CVE-2020-36133 (aomedia)
AOM v2.0.1 was discovered to contain a global buffer overflow via the component av1/encoder/partition_search.h. Devamını Oku
Devamını oku
CVE-2020-36134 (aomedia)
AOM v2.0.1 was discovered to contain a segmentation violation via the component aom_dsp/x86/obmc_sad_avx2.c. Devamını Oku
CVE-2020-36135 (aomedia)
AOM v2.0.1 was discovered to contain a NULL pointer dereference via the component rate_hist.c. Devamını Oku
CVE-2021-28236
LibreDWG v0.12.3 was discovered to contain a NULL pointer dereference via out_dxfb.c. Devamını Oku
CVE-2021-28237
LibreDWG v0.12.3 was discovered to contain a heap-buffer overflow via decode_preR13. Devamını Oku
CVE-2021-28236 (libredwg)
LibreDWG v0.12.3 was discovered to contain a NULL pointer dereference via out_dxfb.c. Devamını Oku
CVE-2021-28237 (libredwg)
LibreDWG v0.12.3 was discovered to contain a heap-buffer overflow via decode_preR13. Devamını Oku
CVE-2015-20105
The ClickBank Affiliate Ads WordPress plugin through 1.20 does not have CSRF check when saving its settings, allowing attacker to make logged in admin change them via a CSRF attack. Furthermore, due to the lack of escaping when they are outputting, it could also lead to Stored Cross-Site Scripting issues Devamını Oku
CVE-2015-20106
The ClickBank Affiliate Ads WordPress plugin through 1.20 does not escape its settings, allowing high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html is disallowed. Devamını Oku
CVE-2015-20105 (clickbank_affiliate_ads)
The ClickBank Affiliate Ads WordPress plugin through 1.20 does not have CSRF check when saving its settings, allowing attacker to make logged in admin change them via a CSRF attack. Furthermore, due to the lack of escaping when they are outputting, it could also lead to Stored Cross-Site Scripting issues Devamını Oku
CVE-2015-20106 (clickbank_affiliate_ads)
The ClickBank Affiliate Ads WordPress plugin through 1.20 does not escape its settings, allowing high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html is disallowed. Devamını Oku
CVE-2021-23258
Authenticated users with Administrator or Developer roles may execute OS commands by SPEL Expression in Spring beans. SPEL Expression does not have security restrictions, which will cause attackers to execute arbitrary commands remotely (RCE). Devamını Oku