| Page(s) : [1] 2 3 4 5 6 7 8 9 10 11 ... | Result(s) : 127977 |
Alerts
| Date | Name | Categories | Detail | |
|---|---|---|---|---|
| N/A | 2019-08-22 | CVE-2019-15329 | cve | The import-users-from-csv-with-meta plugin before 1.14.0.3 for WordPress has CSRF. |
| N/A | 2019-08-22 | CVE-2019-15328 | cve | The import-users-from-csv-with-meta plugin before 1.14.0.3 for WordPress has XSS. |
| N/A | 2019-08-22 | CVE-2019-15327 | cve | The import-users-from-csv-with-meta plugin before 1.14.1.3 for WordPress has XSS via imported data. |
| N/A | 2019-08-22 | CVE-2019-15326 | cve | The import-users-from-csv-with-meta plugin before 1.14.2.1 for WordPress has directory traversal. |
| N/A | 2019-08-22 | CVE-2019-15325 | cve | In GalliumOS 3.0, CONFIG_SECURITY_YAMA is disabled but /etc/sysctl.d/10-ptrace.conf tries to set /proc/sys/kernel/yama/ptrace_scope to 1, which might increase risk because of th... |
| N/A | 2019-08-22 | CVE-2019-13139 | cve | In Docker before 18.09.4, an attacker who is capable of supplying or manipulating the build path for the "docker build" command would be able to gain command execution. An issue... |
| N/A | 2019-08-22 | CVE-2018-20987 | cve | The newsletters-lite plugin before 4.6.8.6 for WordPress has PHP object injection. |
| N/A | 2019-08-22 | CVE-2018-20986 | cve | The advanced-custom-fields plugin before 5.7.8 for WordPress has XSS by authors. |
| N/A | 2019-08-22 | CVE-2017-18585 | cve | The posts-in-page plugin before 1.3.0 for WordPress has ic_add_posts template='../ directory traversal. |
| N/A | 2019-08-22 | CVE-2017-18579 | cve | The corner-ad plugin before 1.0.8 for WordPress has XSS. |
| N/A | 2019-08-22 | CVE-2017-18578 | cve | The crafty-social-buttons plugin before 1.5.8 for WordPress has XSS. |
| N/A | 2019-08-22 | CVE-2016-10929 | cve | The advanced-ajax-page-loader plugin before 2.7.7 for WordPress has no protection against the reading of uploaded files when not logged in. |
| N/A | 2019-08-22 | CVE-2016-10928 | cve | The onelogin-saml-sso plugin before 2.2.0 for WordPress has a hardcoded @@@nopass@@@ password for just-in-time provisioned users. |
| N/A | 2019-08-22 | CVE-2015-9340 | cve | The wp-file-upload plugin before 3.0.0 for WordPress has insufficient restrictions on upload of php, js, pht, php3, php4, php5, phtml, htm, html, and htaccess files. |
| N/A | 2019-08-22 | CVE-2015-9339 | cve | The wp-file-upload plugin before 2.7.1 for WordPress has insufficient restrictions on upload of .js files. |
| N/A | 2019-08-22 | CVE-2015-9338 | cve | The wp-file-upload plugin before 2.5.0 for WordPress has insufficient restrictions on upload of .php files. |
| N/A | 2019-08-22 | CVE-2015-9334 | cve | The email-newsletter plugin through 20.15 for WordPress has SQL injection. |
| N/A | 2019-08-22 | CVE-2014-10393 | cve | The cforms2 plugin before 10.5 for WordPress has XSS. |
| N/A | 2019-08-22 | CVE-2014-10386 | cve | The wp-live-chat-support plugin before 4.1.0 for WordPress has JavaScript injections. |
| N/A | 2019-08-22 | CVE-2014-10382 | cve | The feature-comments plugin before 1.2.5 for WordPress has CSRF for featuring or burying a comment. |
| Page(s) : [1] 2 3 4 5 6 7 8 9 10 11 ... | Result(s) : 127977 |
