Vulnerabilities > Debian > Debian Linux > 8.0

DATE	CVE	VULNERABILITY TITLE	RISK
2020-06-12	CVE-2020-4050	In affected versions of WordPress, misuse of the `set-screen-option` filter's return value allows arbitrary user meta fields to be saved. network high complexity wordpress fedoraproject debian	3.1
2020-06-12	CVE-2020-4049	In affected versions of WordPress, when uploading themes, the name of the theme folder can be crafted in a way that could lead to JavaScript execution in /wp-admin on the themes page. network low complexity wordpress fedoraproject debian	2.4
2020-06-12	CVE-2020-4048	In affected versions of WordPress, due to an issue in wp_validate_redirect() and URL sanitization, an arbitrary external link can be crafted leading to unintended/open redirect when clicked. network low complexity wordpress fedoraproject debian	5.7
2020-06-12	CVE-2020-4047	In affected versions of WordPress, authenticated users with upload permissions (like authors) are able to inject JavaScript into some media file attachment pages in a certain way. network low complexity wordpress fedoraproject debian	6.8
2020-06-12	CVE-2020-4046	Cross-site Scripting vulnerability in multiple products In affected versions of WordPress, users with low privileges (like contributors and authors) can use the embed block in a certain way to inject unfiltered HTML in the block editor. network low complexity wordpress debian fedoraproject CWE-79	5.4
2020-06-11	CVE-2020-0198	Integer Overflow or Wraparound vulnerability in multiple products In exif_data_load_data_content of exif-data.c, there is a possible UBSAN abort due to an integer overflow. network low complexity google debian canonical fedoraproject libexif-project CWE-190	7.5
2020-06-11	CVE-2020-0182	Out-of-bounds Read vulnerability in multiple products In exif_entry_get_value of exif-entry.c, there is a possible out of bounds read due to a missing bounds check. network low complexity google debian CWE-125	6.5
2020-06-09	CVE-2020-10757	Type Confusion vulnerability in multiple products A flaw was found in the Linux Kernel in versions after 4.5-rc1 in the way mremap handled DAX Huge Pages. local low complexity linux opensuse redhat fedoraproject debian canonical netapp CWE-843	7.8
2020-06-08	CVE-2020-13696	Incorrect Authorization vulnerability in multiple products An issue was discovered in LinuxTV xawtv before 3.107. local low complexity linuxtv debian opensuse fedoraproject canonical CWE-863	4.4
2020-06-08	CVE-2020-13625	Improper Encoding or Escaping of Output vulnerability in multiple products PHPMailer before 6.1.6 contains an output escaping bug when the name of a file attachment contains a double quote character. network low complexity phpmailer-project fedoraproject canonical debian CWE-116	7.5