| Page(s) : 1 ... 6 7 8 9 10 11 12 13 14 15 [16] 17 18 19 20 21 22 23 24 25 26 ... | Result(s) : 152952 |
Alerts
| Date | Name | Categories | Detail | |
|---|---|---|---|---|
| 7.5 | 2019-09-16 | CVE-2016-10971 | cve | The MemberSonic Lite plugin before 1.302 for WordPress has incorrect login access control because only knowlewdge of an e-mail address is required. |
| 4.3 | 2019-09-16 | CVE-2016-10970 | cve | The supportflow plugin before 0.7 for WordPress has XSS via a ticket excerpt. |
| 4.3 | 2019-09-16 | CVE-2016-10969 | cve | The supportflow plugin before 0.7 for WordPress has XSS via a discussion ticket title. |
| 6.5 | 2019-09-16 | CVE-2016-10968 | cve | The peepso-core plugin before 1.6.1 for WordPress has PeepSoProfilePreferencesAjax->save() privilege escalation. |
| 4.3 | 2019-09-16 | CVE-2016-10967 | cve | The real3d-flipbook-lite plugin 1.0 for WordPress has XSS via the wp-content/plugins/real3d-flipbook/includes/flipbooks.php bookId parameter. |
| 5 | 2019-09-16 | CVE-2016-10966 | cve | The real3d-flipbook-lite plugin 1.0 for WordPress has bookName=../ directory traversal for file upload. |
| 6.4 | 2019-09-16 | CVE-2016-10965 | cve | The real3d-flipbook-lite plugin 1.0 for WordPress has deleteBook=../ directory traversal for file deletion. |
| 4.3 | 2019-09-16 | CVE-2016-10964 | cve | The dwnldr plugin before 1.01 for WordPress has XSS via the User-Agent HTTP header. |
| 4.3 | 2019-09-16 | CVE-2016-10963 | cve | The icegram plugin before 1.9.19 for WordPress has XSS. |
| 4.3 | 2019-09-16 | CVE-2016-10962 | cve | The icegram plugin before 1.9.19 for WordPress has CSRF via the wp-admin/edit.php option_name parameter. |
| 4.3 | 2019-09-16 | CVE-2016-10961 | cve | The colorway theme before 3.4.2 for WordPress has XSS via the contactName parameter. |
| 6.5 | 2019-09-16 | CVE-2016-10960 | cve | The wsecure plugin before 2.4 for WordPress has remote code execution via shell metacharacters in the wsecure-config.php publish parameter. |
| 4 | 2019-09-16 | CVE-2016-10959 | cve | The estatik plugin before 2.3.1 for WordPress has authenticated arbitrary file upload (exploitable with CSRF) via es_media_images[] to wp-admin/admin-ajax.php. |
| 5 | 2019-09-16 | CVE-2016-10958 | cve | The estatik plugin before 2.3.0 for WordPress has unauthenticated arbitrary file upload via es_media_images[] to wp-admin/admin-ajax.php. |
| 4.3 | 2019-09-16 | CVE-2016-10957 | cve | The Akal theme through 2016-08-22 for WordPress has XSS via the framework/brad-shortcodes/tinymce/preview.php sc parameter. |
| 5 | 2019-09-16 | CVE-2016-10956 | cve | The mail-masta plugin 1.0 for WordPress has local file inclusion in count_of_send.php and csvexport.php. |
| 10 | 2019-09-16 | USN-4124-2 | Ubuntu | Exim vulnerability |
| N/A | 2019-09-16 | USN-4134-1 | Ubuntu | IBus vulnerability |
| 5 | 2019-09-16 | USN-4133-1 | Ubuntu | Wireshark vulnerabilities |
| 7.5 | 2019-09-15 | CVE-2019-16335 | cve | A Polymorphic Typing issue was discovered in FasterXML jackson-databind before 2.9.10. It is related to com.zaxxer.hikari.HikariDataSource. This is a different vulnerability tha... |
| Page(s) : 1 ... 6 7 8 9 10 11 12 13 14 15 [16] 17 18 19 20 21 22 23 24 25 26 ... | Result(s) : 152952 |
