All Posts by: Virtual Patching

GitLab Community Edition/Enterprise Edition 12.8 access control

A vulnerability, which was classified as problematic, was found in GitLab Community Edition and Enterprise Edition 12.8 (Bug Tracking Software).

Common Vulnerabilities and Exposures

GitLab Community Edition/Enterprise Edition 11.9 Feature Flag code injection

A vulnerability has been found in GitLab Community Edition and Enterprise Edition 11.9 (Bug Tracking Software) and classified as critical.

Common Vulnerabilities and Exposures

GitLab Community Edition/Enterprise Edition 13.9 Push Remote Privilege Escalation

A vulnerability was found in GitLab Community Edition and Enterprise Edition 13.9 (Bug Tracking Software) and classified as problematic. Affected

Common Vulnerabilities and Exposures

GitLab Community Edition 13.11.5/13.12.5/14.0.1 Full Name injection

A vulnerability was found in GitLab Community Edition 13.11.5/13.12.5/14.0.1 (Bug Tracking Software). It has been classified as problematic. This affects

Common Vulnerabilities and Exposures

Splinterware System Scheduler Professional 5.30 WindowsScheduler permission

A vulnerability was found in Splinterware System Scheduler Professional 5.30. It has been declared as critical. This vulnerability affects an

Common Vulnerabilities and Exposures

Smashing 1.3.4 Widget cross site scripting

A vulnerability was found in Smashing 1.3.4. It has been rated as problematic. This issue affects some unknown functionality of

Common Vulnerabilities and Exposures

Addressable up to 2.7.0 on Ruby URI Template resource consumption

A vulnerability, which was classified as problematic, was found in Addressable up to 2.7.0 on Ruby (Ruby Gem). This affects

Common Vulnerabilities and Exposures

JoomSport Plugin up to 5.1.7 on WordPress POST Parameter joomsport_md_load shattr deserialization

A vulnerability was found in JoomSport Plugin up to 5.1.7 on WordPress (WordPress Plugin). It has been classified as critical.

Common Vulnerabilities and Exposures

Motor Theme up to 3.0.x on WordPress path traversal [CVE-2021-24375]

A vulnerability was found in Motor Theme up to 3.0.x on WordPress (WordPress Plugin). It has been declared as critical.

Common Vulnerabilities and Exposures

WP Pro Real Estate 7 Theme up to 3.1.0 on WordPress Parameter ct_community cross site scripting

A vulnerability was found in WP Pro Real Estate 7 Theme up to 3.1.0 on WordPress (WordPress Plugin). It has

Common Vulnerabilities and Exposures

wpForo Forum Plugin up to 1.9.6 on WordPress Login Form redirect_to

A vulnerability classified as problematic has been found in wpForo Forum Plugin up to 1.9.6 on WordPress (Forum Software). This

Common Vulnerabilities and Exposures

Export Users With Meta Plugin up to 0.6.4 on WordPress SQL Statement sql injection

A vulnerability classified as critical was found in Export Users With Meta Plugin up to 0.6.4 on WordPress (WordPress Plugin).

Common Vulnerabilities and Exposures

WP SVG Images Plugin up to 3.3 on WordPress SVG Image cross site scripting

A vulnerability, which was classified as problematic, has been found in WP SVG Images Plugin up to 3.3 on WordPress

Common Vulnerabilities and Exposures

Jannah Theme up to 5.4.4 on WordPress POST Parameter tie_ajax_search query cross site scripting

A vulnerability, which was classified as problematic, was found in Jannah Theme up to 5.4.4 on WordPress (WordPress Plugin). Affected

Common Vulnerabilities and Exposures

WP Foodbakery Plugin up to 2.1 on WordPress Parameter foodbakery_radius cross site scripting

A vulnerability has been found in WP Foodbakery Plugin up to 2.1 on WordPress (WordPress Plugin) and classified as problematic.

Common Vulnerabilities and Exposures

Easy Cookies Policy Plugin up to 1.6.2 on WordPress Subscriber cross-site request forgery

A vulnerability was found in Easy Cookies Policy Plugin up to 1.6.2 on WordPress (WordPress Plugin) and classified as problematic.

Common Vulnerabilities and Exposures

WP Offload SES Lite Plugin up to 1.4.4 on WordPress Admin Dashboard cross site scripting

A vulnerability was found in WP Offload SES Lite Plugin up to 1.4.4 on WordPress (WordPress Plugin). It has been

Common Vulnerabilities and Exposures

VikRentCar Car Rental Management System Plugin up to 1.1.6 on WordPress cross site scripting

A vulnerability was found in VikRentCar Car Rental Management System Plugin up to 1.1.6 on WordPress (WordPress Plugin). It has

Common Vulnerabilities and Exposures

pywin32 prior b301 ACE integer overflow

A vulnerability was found in pywin32. It has been rated as problematic. This issue affects an unknown code block of

Common Vulnerabilities and Exposures

Fortinet FortiAuthenticator up to 6.2.x Configuration hard-coded key

A vulnerability classified as problematic has been found in Fortinet FortiAuthenticator up to 6.2.x. Affected is some unknown processing of

Common Vulnerabilities and Exposures

IRIS IRISNext 9.5.16 Folder Name cross site scripting

A vulnerability classified as problematic was found in IRIS IRISNext 9.5.16. Affected by this vulnerability is an unknown function of

Common Vulnerabilities and Exposures

Kaseya Virtual System Administrator unknown vulnerability [CVE-2021-30116]

A vulnerability, which was classified as critical, has been found in Kaseya Virtual System Administrator (affected version not known). There

Common Vulnerabilities and Exposures

xrdp up to 3.14 on Alpine hard-coded key [CVE-2021-36158]

A vulnerability has been found in xrdp up to 3.14 on Alpine and classified as problematic. This vulnerability affects some

Common Vulnerabilities and Exposures

Backdoor.Win32.NerTe.781 Service Port 80 backdoor

A vulnerability was found in Backdoor.Win32.NerTe.781 (Remote Access Software) (unknown version) and classified as critical. This issue affects an unknown