Skip to main content
CVE-2020-28339 HIGH POC This Week

The usc-e-shop (aka Collne Welcart e-Commerce) plugin before 1.9.36 for WordPress allows Object Injection because of usces_unserialize. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress Deserialization Welcart E Commerce
NVD
CVSS 3.1
8.8
EPSS
1.9%
CVE-2020-16122 HIGH This Week

PackageKit's apt backend mistakenly treated all local debs as trusted. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Packagekit Ubuntu Linux
NVD
CVSS 3.1
7.8
EPSS
0.3%
CVE-2020-16121 LOW POC Monitor

PackageKit provided detailed error messages to unprivileged callers that exposed information about file presence and mimetype of files that the user would be unable to determine on its own. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Packagekit Ubuntu Linux
NVD
CVSS 3.1
3.3
EPSS
0.5%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy