CWE:
 

Nic nie znaleziono w bazie WLB2


Common Weakness Enumeration (CWE)

CVE
Szczegóły
Opis
2019-08-30
Medium
CVE-2019-15826

Vendor: Wpserveur
Software: Wps hide login
 

 
The wps-hide-login plugin before 1.5.3 for WordPress has a protection bypass via wp-login.php in the Referer field.

 
Medium
CVE-2019-15825

Vendor: Wpserveur
Software: Wps hide login
 

 
The wps-hide-login plugin before 1.5.3 for WordPress has an action=rp&key&login protection bypass.

 
Medium
CVE-2019-15824

Vendor: Wpserveur
Software: Wps hide login
 

 
The wps-hide-login plugin before 1.5.3 for WordPress has an adminhash protection bypass.

 
Medium
CVE-2019-15823

Vendor: Wpserveur
Software: Wps hide login
 

 
The wps-hide-login plugin before 1.5.3 for WordPress has an action=confirmaction protection bypass.

 
Medium
CVE-2019-15816

Vendor: Wpexpertdeveloper
Software: Wp private c...
 

 
The wp-private-content-plus plugin before 2.0 for WordPress has no protection against option changes via save_settings_page and other save_ functions.

 
2019-08-28
Medium
CVE-2019-10059

Vendor: Lexmark
Software: 6500e firmware
 

 
The legacy finger service (TCP port 79) is enabled by default on various older Lexmark devices.

 
2019-08-26
Low
CVE-2016-10933

Vendor: Portaudio project
Software: Portaudio
 

 
An issue was discovered in the portaudio crate through 0.7.0 for Rust. There is a man-in-the-middle issue because the source code is downloaded over cleartext HTTP.

 
Medium
CVE-2016-10932

Updating...
 

 
An issue was discovered in the hyper crate before 0.9.4 for Rust on Windows. There is an HTTPS man-in-the-middle vulnerability because hostname verification was omitted.

 
2019-08-22
Medium
CVE-2019-15325

Vendor: Galliumos
Software: Galliumos
 

 
In GalliumOS 3.0, CONFIG_SECURITY_YAMA is disabled but /etc/sysctl.d/10-ptrace.conf tries to set /proc/sys/kernel/yama/ptrace_scope to 1, which might increase risk because of the appearance that a protection mechanism is present when actually it is not.

 
2019-08-20
Medium
CVE-2015-9318

Vendor: Getawesomesupport
Software: Awesome support
 

 
The awesome-support plugin before 3.1.7 for WordPress has a security issue in which shortcodes are allowed in replies.

 

 


Copyright 2024, cxsecurity.com

 

Back to Top