more updates 2024-11-06

Signed-off-by: Weston Steimel <[email protected]>
anchore · Nov 6, 2024 · 49161d1 · 49161d1
1 parent c5d9c1d
commit 49161d1
Show file tree

Hide file tree

Showing 30 changed files with 1,201 additions and 1 deletion.
diff --git a/data/anchore/2024/CVE-2024-10028.json b/data/anchore/2024/CVE-2024-10028.json
@@ -0,0 +1,38 @@
+{
+  "additionalMetadata": {
+    "cna": "wordfence",
+    "cveId": "CVE-2024-10028",
+    "description": "The Everest Backup – WordPress Cloud Backup, Migration, Restore & Cloning Plugin plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.2.13 via the exposed process stats file during the backup process. This makes it possible for unauthenticated attackers to obtain an archive file name and download the site's backup.",
+    "reason": "Added CPE configurations because not yet analyzed by NVD.",
+    "references": [
+      "https://plugins.trac.wordpress.org/browser/everest-backup/tags/2.2.13/inc/classes/class-backup-directory.php#L514",
+      "https://www.wordfence.com/threat-intel/vulnerabilities/id/9b871957-a2b3-492f-b461-7040d9098b2b?source=cve"
+    ]
+  },
+  "adp": {
+    "affected": [
+      {
+        "collectionURL": "https://wordpress.org/plugins",
+        "cpes": [
+          "cpe:2.3:a:everestthemes:everest_backup:*:*:*:*:*:wordpress:*:*"
+        ],
+        "packageName": "everest-backup",
+        "packageType": "wordpress-plugin",
+        "product": "Everest Backup – WordPress Cloud Backup, Migration, Restore & Cloning Plugin",
+        "vendor": "everestthemes",
+        "versions": [
+          {
+            "lessThan": "2.2.14",
+            "status": "affected",
+            "version": "0",
+            "versionType": "semver"
+          }
+        ]
+      }
+    ],
+    "providerMetadata": {
+      "orgId": "00000000-0000-4000-8000-000000000000",
+      "shortName": "anchoreadp"
+    }
+  }
+}
diff --git a/data/anchore/2024/CVE-2024-10084.json b/data/anchore/2024/CVE-2024-10084.json
@@ -0,0 +1,38 @@
+{
+  "additionalMetadata": {
+    "cna": "wordfence",
+    "cveId": "CVE-2024-10084",
+    "description": "The Contact Form 7 – Dynamic Text Extension plugin for WordPress is vulnerable to Basic Information Disclosure in all versions up to, and including, 4.5 via the CF7_get_post_var shortcode. This makes it possible for authenticated attackers, with Contributor-level access and above, to extract the titles and text contents of private and password-protected posts, they do not own.",
+    "reason": "Added CPE configurations because not yet analyzed by NVD.",
+    "references": [
+      "https://plugins.trac.wordpress.org/browser/contact-form-7-dynamic-text-extension/tags/4.5.0/includes/shortcodes.php#L225",
+      "https://www.wordfence.com/threat-intel/vulnerabilities/id/e051a83e-ad5a-4789-bfee-e03aa9d6a3fc?source=cve"
+    ]
+  },
+  "adp": {
+    "affected": [
+      {
+        "collectionURL": "https://wordpress.org/plugins",
+        "cpes": [
+          "cpe:2.3:a:rocklobster:contact_form_7:*:*:*:*:*:wordpress:*:*"
+        ],
+        "packageName": "contact-form-7-dynamic-text-extension",
+        "packageType": "wordpress-plugin",
+        "product": "Contact Form 7 – Dynamic Text Extension",
+        "vendor": "sevenspark",
+        "versions": [
+          {
+            "lessThan": "4.5.1",
+            "status": "affected",
+            "version": "0",
+            "versionType": "semver"
+          }
+        ]
+      }
+    ],
+    "providerMetadata": {
+      "orgId": "00000000-0000-4000-8000-000000000000",
+      "shortName": "anchoreadp"
+    }
+  }
+}
diff --git a/data/anchore/2024/CVE-2024-10097.json b/data/anchore/2024/CVE-2024-10097.json
@@ -0,0 +1,40 @@
+{
+  "additionalMetadata": {
+    "cna": "wordfence",
+    "cveId": "CVE-2024-10097",
+    "description": "The Loginizer Security and Loginizer plugins for WordPress are vulnerable to authentication bypass in all versions up to, and including, 1.9.2. This is due to insufficient verification on the user being returned by the social login token. This makes it possible for unauthenticated attackers to log in as any existing user on the site, such as an administrator, if they have access to the email and the user does not have an already-existing account for the service returning the token.",
+    "reason": "Added CPE configurations because not yet analyzed by NVD.",
+    "references": [
+      "https://loginizer.com/",
+      "https://plugins.trac.wordpress.org/browser/loginizer/trunk/main/social-login.php?rev=3108779#L127",
+      "https://plugins.trac.wordpress.org/changeset/3173657/",
+      "https://www.wordfence.com/threat-intel/vulnerabilities/id/5db00b22-d766-4fde-86fe-98d90936028c?source=cve"
+    ]
+  },
+  "adp": {
+    "affected": [
+      {
+        "collectionURL": "https://wordpress.org/plugins",
+        "cpes": [
+          "cpe:2.3:a:loginizer:loginizer:*:*:*:*:*:wordpress:*:*"
+        ],
+        "packageName": "loginizer",
+        "packageType": "wordpress-plugin",
+        "product": "Loginizer",
+        "vendor": "softaculous",
+        "versions": [
+          {
+            "lessThanOrEqual": "1.9.2",
+            "status": "affected",
+            "version": "0",
+            "versionType": "semver"
+          }
+        ]
+      }
+    ],
+    "providerMetadata": {
+      "orgId": "00000000-0000-4000-8000-000000000000",
+      "shortName": "anchoreadp"
+    }
+  }
+}
diff --git a/data/anchore/2024/CVE-2024-10263.json b/data/anchore/2024/CVE-2024-10263.json
@@ -0,0 +1,38 @@
+{
+  "additionalMetadata": {
+    "cna": "wordfence",
+    "cveId": "CVE-2024-10263",
+    "description": "The Tickera – WordPress Event Ticketing plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 3.5.4.4. This is due to the software allowing users to execute an action that does not properly validate a value before running do_shortcode. This makes it possible for unauthenticated attackers to execute arbitrary shortcodes.",
+    "reason": "Added CPE configurations because not yet analyzed by NVD.",
+    "references": [
+      "https://plugins.trac.wordpress.org/changeset/3179272/tickera-event-ticketing-system",
+      "https://www.wordfence.com/threat-intel/vulnerabilities/id/6e5e9249-9705-4cfa-9c8e-2e002190562b?source=cve"
+    ]
+  },
+  "adp": {
+    "affected": [
+      {
+        "collectionURL": "https://wordpress.org/plugins",
+        "cpes": [
+          "cpe:2.3:a:tickera:tickera:*:*:*:*:*:wordpress:*:*"
+        ],
+        "packageName": "tickera-event-ticketing-system",
+        "packageType": "wordpress-plugin",
+        "product": "Tickera – WordPress Event Ticketing",
+        "vendor": "tickera",
+        "versions": [
+          {
+            "lessThan": "3.5.4.6",
+            "status": "affected",
+            "version": "0",
+            "versionType": "semver"
+          }
+        ]
+      }
+    ],
+    "providerMetadata": {
+      "orgId": "00000000-0000-4000-8000-000000000000",
+      "shortName": "anchoreadp"
+    }
+  }
+}
diff --git a/data/anchore/2024/CVE-2024-10329.json b/data/anchore/2024/CVE-2024-10329.json
@@ -0,0 +1,39 @@
+{
+  "additionalMetadata": {
+    "cna": "wordfence",
+    "cveId": "CVE-2024-10329",
+    "description": "The Ultimate Bootstrap Elements for Elementor plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.4.6 via the 'ube_get_page_templates' function. This makes it possible for authenticated attackers, with Contributor-level access and above, to extract sensitive data including the contents of templates that are private.",
+    "reason": "Added CPE configurations because not yet analyzed by NVD.",
+    "references": [
+      "https://plugins.trac.wordpress.org/browser/ultimate-bootstrap-elements-for-elementor/trunk/inc/functions/core.php#L239",
+      "https://plugins.trac.wordpress.org/changeset/3176562/",
+      "https://www.wordfence.com/threat-intel/vulnerabilities/id/3af83ec2-9ebb-4cca-8523-8fe9b1517825?source=cve"
+    ]
+  },
+  "adp": {
+    "affected": [
+      {
+        "collectionURL": "https://wordpress.org/plugins",
+        "cpes": [
+          "cpe:2.3:a:g5plus:ultimate_bootstrap_elements_for_elementor:*:*:*:*:*:wordpress:*:*"
+        ],
+        "packageName": "ultimate-bootstrap-elements-for-elementor",
+        "packageType": "wordpress-plugin",
+        "product": "Ultimate Bootstrap Elements for Elementor",
+        "vendor": "g5theme",
+        "versions": [
+          {
+            "lessThan": "1.4.7",
+            "status": "affected",
+            "version": "0",
+            "versionType": "semver"
+          }
+        ]
+      }
+    ],
+    "providerMetadata": {
+      "orgId": "00000000-0000-4000-8000-000000000000",
+      "shortName": "anchoreadp"
+    }
+  }
+}
diff --git a/data/anchore/2024/CVE-2024-30543.json b/data/anchore/2024/CVE-2024-30543.json
@@ -0,0 +1,43 @@
+{
+  "additionalMetadata": {
+    "cna": "patchstack",
+    "cveId": "CVE-2024-30543",
+    "description": "Authorization Bypass Through User-Controlled Key vulnerability in UPQODE Whizz.This issue affects Whizzy: from n/a through 1.1.18.",
+    "reason": "Added CPE configurations because not yet analyzed by NVD.",
+    "references": [
+      "https://patchstack.com/database/vulnerability/whizzy/wordpress-whizzy-plugin-1-1-18-insecure-direct-object-references-idor-vulnerability?_s_id=cve"
+    ]
+  },
+  "adp": {
+    "affected": [
+      {
+        "collectionURL": "https://wordpress.org/plugins",
+        "cpes": [
+          "cpe:2.3:a:upqode:whizzy:*:*:*:*:*:wordpress:*:*"
+        ],
+        "packageName": "whizzy",
+        "packageType": "wordpress-plugin",
+        "product": "Whizzy",
+        "repo": "https://plugins.svn.wordpress.org/whizzy",
+        "vendor": "UPQODE",
+        "versions": [
+          {
+            "lessThanOrEqual": "1.1.18",
+            "status": "affected",
+            "version": "0",
+            "versionType": "custom"
+          }
+        ]
+      }
+    ],
+    "providerMetadata": {
+      "orgId": "00000000-0000-4000-8000-000000000000",
+      "shortName": "anchoreadp"
+    },
+    "references": [
+      {
+        "url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/1ededa54-654f-48dc-87d5-7321e041e6fb?source=cve"
+      }
+    ]
+  }
+}
diff --git a/data/anchore/2024/CVE-2024-31242.json b/data/anchore/2024/CVE-2024-31242.json
@@ -0,0 +1,43 @@
+{
+  "additionalMetadata": {
+    "cna": "patchstack",
+    "cveId": "CVE-2024-31242",
+    "description": "Missing Authorization vulnerability in Bricksforge.This issue affects Bricksforge: from n/a through 2.0.17.",
+    "reason": "Added CPE configurations because not yet analyzed by NVD.",
+    "references": [
+      "https://patchstack.com/database/vulnerability/bricksforge/wordpress-bricksforge-plugin-2-0-17-unauthenticated-arbitrary-email-sending-vulnerability?_s_id=cve"
+    ],
+    "solutions": [
+      "Update to 2.1.1 or a higher version."
+    ]
+  },
+  "adp": {
+    "affected": [
+      {
+        "cpes": [
+          "cpe:2.3:a:bricksforge:bricksforge:*:*:*:*:*:wordpress:*:*"
+        ],
+        "packageName": "bricksforge",
+        "product": "Bricksforge",
+        "vendor": "Bricksforge",
+        "versions": [
+          {
+            "lessThan": "2.1.1",
+            "status": "affected",
+            "version": "0",
+            "versionType": "custom"
+          }
+        ]
+      }
+    ],
+    "providerMetadata": {
+      "orgId": "00000000-0000-4000-8000-000000000000",
+      "shortName": "anchoreadp"
+    },
+    "references": [
+      {
+        "url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/701a037d-bbd5-436d-bfc8-394c9dcf6bab?source=cve"
+      }
+    ]
+  }
+}
diff --git a/data/anchore/2024/CVE-2024-49377.json b/data/anchore/2024/CVE-2024-49377.json
@@ -0,0 +1,38 @@
+{
+  "additionalMetadata": {
+    "cna": "github_m",
+    "cveId": "CVE-2024-49377",
+    "description": "OctoPrint provides a web interface for controlling consumer 3D printers. OctoPrint versions up until and including 1.10.2 contain reflected XSS vulnerabilities in the login dialog and the standalone application key confirmation dialog.  An attacker who successfully talked a victim into clicking on a specially crafted login link, or a malicious app running on a victim's computer triggering the application key workflow with specially crafted parameters and then redirecting the victim to the related standalone confirmation dialog could use this to retrieve or modify sensitive configuration settings, interrupt prints or otherwise interact with the OctoPrint instance in a malicious way. The above mentioned specific vulnerabilities of the login dialog and the standalone application key confirmation dialog have been patched in the bugfix release 1.10.3 by individual escaping of the detected locations. A global change throughout all of OctoPrint's templating system with the upcoming 1.11.0 release will handle this further, switching to globally enforced automatic escaping and thus reducing the attack surface in general. The latter will also improve the security of third party plugins. During a transition period, third party plugins will be able to opt into the automatic escaping. With OctoPrint 1.13.0, automatic escaping will be switched over to be enforced even for third party plugins, unless they explicitly opt-out.",
+    "reason": "Added CPE configurations because not yet analyzed by NVD.",
+    "references": [
+      "https://github.com/OctoPrint/OctoPrint/security/advisories/GHSA-xvxq-g8hw-fx4g"
+    ]
+  },
+  "adp": {
+    "affected": [
+      {
+        "collectionURL": "https://pypi.org",
+        "cpes": [
+          "cpe:2.3:a:octoprint:octoprint:*:*:*:*:*:python:*:*"
+        ],
+        "packageName": "octoprint",
+        "packageType": "python",
+        "product": "OctoPrint",
+        "repo": "https://github.com/octoprint/octoprint",
+        "vendor": "OctoPrint",
+        "versions": [
+          {
+            "lessThan": "1.10.3",
+            "status": "affected",
+            "version": "0",
+            "versionType": "python"
+          }
+        ]
+      }
+    ],
+    "providerMetadata": {
+      "orgId": "00000000-0000-4000-8000-000000000000",
+      "shortName": "anchoreadp"
+    }
+  }
+}
diff --git a/data/anchore/2024/CVE-2024-49522.json b/data/anchore/2024/CVE-2024-49522.json
@@ -0,0 +1,34 @@
+{
+  "additionalMetadata": {
+    "cna": "adobe",
+    "cveId": "CVE-2024-49522",
+    "description": "Substance3D - Painter versions 10.0.1 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.",
+    "reason": "Added CPE configurations because not yet analyzed by NVD.",
+    "references": [
+      "https://helpx.adobe.com/security/products/substance3d_painter/apsb24-52.html"
+    ]
+  },
+  "adp": {
+    "affected": [
+      {
+        "cpes": [
+          "cpe:2.3:a:adobe:substance_3d_painter:*:*:*:*:*:*:*:*"
+        ],
+        "product": "Substance3D - Painter",
+        "vendor": "Adobe",
+        "versions": [
+          {
+            "lessThan": "10.1.0",
+            "status": "affected",
+            "version": "0",
+            "versionType": "semver"
+          }
+        ]
+      }
+    ],
+    "providerMetadata": {
+      "orgId": "00000000-0000-4000-8000-000000000000",
+      "shortName": "anchoreadp"
+    }
+  }
+}
diff --git a/data/anchore/2024/CVE-2024-49580.json b/data/anchore/2024/CVE-2024-49580.json
@@ -11,9 +11,13 @@
   "adp": {
     "affected": [
       {
+        "collectionURL": "https://repo.maven.apache.org/maven2",
         "cpes": [
-          "cpe:2.3:a:jetbrains:ktor:*:*:*:*:*:*:*:*"
+          "cpe:2.3:a:io.ktor:ktor-client-core-jvm:*:*:*:*:*:maven:*:*",
+          "cpe:2.3:a:jetbrains:ktor:*:*:*:*:*:maven:*:*"
         ],
+        "packageName": "io.ktor:ktor-client-core-jvm",
+        "packageType": "maven",
         "product": "Ktor",
         "vendor": "JetBrains",
         "versions": [