2017-3529 - An unspecified...

7.5CVSS6.5AI score0.57595EPSS
Exploits1References33
Rows per page
Query Builder