‼ CVE-2021-46389 ‼
📖 Read
via "National Vulnerability Database".
IIPImage High Resolution Streaming Image Server prior to commit 882925b295a80ec992063deffc2a3b0d803c3195 is affected by an integer overflow in iipsrv.fcgi through malformed HTTP query parameters.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-46359 ‼
📖 Read
via "National Vulnerability Database".
FISCO-BCOS release-3.0.0-rc2 contains a denial of service vulnerability. Some transactions may not be committed successfully, and malicious users may use this to achieve double-spending attacks.📖 Read
via "National Vulnerability Database".
🛠 Scanmycode Community Edition 🛠
📖 Read
via "Packet Storm Security".
Scanmycode is based on QuantifedCode. QuantifiedCode is a code analysis and automation platform. It helps you to keep track of issues and metrics in your software projects, and can be easily extended to support new types of analyses.📖 Read
via "Packet Storm Security".
Packetstormsecurity
Scanmycode Community Edition ≈ Packet Storm
Information Security Services, News, Files, Tools, Exploits, Advisories and Whitepapers
🗓️ Equifax finalizes data breach settlement with US regulators 🗓️
📖 Read
via "The Daily Swig".
Settlement includes up to $425 million to help people affected by 2017 mega breach📖 Read
via "The Daily Swig".
The Daily Swig | Cybersecurity news and views
Equifax finalizes data breach settlement with US regulators
Settlement includes up to $425 million to help people affected by 2017 mega breach
⚠ Microsoft blocks web installation of its own App Installer files ⚠
📖 Read
via "Naked Security".
It's a big deal when a vendor decides to block one of its own "features" for security reasons. Here's why we think it's a good idea.📖 Read
via "Naked Security".
Sophos News
Naked Security – Sophos News
‼ CVE-2021-25114 ‼
📖 Read
via "National Vulnerability Database".
The Paid Memberships Pro WordPress plugin before 2.6.7 does not escape the discount_code in one of its REST route (available to unauthenticated users) before using it in a SQL statement, leading to a SQL injection📖 Read
via "National Vulnerability Database".
‼ CVE-2022-0148 ‼
📖 Read
via "National Vulnerability Database".
The All-in-one Floating Contact Form, Call, Chat, and 50+ Social Icon Tabs WordPress plugin before 2.0.4 was vulnerable to reflected XSS on the my-sticky-elements-leads admin page.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-24843 ‼
📖 Read
via "National Vulnerability Database".
The SupportCandy WordPress plugin before 2.2.7 does not have CRSF check in its wpsc_tickets AJAX action, which could allow attackers to make a logged in admin call it and delete arbitrary tickets via the set_delete_permanently_bulk_ticket setting_action.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-25077 ‼
📖 Read
via "National Vulnerability Database".
The Store Toolkit for WooCommerce WordPress plugin before 2.3.2 does not sanitise and escape the tab parameter before outputting it back in an admin page in an error message, leading to a Reflected Cross-Site Scripting📖 Read
via "National Vulnerability Database".
‼ CVE-2021-24993 ‼
📖 Read
via "National Vulnerability Database".
The Ultimate Product Catalog WordPress plugin before 5.0.26 does not have authorisation and CSRF checks in some AJAX actions, which could allow any authenticated users, such as subscriber to call them and add arbitrary products, or change the plugin's settings for example📖 Read
via "National Vulnerability Database".
‼ CVE-2021-25084 ‼
📖 Read
via "National Vulnerability Database".
The Advanced Cron Manager WordPress plugin before 2.4.2, advanced-cron-manager-pro WordPress plugin before 2.5.3 does not have authorisation checks in some of its AJAX actions, allowing any authenticated users, such as subscriber to call them and add or remove events as well as schedules for example📖 Read
via "National Vulnerability Database".
‼ CVE-2021-24839 ‼
📖 Read
via "National Vulnerability Database".
The SupportCandy WordPress plugin before 2.2.5 does not have authorisation and CRSF checks in its wpsc_tickets AJAX action, which could allow unauthenticated users to call it and delete arbitrary tickets via the set_delete_permanently_bulk_ticket setting_action. Other actions may be affected as well.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-24880 ‼
📖 Read
via "National Vulnerability Database".
The SupportCandy WordPress plugin before 2.2.7 does not validate and escape the page attribute of its shortcode, which could allow users with a role as low as Contributor to perform Cross-Site Scripting attacks📖 Read
via "National Vulnerability Database".
‼ CVE-2022-0149 ‼
📖 Read
via "National Vulnerability Database".
The WooCommerce WordPress plugin before 2.7.1 was affected by a Reflected Cross-Site Scripting (XSS) vulnerability in the woo_ce admin page.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-25103 ‼
📖 Read
via "National Vulnerability Database".
The Translate WordPress with GTranslate WordPress plugin before 2.9.7 does not sanitise and escape the body parameter in the url_addon/gtranslate-email.php file before outputting it back in the page, leading to a Reflected Cross-Site Scripting issue. Note: exploitation of the issue requires knowledge of the NONCE_SALT and NONCE_KEY📖 Read
via "National Vulnerability Database".
‼ CVE-2021-24879 ‼
📖 Read
via "National Vulnerability Database".
The SupportCandy WordPress plugin before 2.2.7 does not have CSRF check in the wpsc_tickets AJAX action, nor has any sanitisation or escaping in some of the filter fields which could allow attackers to make a logged in user having access to the ticket lists dashboard set an arbitrary filter (stored in their cookies) with an XSS payload in it.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-25105 ‼
📖 Read
via "National Vulnerability Database".
The Ivory Search WordPress plugin before 5.4.1 does not escape some of the Form settings, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-24878 ‼
📖 Read
via "National Vulnerability Database".
The SupportCandy WordPress plugin before 2.2.7 does not sanitise and escape the query string before outputting it back in pages with the [wpsc_create_ticket] shortcode embed, leading to a Reflected Cross-Site Scripting issue📖 Read
via "National Vulnerability Database".
‼ CVE-2021-24928 ‼
📖 Read
via "National Vulnerability Database".
The Rearrange Woocommerce Products WordPress plugin before 3.0.8 does not have proper access controls in the save_all_order AJAX action, nor validation and escaping when inserting user data in SQL statement, leading to an SQL injection, and allowing any authenticated user, such as subscriber, to modify arbitrary post content (for example with an XSS payload), as well as exfiltrate any data by copying it to another post.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-24947 ‼
📖 Read
via "National Vulnerability Database".
The RVM WordPress plugin before 6.4.2 does not have proper authorisation, CSRF checks and validation of the rvm_upload_regions_file_path parameter in the rvm_import_regions AJAX action, allowing any authenticated user, such as subscriber, to read arbitrary files on the web server📖 Read
via "National Vulnerability Database".
‼ CVE-2021-25004 ‼
📖 Read
via "National Vulnerability Database".
The SEUR Oficial WordPress plugin before 1.7.2 creates a PHP file with a random name when installed, even though it is used for support purposes, it allows to download any file from the web server without restriction after knowing the URL and a password than an administrator can see in the plugin settings page.📖 Read
via "National Vulnerability Database".