Exibindo 100 de 1.484 ameaças
Core
×
| Tipo | Software | Vulnerabilidade | Descoberta | Gravidade |
|---|---|---|---|---|
| Core | Não informado |
CVE-2017-14537
trixbox 2.8.0.4 has path traversal via the xajaxargs array parameter to /maint/index.php?packages or the lang parameter to /maint/modules/home/index.php. Ver mais |
16/02/2018 |
6.5
|
| Core | Não informado |
CVE-2017-14535
trixbox 2.8.0.4 has OS command injection via shell metacharacters in the lang parameter to /maint/modules/home/index.php. Ver mais |
16/02/2018 |
8.8
|
| Core | Não informado |
CVE-2017-14536
trixbox 2.8.0.4 has XSS via the PATH_INFO to /maint/index.php or /user/includes/language/langChooser.php. Ver mais |
16/02/2018 |
5.4
|
| Core | Não informado |
CVE-2018-6506
Cross-Site Scripting (XSS) exists in the Add Forum feature in the Administrative Panel in miniBB 3.2.2 via crafted use of an onload attribute of an SVG element in the supertitle field. Ver mais |
12/02/2018 |
4.8
|
| Core | Não informado |
CVE-2018-6891
Bookly #1 WordPress Booking Plugin Lite before 14.5 has XSS via a jQuery.ajax request to ng-payment_details_dialog.js. Ver mais |
11/02/2018 |
6.1
|
| Core | Não informado |
CVE-2017-17552
/LoadFrame in Zoho ManageEngine AD Manager Plus build 6590 - 6613 allows attackers to conduct URL Redirection attacks via the src parameter, resulting in a bypass of CSRF protection, or potentially masquerading a malicious URL as trusted. Ver mais |
07/02/2018 |
8.8
|
| Core | Não informado |
CVE-2018-6389
In WordPress through 4.9.2, unauthenticated attackers can cause a denial of service (resource consumption) by using the large list of registered .js files (from wp-includes/script-loader.php) to construct a series of requests to load every file many times. Ver mais |
06/02/2018 |
---
|
| Core | Não informado |
CVE-2018-0101
A vulnerability in the Secure Sockets Layer (SSL) VPN functionality of the Cisco Adaptive Security Appliance (ASA) Software could allow an unauthenticated, remote attacker to cause a reload of the affected system or to remotely execute code. The vulnerability is due to an attempt to double free a region of memory when the webvpn feature is enabled on the Cisco ASA device. An attacker could exploit this vulnerability by sending multiple, crafted XML packets to a webvpn-configured interface on the affected system. An exploit could allow the attacker to execute arbitrary code and obtain full control of the system, or cause a reload of the affected device. This vulnerability affects Cisco ASA Software that is running on the following Cisco products: 3000 Series Industrial Security Appliance (ISA), ASA 5500 Series Adaptive Security Appliances, ASA 5500-X Series Next-Generation Firewalls, ASA Services Module for Cisco Catalyst 6500 Series Switches and Cisco 7600 Series Routers, ASA 1000V Cloud Firewall, Adaptive Security Virtual Appliance (ASAv), Firepower 2100 Series Security Appliance, Firepower 4110 Security Appliance, Firepower 9300 ASA Security Module, Firepower Threat Defense Software (FTD). Cisco Bug IDs: CSCvg35618. Ver mais |
29/01/2018 |
10
|
| Core | Não informado |
CVE-2018-5965
CMS Made Simple (CMSMS) 2.2.5 has XSS in admin/moduleinterface.php via the m1_errors parameter. Ver mais |
25/01/2018 |
4.8
|
| Core | Não informado |
CVE-2018-5963
CMS Made Simple (CMSMS) 2.2.5 has XSS in admin/addbookmark.php via the title parameter. Ver mais |
25/01/2018 |
4.8
|
| Core | Não informado |
CVE-2018-5964
CMS Made Simple (CMSMS) 2.2.5 has XSS in admin/moduleinterface.php via the m1_messages parameter. Ver mais |
25/01/2018 |
4.8
|
| Core | Não informado |
CVE-2018-5776
WordPress before 4.9.2 has XSS in the Flash fallback files in MediaElement (under wp-includes/js/mediaelement). Ver mais |
18/01/2018 |
---
|
| Core | WordPress |
WordPress - FLL-CB73FAD7
Vulnerabilidade de script transversal encontrada no WordPress 3.7-4.9.1 Versões nos arquivos de fallback flash em MediaElement, uma biblioteca que está incluída no WordPress. Ver mais |
17/01/2018 |
---
|
| Core | Não informado |
CVE-2017-15328
Huawei HG8245H version earlier than V300R018C00SPC110 has an authentication bypass vulnerability. An attacker can access a specific URL of the affect product. Due to improper verification of the privilege, successful exploitation may cause information leak. Ver mais |
22/12/2017 |
7.5
|
| Core | Não informado |
CVE-2017-17066
The (1) i2pd before 2.17 and (2) kovri pre-alpha implementations of the I2P routing protocol do not properly handle Garlic DeliveryTypeTunnel packets, which allows remote attackers to obtain sensitive information from process memory via crafted packets that trigger a buffer over-read, as demonstrated by reading sensitive router memory, aka the GarlicRust bug. Ver mais |
05/12/2017 |
7.5
|
| Core | Não informado |
CVE-2017-17092
wp-includes/functions.php in WordPress before 4.9.1 does not require the unfiltered_html capability for upload of .js files, which might allow remote attackers to conduct XSS attacks via a crafted file. Ver mais |
02/12/2017 |
---
|
| Core | Não informado |
CVE-2017-17093
wp-includes/general-template.php in WordPress before 4.9.1 does not properly restrict the lang attribute of an HTML element, which might allow attackers to conduct XSS attacks via the language setting of a site. Ver mais |
02/12/2017 |
---
|
| Core | Não informado |
CVE-2017-17094
wp-includes/feed.php in WordPress before 4.9.1 does not properly restrict enclosures in RSS and Atom fields, which might allow attackers to conduct XSS attacks via a crafted URL. Ver mais |
02/12/2017 |
---
|
| Core | Não informado |
CVE-2017-17091
wp-admin/user-new.php in WordPress before 4.9.1 sets the newbloguser key to a string that can be directly derived from the user ID, which allows remote attackers to bypass intended access restrictions by entering this string. Ver mais |
02/12/2017 |
---
|
| Core | WordPress |
WordPress - FLL-AFE3EC28
Vulnerabilidade de upload de arquivo JavaScript autenticado encontrada no WordPress (versões <= 4.9) Ver mais |
01/12/2017 |
---
|
| Core | Não informado |
CVE-2017-1000227
Stored XSS in Salutation Responsive WordPress + BuddyPress Theme version 3.0.15 could allow logged-in users to do almost anything an admin can Ver mais |
17/11/2017 |
---
|
| Core | WordPress |
WordPress - FLL-213658B8
Possível questão de segurança encontrada por Anthony Ferrara no WordPress (versões <= 4.8.2). O WordPress não é vulnerável, mas os temas ou plugins podem desencadear a vulnerabilidade. Ver mais |
31/10/2017 |
---
|
| Core | Não informado |
CVE-2012-6707
WordPress through 4.8.2 uses a weak MD5-based password hashing algorithm, which makes it easier for attackers to determine cleartext values by leveraging access to the hash values. NOTE: the approach to changing this may not be fully compatible with certain use cases, such as migration of a WordPress site from a web host that uses a recent PHP version to a different web host that uses PHP 5.2. These use cases are plausible (but very unlikely) based on statistics showing widespread deployment of WordPress with obsolete PHP versions. Ver mais |
19/10/2017 |
---
|
| Core | Não informado |
CVE-2017-15375
Multiple client-side cross site scripting vulnerabilities have been discovered in the WpJobBoard v4.5.1 web-application for WordPress. The vulnerabilities are located in the `query` and `id` parameters of the `wpjb-email`, `wpjb-job`, `wpjb-application`, and `wpjb-membership` modules. Remote attackers are able to inject malicious script code to hijack admin session credentials via the backend, or to manipulate the backend on client-side performed requests. The attack vector is non-persistent and the request method to inject is GET. The attacker does not need a privileged user account to perform a successful exploitation. Ver mais |
16/10/2017 |
---
|
| Core | Não informado |
CVE-2017-15373
E-Sic 1.0 allows SQL injection via the q parameter to esiclivre/restrito/inc/lkpcep.php (aka the search private area). Ver mais |
16/10/2017 |
9.8
|
| Core | Não informado |
CVE-2016-9263
WordPress through 4.8.2, when domain-based flashmediaelement.swf sandboxing is not used, allows remote attackers to conduct cross-domain Flash injection (XSF) attacks by leveraging code contained within the wp-includes/js/mediaelement/flashmediaelement.swf file. Ver mais |
12/10/2017 |
---
|
| Core | Não informado |
CVE-2014-8758
Cross-site scripting (XSS) vulnerability in Best Gallery Albums Plugin before 3.0.70for WordPress allows remote attackers to inject arbitrary web script or HTML via the order_id parameter in the gallery_album_sorting page to wp-admin/admin.php. Ver mais |
06/10/2017 |
---
|
| Core | Não informado |
CVE-2017-14990
WordPress 4.8.2 stores cleartext wp_signups.activation_key values (but stores the analogous wp_users.user_activation_key values as hashes), which might make it easier for remote attackers to hijack unactivated user accounts by leveraging database read access (such as access gained through an unspecified SQL injection vulnerability). Ver mais |
02/10/2017 |
---
|
| Core | Não informado |
CVE-2017-14848
WPHRM Human Resource Management System for WordPress 1.0 allows SQL Injection via the employee_id parameter. Ver mais |
02/10/2017 |
8.8
|
| Core | Não informado |
CVE-2017-14843
Mojoomla School Management System for WordPress allows SQL Injection via the id parameter. Ver mais |
27/09/2017 |
---
|
| Core | Não informado |
CVE-2017-14842
Mojoomla SMSmaster Multipurpose SMS Gateway for WordPress allows SQL Injection via the id parameter. Ver mais |
27/09/2017 |
---
|
| Core | Não informado |
CVE-2017-14846
Mojoomla Hospital Management System for WordPress allows SQL Injection via the id parameter. Ver mais |
27/09/2017 |
---
|
| Core | Não informado |
CVE-2017-14845
Mojoomla WPCHURCH Church Management System for WordPress allows SQL Injection via the id parameter. Ver mais |
27/09/2017 |
---
|
| Core | Não informado |
CVE-2017-14847
Mojoomla WPAMS Apartment Management System for WordPress allows SQL Injection via the id parameter. Ver mais |
27/09/2017 |
---
|
| Core | Não informado |
CVE-2017-14844
Mojoomla WPGYM WordPress Gym Management System allows SQL Injection via the id parameter. Ver mais |
27/09/2017 |
---
|
| Core | Não informado |
CVE-2017-14718
Before version 4.8.2, WordPress was susceptible to a Cross-Site Scripting attack in the link modal via a javascript: or data: URL. Ver mais |
23/09/2017 |
---
|
| Core | Não informado |
CVE-2017-14726
Before version 4.8.2, WordPress was vulnerable to a cross-site scripting attack via shortcodes in the TinyMCE visual editor. Ver mais |
23/09/2017 |
---
|
| Core | Não informado |
CVE-2017-14725
Before version 4.8.2, WordPress was susceptible to an open redirect attack in wp-admin/edit-tag-form.php and wp-admin/user-edit.php. Ver mais |
23/09/2017 |
---
|
| Core | Não informado |
CVE-2017-14724
Before version 4.8.2, WordPress was vulnerable to cross-site scripting in oEmbed discovery. Ver mais |
23/09/2017 |
---
|
| Core | Não informado |
CVE-2017-14720
Before version 4.8.2, WordPress allowed a Cross-Site scripting attack in the template list view via a crafted template name. Ver mais |
23/09/2017 |
---
|
| Core | Não informado |
CVE-2017-14719
Before version 4.8.2, WordPress was vulnerable to a directory traversal attack during unzip operations in the ZipArchive and PclZip components. Ver mais |
23/09/2017 |
---
|
| Core | WordPress |
WordPress - FLL-C4899C06
Vulnerabilidade de scripts de localização (XSS) encontrada por Rodolfo Assis no WordPress (Editor visual) versão 4.8.1 e versões anteriores. Ver mais |
19/09/2017 |
---
|
| Core | WordPress |
WordPress - FLL-BA2680FF
Vulnerability Cross-Site Scripting (XSS) encontrado por Chen Ruiqi no WordPress (Editor de Plugin) versão 4.8.1 e versões anteriores. Ver mais |
19/09/2017 |
---
|
| Core | WordPress |
WordPress - FLL-B19F24AC
Path Traversal Vulnerability encontrado por Alex Chapman (NoxRnet) no WordPress (arquivo Unzipping Code) versão 4.8.1 e versões anteriores. Ver mais |
19/09/2017 |
---
|
| Core | WordPress |
WordPress - FLL-C060582A
Vulnerabilidade de scripts (XSS) transversais encontradas por Luka (Sikic) no WordPress (Nomes de Modelos) versão 4.8.1 e versões anteriores. Ver mais |
19/09/2017 |
---
|
| Core | WordPress |
WordPress - FLL-96E8952F
Abra a vulnerabilidade de redirecionamento encontrada por Yasin Soliman (YSX) no WordPress (User and Term Edit telas) versão 4.8.1 e versões anteriores. Ver mais |
19/09/2017 |
---
|
| Core | WordPress |
WordPress - FLL-F0F27790
Vulnerabilidade de scripts (xss) transversais encontradas por xknown da equipe de segurança do WordPress no WordPress (Oembed) versão 4.8.1 e versões anteriores. Ver mais |
19/09/2017 |
---
|
| Core | WordPress |
WordPress - FLL-F80C4312
Vulnerabilidade de scripts (XSS) transversais encontradas pelo Anas Roubi (QASUAR) no WordPress (link modal) versão 4.8.1 e versões anteriores. Ver mais |
19/09/2017 |
---
|
| Core | WordPress |
WordPress - FLL-11FE6DA2
Vulnerabilidade de injeção SQL encontrada no WordPress (versões <= 4.8.1) por Slavca. Ver mais |
19/09/2017 |
---
|
| Core | WordPress |
WordPress - FLL-9622A860
Vulnerabilidade Travel Traversal encontrada pelo Weston Ruter da equipe de segurança do WordPress no WordPress (personalizer) versão 4.8.1 e versões anteriores. Ver mais |
19/09/2017 |
---
|
| Core | Não informado |
CVE-2017-14597
AdminPanel in AfterLogic WebMail 7.7 and Aurora 7.7.5 has XSS via the txtDomainName field to adminpanel/modules/pro/inc/ajax.php during addition of a domain. Ver mais |
19/09/2017 |
4.8
|
| Core | Não informado |
CVE-2015-4697
Cross-site request forgery (CSRF) vulnerability in Google Analyticator Wordpress Plugin before 6.4.9.3 rev @1183563. Ver mais |
07/09/2017 |
---
|
| Core | Não informado |
CVE-2017-10837
Cross-site scripting vulnerability in BackupGuard prior to version 1.1.47 allows an attacker to inject arbitrary web script or HTML via unspecified vectors. Ver mais |
28/08/2017 |
6.1
|
| Core | Não informado |
CVE-2017-1000033
Wordpress Plugin Vospari Forms version < 1.4 is vulnerable to a reflected cross site scripting in the form submission resulting in javascript code execution in the context on the current user. Ver mais |
17/07/2017 |
---
|
| Core | Não informado |
CVE-2017-1000027
Koozali Foundation SME Server versions 8.x, 9.x, 10.x are vulnerable to an open URL redirect vulnerability in the user web login function resulting in unauthorized account access. Ver mais |
17/07/2017 |
6.1
|
| Core | Não informado |
CVE-2017-11174
In install/page_dbsettings.php in the Core distribution of XOOPS 2.5.8.1, unfiltered data passed to CREATE and ALTER SQL queries caused SQL Injection in the database settings page, related to use of GBK in CHARACTER SET and COLLATE clauses. Ver mais |
12/07/2017 |
9.8
|
| Core | Não informado |
CVE-2017-2217
Open redirect vulnerability in WordPress Download Manager prior to version 2.9.51 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors. Ver mais |
07/07/2017 |
---
|
| Core | Não informado |
CVE-2017-2245
Directory traversal vulnerability in Shortcodes Ultimate prior to version 4.10.0 allows remote attackers to read arbitrary files via unspecified vectors. Ver mais |
07/07/2017 |
5
|
| Core | Não informado |
CVE-2017-2224
Cross-site scripting vulnerability in Event Calendar WD prior to version 1.0.94 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Ver mais |
07/07/2017 |
6.1
|
| Core | Não informado |
CVE-2017-2243
Cross-site scripting vulnerability in Responsive Lightbox prior to version 1.7.2 allows an attacker to inject arbitrary web script or HTML via unspecified vectors. Ver mais |
07/07/2017 |
6.1
|
| Core | Não informado |
CVE-2017-2222
Cross-site scripting vulnerability in WP-Members prior to version 3.1.8 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Ver mais |
07/07/2017 |
6.1
|
| Core | Não informado |
CVE-2017-2216
Cross-site scripting vulnerability in WordPress Download Manager prior to version 2.9.50 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Ver mais |
07/07/2017 |
---
|
| Core | Não informado |
CVE-2017-2187
Cross-site scripting vulnerability in WP Live Chat Support prior to version 7.0.07 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Ver mais |
09/06/2017 |
---
|
| Core | Não informado |
CVE-2017-2195
SQL injection vulnerability in the Multi Feed Reader prior to version 2.2.4 allows authenticated attackers to execute arbitrary SQL commands via unspecified vectors. Ver mais |
09/06/2017 |
8.8
|
| Core | Não informado |
CVE-2017-7313
An issue was discovered in Personify360 e-Business 7.5.2 through 7.6.1. When going to the /TabId/275 URI, it is possible to read any customer name, master Customer Id, and email address. In other words, anyone can search for users/customers in the system - no authentication is required. Ver mais |
07/06/2017 |
7.5
|
| Core | Não informado |
CVE-2017-7314
An issue was discovered in Personify360 e-Business 7.5.2 through 7.6.1. When going to the /TabId/275 URI, while creating a new role, a list of database tables and their columns is available. Ver mais |
07/06/2017 |
7.5
|
| Core | Não informado |
CVE-2017-7312
An issue was discovered in Personify360 e-Business 7.5.2 through 7.6.1. When going to the /TabId/275 URI, anyone can add a vendor account or read existing vendor account data (including usernames and passwords). Ver mais |
07/06/2017 |
9.8
|
| Core | Não informado |
CVE-2017-2169
Cross-site scripting vulnerability in MaxButtons prior to version 6.19 and MaxButtons Pro prior to version 6.19 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Ver mais |
22/05/2017 |
6.1
|
| Core | Não informado |
CVE-2017-2168
Cross-site scripting vulnerability in WP Booking System Free version prior to version 1.4 and WP Booking System Premium version prior to version 3.7 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Ver mais |
22/05/2017 |
6.1
|
| Core | Não informado |
CVE-2017-9062
In WordPress before 4.7.5, there is improper handling of post meta data values in the XML-RPC API. Ver mais |
18/05/2017 |
---
|
| Core | Não informado |
CVE-2017-9061
In WordPress before 4.7.5, a cross-site scripting (XSS) vulnerability exists when attempting to upload very large files, because the error message does not properly restrict presentation of the filename. Ver mais |
18/05/2017 |
---
|
| Core | Não informado |
CVE-2017-9063
In WordPress before 4.7.5, a cross-site scripting (XSS) vulnerability related to the Customizer exists, involving an invalid customization session. Ver mais |
18/05/2017 |
---
|
| Core | Não informado |
CVE-2017-9064
In WordPress before 4.7.5, a Cross Site Request Forgery (CSRF) vulnerability exists in the filesystem credentials dialog because a nonce is not required for updating credentials. Ver mais |
18/05/2017 |
---
|
| Core | Não informado |
CVE-2017-9065
In WordPress before 4.7.5, there is a lack of capability checks for post meta data in the XML-RPC API. Ver mais |
18/05/2017 |
---
|
| Core | Não informado |
CVE-2017-9066
In WordPress before 4.7.5, there is insufficient redirect validation in the HTTP class, leading to SSRF. Ver mais |
18/05/2017 |
---
|
| Core | Não informado |
CVE-2016-10372
The Eir D1000 modem does not properly restrict the TR-064 protocol, which allows remote attackers to execute arbitrary commands via TCP port 7547, as demonstrated by opening WAN access to TCP port 80, retrieving the login password (which defaults to the Wi-Fi password), and using the NewNTPServer feature. Ver mais |
16/05/2017 |
9.8
|
| Core | Não informado |
CVE-2017-8295
WordPress through 4.7.4 relies on the Host HTTP header for a password-reset e-mail message, which makes it easier for remote attackers to reset arbitrary passwords by making a crafted wp-login.php?action=lostpassword request and then arranging for this message to bounce or be resent, leading to transmission of the reset key to a mailbox on an attacker-controlled SMTP server. This is related to problematic use of the SERVER_NAME variable in wp-includes/pluggable.php in conjunction with the PHP mail function. Exploitation is not achievable in all cases because it requires at least one of the following: (1) the attacker can prevent the victim from receiving any e-mail messages for an extended period of time (such as 5 days), (2) the victim's e-mail system sends an autoresponse containing the original message, or (3) the victim manually composes a reply containing the original message. Ver mais |
04/05/2017 |
---
|
| Core | Não informado |
CVE-2017-8779
rpcbind through 0.2.4, LIBTIRPC through 1.0.1 and 1.0.2-rc through 1.0.2-rc3, and NTIRPC through 1.4.3 do not consider the maximum RPC data size during memory allocation for XDR strings, which allows remote attackers to cause a denial of service (memory consumption with no subsequent free) via a crafted UDP packet to port 111, aka rpcbomb. Ver mais |
04/05/2017 |
7.5
|
| Core | Não informado |
CVE-2017-6553
Buffer Overflow in Quest One Identity Privilege Manager for Unix before 6.0.0.061 allows remote attackers to obtain full access to the policy server via an ACT_ALERT_EVENT request that causes memory corruption in the pmmasterd daemon. Ver mais |
29/04/2017 |
9.8
|
| Core | Não informado |
CVE-2017-7723
XSS exists in Easy WP SMTP (before 1.2.5), a WordPress Plugin, via the e-mail subject or body. Ver mais |
24/04/2017 |
---
|
| Core | Não informado |
CVE-2017-7944
XOOPS Core 2.5.8.1 has XSS due to unescaped HTML output of an Install DB failure error message in page_dbsettings.php. Ver mais |
24/04/2017 |
6.1
|
| Core | Não informado |
CVE-2017-6554
pmmasterd in Quest Privilege Manager before 6.0.0.061, when configured as a policy server, allows remote attackers to write to arbitrary files and consequently execute arbitrary code with root privileges via an ACT_NEWFILESENT action. Ver mais |
14/04/2017 |
7.2
|
| Core | Não informado |
CVE-2017-1001000
The register_routes function in wp-includes/rest-api/endpoints/class-wp-rest-posts-controller.php in the REST API in WordPress 4.7.x before 4.7.2 does not require an integer identifier, which allows remote attackers to modify arbitrary pages via a request for wp-json/wp/v2/posts followed by a numeric value and a non-numeric value, as demonstrated by the wp-json/wp/v2/posts/123?id=123helloworld URI. Ver mais |
02/04/2017 |
---
|
| Core | Não informado |
CVE-2017-6895
USB Pratirodh allows remote attackers to conduct XML External Entity (XXE) attacks via XML data in usb.xml. Ver mais |
23/03/2017 |
9.8
|
| Core | Não informado |
CVE-2017-5206
Firejail before 0.9.44.4, when running on a Linux kernel before 4.8, allows context-dependent attackers to bypass a seccomp-based sandbox protection mechanism via the --allow-debuggers argument. Ver mais |
23/03/2017 |
9
|
| Core | Não informado |
CVE-2017-5207
Firejail before 0.9.44.4, when running a bandwidth command, allows local users to gain root privileges via the --shell argument. Ver mais |
23/03/2017 |
7.8
|
| Core | Não informado |
CVE-2017-6180
Keekoon KK002 devices 1.8.12 HD have a Cross Site Request Forgery Vulnerability affecting goform/formChnUserPwd and goform/formUserMng (and the entire set of other pages). Ver mais |
13/03/2017 |
8.8
|
| Core | Não informado |
CVE-2017-6814
In WordPress before 4.7.3, there is authenticated Cross-Site Scripting (XSS) via Media File Metadata. This is demonstrated by both (1) mishandling of the playlist shortcode in the wp_playlist_shortcode function in wp-includes/media.php and (2) mishandling of meta information in the renderTracks function in wp-includes/js/mediaelement/wp-playlist.js. Ver mais |
11/03/2017 |
---
|
| Core | Não informado |
CVE-2017-6819
In WordPress before 4.7.3, there is cross-site request forgery (CSRF) in Press This (wp-admin/includes/class-wp-press-this.php), leading to excessive use of server resources. The CSRF can trigger an outbound HTTP request for a large file that is then parsed by Press This. Ver mais |
11/03/2017 |
---
|
| Core | Não informado |
CVE-2017-6815
In WordPress before 4.7.3 (wp-includes/pluggable.php), control characters can trick redirect URL validation. Ver mais |
11/03/2017 |
---
|
| Core | Não informado |
CVE-2017-6817
In WordPress before 4.7.3 (wp-includes/embed.php), there is authenticated Cross-Site Scripting (XSS) in YouTube URL Embeds. Ver mais |
11/03/2017 |
---
|
| Core | Não informado |
CVE-2017-6818
In WordPress before 4.7.3 (wp-admin/js/tags-box.js), there is cross-site scripting (XSS) via taxonomy term names. Ver mais |
11/03/2017 |
---
|
| Core | Não informado | 02/03/2017 |
---
|
|
| Core | Não informado |
CVE-2016-8636
Integer overflow in the mem_check_range function in drivers/infiniband/sw/rxe/rxe_mr.c in the Linux kernel before 4.9.10 allows local users to cause a denial of service (memory corruption), obtain sensitive information from kernel memory, or possibly have unspecified other impact via a write or read request involving the "RDMA protocol over infiniband" (aka Soft RoCE) technology. Ver mais |
22/02/2017 |
7.8
|
| Core | Não informado |
CVE-2017-5940
Firejail before 0.9.44.6 and 0.9.38.x LTS before 0.9.38.10 LTS does not comprehensively address dotfile cases during its attempt to prevent accessing user files with an euid of zero, which allows local users to conduct sandbox-escape attacks via vectors involving a symlink and the --private option. NOTE: this vulnerability exists because of an incomplete fix for CVE-2017-5180. Ver mais |
09/02/2017 |
8.8
|
| Core | Não informado |
CVE-2017-5180
Firejail before 0.9.44.4 and 0.9.38.x LTS before 0.9.38.8 LTS does not consider the .Xauthority case during its attempt to prevent accessing user files with an euid of zero, which allows local users to conduct sandbox-escape attacks via vectors involving a symlink and the --private option. Ver mais |
09/02/2017 |
8.8
|
| Core | Não informado |
CVE-2017-5610
wp-admin/includes/class-wp-press-this.php in Press This in WordPress before 4.7.2 does not properly restrict visibility of a taxonomy-assignment user interface, which allows remote attackers to bypass intended access restrictions by reading terms. Ver mais |
30/01/2017 |
---
|
| Core | Não informado |
CVE-2017-5612
Cross-site scripting (XSS) vulnerability in wp-admin/includes/class-wp-posts-list-table.php in the posts list table in WordPress before 4.7.2 allows remote attackers to inject arbitrary web script or HTML via a crafted excerpt. Ver mais |
30/01/2017 |
---
|
| Core | Não informado |
CVE-2017-5493
wp-includes/ms-functions.php in the Multisite WordPress API in WordPress before 4.7.1 does not properly choose random numbers for keys, which makes it easier for remote attackers to bypass intended access restrictions via a crafted (1) site signup or (2) user signup. Ver mais |
14/01/2017 |
---
|
| Core | Não informado |
CVE-2017-5492
Cross-site request forgery (CSRF) vulnerability in the widget-editing accessibility-mode feature in WordPress before 4.7.1 allows remote attackers to hijack the authentication of unspecified victims for requests that perform a widgets-access action, related to wp-admin/includes/class-wp-screen.php and wp-admin/widgets.php. Ver mais |
14/01/2017 |
---
|