Show filters
6 Total Results
Displaying 1-6 of 6
Sort by:
Attacker Value
Unknown
CVE-2022-4974
Disclosure Date: October 16, 2024 (last updated October 16, 2024)
The Freemius SDK, as used by hundreds of WordPress plugin and theme developers, was vulnerable to Cross-Site Request Forgery and Information disclosure due to missing capability checks and nonce protection on the _get_debug_log, _get_db_option, and the _set_db_option functions in versions up to, and including 2.4.2. Any WordPress plugin or theme running a version of Freemius less than 2.4.3 is vulnerable.
0
Attacker Value
Unknown
CVE-1999-0024
Disclosure Date: August 13, 1997 (last updated February 22, 2025)
DNS cache poisoning via BIND, by predictable query IDs.
0
Attacker Value
Unknown
CVE-1999-0040
Disclosure Date: May 01, 1997 (last updated February 22, 2025)
Buffer overflow in Xt library of X Windowing System allows local users to execute commands with root privileges.
0
Attacker Value
Unknown
CVE-1999-0048
Disclosure Date: January 27, 1997 (last updated February 22, 2025)
Talkd, when given corrupt DNS information, can be used to execute arbitrary commands with root privileges.
0
Attacker Value
Unknown
CVE-1999-0138
Disclosure Date: June 26, 1996 (last updated February 22, 2025)
The suidperl and sperl program do not give up root privileges when changing UIDs back to the original users, allowing root access.
0
Attacker Value
Unknown
CVE-1999-0208
Disclosure Date: December 12, 1995 (last updated February 22, 2025)
rpc.ypupdated (NIS) allows remote users to execute arbitrary commands.
0
