A vulnerability has been found in JNews Theme up to 8.0.5 on WordPress (WordPress Plugin) and classified as problematic. Affected by this vulnerability is some unknown processing of the file /?ajax-request=jnews of the component POST Request Handler. Upgrading to version 8.0.6 eliminates this vulnerability.
Menu 
- Products
- Solution
- About
JNews Theme up to 8.0.5 on WordPress POST Request /?ajax-request=jnews cat_id cross site scripting
- Virtual Patching
- June 11, 2021
- 5:04 am
- Virtual Patching
- June 11, 2021
- 5:04 am
Common Vulnerabilityies and Exposures
Fatek Automation WinProladder up to 3.30 Project File use after free
A vulnerability has been found in Fatek Automation WinProladder up to 3.30 (Automation Software) and classified as critical. Affected by this vulnerability is an unknown code of the component Project File Handler. There is no information about possible countermeasures known. It may be suggested to replace the affected object with […]
Best Practical Request Tracker up to 4.2.16/4.4.4/5.0.1 Auth.pm timing discrepancy
A vulnerability was found in Best Practical Request Tracker up to 4.2.16/4.4.4/5.0.1 (Ticket Tracking Software). It has been declared as problematic. Affected by this vulnerability is an unknown code block in the library lib/RT/REST2/Middleware/Auth.pm. Upgrading to version 4.2.17, 4.4.5 or 5.0.2 eliminates this vulnerability. The upgrade is hosted for download […]
OTRS up to 8.0.16 Ticket privileges assignment
A vulnerability was found in OTRS up to 8.0.16 (Service Management Software). It has been rated as critical. Affected by this issue is some unknown processing of the component Ticket Handler. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an […]
-