โผ CVE-2022-23684 โผ
๐ Read
via "National Vulnerability Database".
A vulnerability in the web-based management interface of AOS-CX could allow a remote authenticated user with read-only privileges to escalate their permissions to those of an administrative user. Successful exploitation of this vulnerability allows an attacker to escalate privileges beyond their authorized level in ArubaOS-CX Switches version(s): AOS-CX 10.09.xxxx: 10.09.1020 and below, AOS-CX 10.08.xxxx: 10.08.1060 and below, AOS-CX 10.06.xxxx: 10.06.0200 and below. Aruba has released upgrades for ArubaOS-CX Switch Devices that address this security vulnerability.๐ Read
via "National Vulnerability Database".
โผ CVE-2022-2516 โผ
๐ Read
via "National Vulnerability Database".
The Visual Composer Website Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the post/page 'Title' value in versions up to, and including, 45.0 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers with access to the visual composer editor to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.๐ Read
via "National Vulnerability Database".
โผ CVE-2022-26462 โผ
๐ Read
via "National Vulnerability Database".
In vow, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07032660; Issue ID: ALPS07032660.๐ Read
via "National Vulnerability Database".
โผ CVE-2022-26450 โผ
๐ Read
via "National Vulnerability Database".
In apusys, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07177801; Issue ID: ALPS07177801.๐ Read
via "National Vulnerability Database".
โผ CVE-2022-2935 โผ
๐ Read
via "National Vulnerability Database".
The Image Hover Effects Ultimate plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Media Image URL value that can be added to an Image Hover in versions up to, and including, 9.7.3 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. By default, the plugin only allows administrators access to edit Image Hovers, however, if a site admin makes the plugin's features available to lower privileged users through the 'Who Can Edit?' setting then this can be exploited by those users.๐ Read
via "National Vulnerability Database".
โผ CVE-2022-26449 โผ
๐ Read
via "National Vulnerability Database".
In apusys, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07177810; Issue ID: ALPS07177810.๐ Read
via "National Vulnerability Database".
โผ CVE-2022-26469 โผ
๐ Read
via "National Vulnerability Database".
In MtkEmail, there is a possible escalation of privilege due to fragment injection. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07216598; Issue ID: ALPS07216598.๐ Read
via "National Vulnerability Database".
โผ CVE-2021-43565 โผ
๐ Read
via "National Vulnerability Database".
The x/crypto/ssh package before 0.0.0-20211202192323-5770296d904e of golang.org/x/crypto allows an attacker to panic an SSH server.๐ Read
via "National Vulnerability Database".
โผ CVE-2022-31790 โผ
๐ Read
via "National Vulnerability Database".
WatchGuard Firebox and XTM appliances allow an unauthenticated remote attacker to retrieve sensitive authentication server settings by sending a malicious request to exposed authentication endpoints. This is fixed in Fireware OS 12.8.1, 12.5.10, and 12.1.4.๐ Read
via "National Vulnerability Database".
โผ CVE-2022-2462 โผ
๐ Read
via "National Vulnerability Database".
The Transposh WordPress Translation plugin for WordPress is vulnerable to sensitive information disclosure to unauthenticated users in versions up to, and including, 1.0.8.1. This is due to insufficient permissions checking on the 'tp_history' AJAX action and insufficient restriction on the data returned in the response. This makes it possible for unauthenticated users to exfiltrate usernames of individuals who have translated text.๐ Read
via "National Vulnerability Database".
โผ CVE-2022-26466 โผ
๐ Read
via "National Vulnerability Database".
In audio ipi, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06558777; Issue ID: ALPS06558777.๐ Read
via "National Vulnerability Database".
โผ CVE-2022-2934 โผ
๐ Read
via "National Vulnerability Database".
The Beaver Builder รขโฌโ WordPress Page Builder for WordPress is vulnerable to Stored Cross-Site Scripting via the 'Image URL' value found in the Media block in versions up to, and including, 2.5.5.2 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers with access to the Beaver Builder editor to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.๐ Read
via "National Vulnerability Database".
โผ CVE-2022-2939 โผ
๐ Read
via "National Vulnerability Database".
The WP Cerber Security plugin for WordPress is vulnerable to security protection bypass in versions up to, and including 9.0, that makes user enumeration possible. This is due to improper validation on the value supplied through the 'author' parameter found in the ~/cerber-load.php file. In vulnerable versions, the plugin only blocks requests if the value supplied is numeric, making it possible for attackers to supply additional non-numeric characters to bypass the protection. The non-numeric characters are stripped and the user requested is displayed. This can be used by unauthenticated attackers to gather information about users that can targeted in further attacks.๐ Read
via "National Vulnerability Database".
โผ CVE-2022-23689 โผ
๐ Read
via "National Vulnerability Database".
Multiple vulnerabilities exist in the processing of packet data by the LLDP service of AOS-CX. Successful exploitation of these vulnerabilities may allow an attacker to impact the availability of the AOS-CX LLDP service and/or the management plane of the switch in ArubaOS-CX Switches version(s): AOS-CX 10.09.xxxx: 10.09.1010 and below, AOS-CX 10.08.xxxx: 10.08.1050 and below, AOS-CX 10.06.xxxx: 10.06.0190 and below. Aruba has released upgrades for ArubaOS-CX Switch Devices that address these security vulnerabilities.๐ Read
via "National Vulnerability Database".
โผ CVE-2022-2716 โผ
๐ Read
via "National Vulnerability Database".
The Beaver Builder รขโฌโ WordPress Page Builder for WordPress is vulnerable to Stored Cross-Site Scripting via the 'Text Editor' block in versions up to, and including, 2.5.5.2 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers with access to the Beaver Builder editor to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.๐ Read
via "National Vulnerability Database".
โผ CVE-2022-2540 โผ
๐ Read
via "National Vulnerability Database".
The Link Optimizer Lite plugin for WordPress is vulnerable to Cross-Site Request Forgery to Cross-Site Scripting in versions up to, and including 1.4.5. This is due to missing nonce validation on the admin_page function found in the ~/admin.php file. This makes it possible for unauthenticated attackers to modify the plugin's settings and inject malicious web scripts via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.๐ Read
via "National Vulnerability Database".
โผ CVE-2022-34656 โผ
๐ Read
via "National Vulnerability Database".
Authenticated (admin+) Cross-Site Scripting (XSS) vulnerability in wpdevart Poll, Survey, Questionnaire and Voting system plugin <= 1.7.4 at WordPress.๐ Read
via "National Vulnerability Database".
โผ CVE-2022-2432 โผ
๐ Read
via "National Vulnerability Database".
The Ecwid Ecommerce Shopping Cart plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 6.10.23. This is due to missing or incorrect nonce validation on the ecwid_update_plugin_params function. This makes it possible for unauthenticated attackers to update plugin options granted they can trick a site administrator into performing an action such as clicking on a link.๐ Read
via "National Vulnerability Database".
โผ CVE-2022-26451 โผ
๐ Read
via "National Vulnerability Database".
In ged, there is a possible use after free due to improper locking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07202966; Issue ID: ALPS07202966.๐ Read
via "National Vulnerability Database".
๐ด TeslaGun Primed to Blast a New Wave of Backdoor Cyberattacks ๐ด
๐ Read
via "Dark Reading".
What under-the-hood details of newly discovered attack control panel tells us about how the Evil Corp threat group manages its ServHelper backdoor malware campaigns.๐ Read
via "Dark Reading".
Dark Reading
TeslaGun Primed to Blast a New Wave of Backdoor Cyberattacks
What under-the-hood details of newly discovered attack control panel tell us about how the Evil Corp threat group manages its ServHelper backdoor malware campaigns.
๐ด Mysterious 'Worok' Group Launches Spy Effort With Obfuscated Code, Private Tools ๐ด
๐ Read
via "Dark Reading".
The threat actor โ whose techniques and procedures do not match known groups โ has created custom attack tools, including a program that hides scripts in .PNG images.๐ Read
via "Dark Reading".
Dark Reading
Mysterious 'Worok' Group Launches Spy Effort With Obfuscated Code, Private Tools
The threat actor โ whose techniques and procedures do not match known groups โ has created custom attack tools, including a program that hides scripts in .PNG images.