NVD – CVE-2015-9452

CVSS v3.1 Severity and Metrics: Base Score: 9.8 CRITICALVector: AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H (V3.1 legend)Impact Score: 5.9Exploitability Score: 3.9 Attack Vector (AV): NetworkAttack Complexity (AC): LowPrivileges Required (PR): NoneUser Interaction (UI): NoneScope (S): UnchangedConfidentiality (C): HighIntegrity (I): HighAvailability (A): High CVSS v2.0 Severity and Metrics: Base Score: 7.5 HIGHVector: (AV:N/AC:L/Au:N/C:P/I:P/A:P) (V2 legend)Impact Subscore: 6.4Exploitability Subscore: 10.0 Access Vector […]

NVD – CVE-2015-9453

References to Advisories, Solutions, and Tools By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There […]

NVD – CVE-2015-9454

References to Advisories, Solutions, and Tools By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There […]

NVD – CVE-2015-9455

Awaiting Analysis This vulnerability is currently awaiting analysis. The buddypress-activity-plus plugin before 1.6.2 for WordPress has CSRF with resultant directory traversal via the wp-admin/admin-ajax.php bpfb_photos[] parameter in a bpfb_remove_temp_images action.

NVD – CVE-2015-9456

Awaiting Analysis This vulnerability is currently awaiting analysis. The orbisius-child-theme-creator plugin before 1.2.8 for WordPress has incorrect access control for file modification via the wp-admin/admin-ajax.php?action=orbisius_ctc_theme_editor_ajax&sub_cmd=save_file theme_1, theme_1_file, or theme_1_file_contents parameter.

NVD – CVE-2018-10103

References to Advisories, Solutions, and Tools By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There […]

NVD – CVE-2018-10105

References to Advisories, Solutions, and Tools By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There […]

NVD – CVE-2018-11768

Awaiting Analysis This vulnerability is currently awaiting analysis. In Apache Hadoop 3.1.0 to 3.1.1, 3.0.0-alpha1 to 3.0.3, 2.9.0 to 2.9.1, and 2.0.0-alpha to 2.8.4, the user/group information can be corrupted across storing in fsimage and reading back from fsimage.

NVD – CVE-2018-14461

CVSS v3.1 Severity and Metrics: Base Score: 9.8 CRITICALVector: AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H (V3.1 legend)Impact Score: 5.9Exploitability Score: 3.9 Attack Vector (AV): NetworkAttack Complexity (AC): LowPrivileges Required (PR): NoneUser Interaction (UI): NoneScope (S): UnchangedConfidentiality (C): HighIntegrity (I): HighAvailability (A): High CVSS v2.0 Severity and Metrics: Base Score: 7.5 HIGHVector: (AV:N/AC:L/Au:N/C:P/I:P/A:P) (V2 legend)Impact Subscore: 6.4Exploitability Subscore: 10.0 Access Vector […]

NVD – CVE-2018-14462

CVSS v3.1 Severity and Metrics: Base Score: 9.8 CRITICALVector: AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H (V3.1 legend)Impact Score: 5.9Exploitability Score: 3.9 Attack Vector (AV): NetworkAttack Complexity (AC): LowPrivileges Required (PR): NoneUser Interaction (UI): NoneScope (S): UnchangedConfidentiality (C): HighIntegrity (I): HighAvailability (A): High CVSS v2.0 Severity and Metrics: Base Score: 7.5 HIGHVector: (AV:N/AC:L/Au:N/C:P/I:P/A:P) (V2 legend)Impact Subscore: 6.4Exploitability Subscore: 10.0 Access Vector […]