Time to Get Smarter About Threat Intel

Aug 22, 2019 10:00 pm Cyber Security 213
Enterprise VulnerabilitiesFrom DHS/US-CERT's National Vulnerability Database CVE-2019-15330PUBLISHED: 2019-08-22

The webp-express plugin before 0.14.11 for WordPress has insufficient protection against arbitrary file reading.

CVE-2019-15331PUBLISHED: 2019-08-22

The wp-support-plus-responsive-ticket-system plugin before 9.1.2 for WordPress has HTML injection.

CVE-2016-10930PUBLISHED: 2019-08-22

The wp-support-plus-responsive-ticket-system plugin before 7.1.0 for WordPress has insecure direct object reference via a ticket number.

CVE-2017-18586PUBLISHED: 2019-08-22

The insert-pages plugin before 3.2.4 for WordPress has directory traversal via custom template paths.

CVE-2018-20988PUBLISHED: 2019-08-22

The wpgform plugin before 0.94 for WordPress has eval injection in the CAPTCHA calculation.




Support the originator by clicking the read the rest link below.
smarter about threat intel
Read The Rest from the original source
darkreading.com

Related News

Be in Touch

All Rights Reserved #1 Source for Cyber Security News, Reports and Threat Intelligence
Powered By The Internet!!!!