CVE-2021-4352
published 2023-06-07CVE-2021-4352: The JobSearch WP Job Board plugin for WordPress is vulnerable to authorization bypass due to a missing capability check on the save_locsettings function in…
PriorityP429medium5.3CVSS 3.1
AVNACLPRNUINSUCNILAN
EPSS
0.85%
53.7th percentile
The JobSearch WP Job Board plugin for WordPress is vulnerable to authorization bypass due to a missing capability check on the save_locsettings function in versions up to, and including, 1.8.1. This makes it possible for unauthenticated attackers to change the settings of the plugin.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| eyecix | jobsearch_wp_job_board | <= 1.8.1 | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2021-47310 kernel: net: ti: fix UAF in tlan_remove_one
bugzilla·2024-05-22·CVSS 7.8
CVE-2021-47310 [HIGH] CVE-2021-47310 kernel: net: ti: fix UAF in tlan_remove_one
CVE-2021-47310 kernel: net: ti: fix UAF in tlan_remove_one
In the Linux kernel, the following vulnerability has been resolved:
net: ti: fix UAF in tlan_remove_one
The Linux kernel CVE team has assigned CVE-2021-47310 to this issue.
Upstream advisory:
https://lore.kernel.org/linux-cve-announce/2024052128-CVE-2021-47310-a59d@gregkh/T
Discussion:
This issue has been addressed in the following products:
Red Hat Enterprise Linux 8
Via RHSA-2024:4211 https://access.redhat.com/errata/RHSA-2024:4211
---
This issue has been addressed in the following products:
Red Hat Enterprise Linux 8
Via RHSA-2024:4352 https://access.redhat.com/errata/RHSA-2024:4352
---
This issue has been addressed in the following products:
Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support
Re
Bugzilla
CVE-2021-47311 kernel: net: qcom/emac: fix UAF in emac_remove
bugzilla·2024-05-22·CVSS 7.8
CVE-2021-47311 [HIGH] CVE-2021-47311 kernel: net: qcom/emac: fix UAF in emac_remove
CVE-2021-47311 kernel: net: qcom/emac: fix UAF in emac_remove
In the Linux kernel, the following vulnerability has been resolved:
net: qcom/emac: fix UAF in emac_remove
The Linux kernel CVE team has assigned CVE-2021-47311 to this issue.
Upstream advisory:
https://lore.kernel.org/linux-cve-announce/2024052129-CVE-2021-47311-47f4@gregkh/T
Discussion:
Hi Rohit, can we have kpatch trackers created for these releases:
rhel-8.6
rhel-8.8
rhel-8.10
(http://redbot.usersys.redhat.com/kpatch/kpatch-sla-kernels.json)
Thanks.
---
This issue has been addressed in the following products:
Red Hat Enterprise Linux 8
Via RHSA-2024:4211 https://access.redhat.com/errata/RHSA-2024:4211
---
This issue has been addressed in the following products:
Red Hat Enterprise Linux 8
Via RHSA-2024:4352 h
Bugzilla
CVE-2021-47353 kernel: udf: Fix NULL pointer dereference in udf_symlink function
bugzilla·2024-05-22·CVSS 5.5
CVE-2021-47353 [MEDIUM] CVE-2021-47353 kernel: udf: Fix NULL pointer dereference in udf_symlink function
CVE-2021-47353 kernel: udf: Fix NULL pointer dereference in udf_symlink function
In the Linux kernel, the following vulnerability has been resolved:
udf: Fix NULL pointer dereference in udf_symlink function
The Linux kernel CVE team has assigned CVE-2021-47353 to this issue.
Upstream advisory:
https://lore.kernel.org/linux-cve-announce/2024052141-CVE-2021-47353-8d3a@gregkh/T
Discussion:
This issue has been addressed in the following products:
Red Hat Enterprise Linux 8
Via RHSA-2024:4211 https://access.redhat.com/errata/RHSA-2024:4211
---
This issue has been addressed in the following products:
Red Hat Enterprise Linux 8
Via RHSA-2024:4352 https://access.redhat.com/errata/RHSA-2024:4352
Bugzilla
CVE-2021-47356 kernel: mISDN: fix possible use-after-free in HFC_cleanup()
bugzilla·2024-05-22·CVSS 7.7
CVE-2021-47356 [HIGH] CVE-2021-47356 kernel: mISDN: fix possible use-after-free in HFC_cleanup()
CVE-2021-47356 kernel: mISDN: fix possible use-after-free in HFC_cleanup()
In the Linux kernel, the following vulnerability has been resolved:
mISDN: fix possible use-after-free in HFC_cleanup()
The Linux kernel CVE team has assigned CVE-2021-47356 to this issue.
Upstream advisory:
https://lore.kernel.org/linux-cve-announce/2024052142-CVE-2021-47356-a3d4@gregkh/T
Discussion:
This issue has been addressed in the following products:
Red Hat Enterprise Linux 8
Via RHSA-2024:4211 https://access.redhat.com/errata/RHSA-2024:4211
---
This issue has been addressed in the following products:
Red Hat Enterprise Linux 8
Via RHSA-2024:4352 https://access.redhat.com/errata/RHSA-2024:4352
---
This issue has been addressed in the following products:
Red Hat Enterprise Linux 8.6 Advanced Mi
https://blog.nintechnet.com/wordpress-jobsearch-wp-job-board-plugin-fixed-vulnerability/https://wpscan.com/vulnerability/ed7e664e-5a73-4d2d-a599-a0be89d6c2d1https://www.wordfence.com/threat-intel/vulnerabilities/id/59170f0a-975e-487c-bdb0-585c802b3127?source=cvehttps://blog.nintechnet.com/wordpress-jobsearch-wp-job-board-plugin-fixed-vulnerability/https://wpscan.com/vulnerability/ed7e664e-5a73-4d2d-a599-a0be89d6c2d1https://www.wordfence.com/threat-intel/vulnerabilities/id/59170f0a-975e-487c-bdb0-585c802b3127?source=cve
2023-06-07
Published