Lucene search
K

178 matches found

Nuclei
Nuclei
added yesterday11 views

WordPress 10Web Map Builder < 1.0.73 - Unauthenticated SQL Injection

The 10Web Map Builder for Google Maps WordPress plugin before 1.0.73 does not properly sanitise and escape some parameters before using them in an SQL statement via an AJAX action available to unauthenticated users, leading to a SQL injection id: CVE-2023-0037 info: name: WordPress 10Web Map...

9.8CVSS7.2AI score0.03911EPSS
Exploits2References3
Circl
Circl
added 2026/03/02 8:11 p.m.6 views

CVE-2026-0037

creationtimestamp| type| source ---|---|--- 2026-03-02 20:11:51+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mg42tbjbky2u 2026-03-02 22:00:45+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mg4avy25kg26 2026-03-03 07:08:12+00:00| seen|...

8.4CVSS5.7AI score0.00153EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/03/02 6:42 p.m.4 views

CVE-2026-0037

In multiple functions of ffa.c, there is a possible memory corruption due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

6.1AI score0.00153EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/14 12:0 a.m.3 views

MiracleLinux 3 : curl-7.15.5-2.1AXS3.4 (AXSA:2009-37:01)

The remote MiracleLinux 3 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2009-37:01 advisory. cURL is a tool for getting files from FTP, HTTP, Gopher, Telnet, and Dict servers, using any of the supported protocols. cURL is designed to work without user...

6.8CVSS7.3AI score0.07812EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2026/01/14 12:0 a.m.2 views

MiracleLinux 4 : raptor-1.4.18-5.AXS4.1 (AXSA:2012-453:01)

The remote MiracleLinux 4 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2012-453:01 advisory. Raptor is the RDF Parser Toolkit for Redland that provides a set of standalone RDF parsers, generating triples from RDF/XML or N-Triples. Security issues fixe...

6.5CVSS6.5AI score0.13682EPSS
Exploits2References2
EUVD
EUVD
added 2026/01/02 4:32 p.m.5 views

EUVD-2026-0037

A security vulnerability has been detected in code-projects Content Management System 1.0. Impacted is an unknown function of the file /admin/editposts.php. The manipulation of the argument image leads to unrestricted upload. The attack is possible to be carried out remotely. The exploit has been...

5.8CVSS6.2AI score0.00305EPSS
Exploits1References7
Circl
Circl
added 2025/06/10 12:33 a.m.7 views

CVE-2025-0037

creationtimestamp| type| source ---|---|--- 2025-06-10 00:33:05+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/17814 2026-02-24 17:04:49+00:00| seen| https://infosec.exchange/users/AAKL/statuses/116126691392778847 2026-03-10 16:05:40+00:00| seen|...

6.6CVSS4.8AI score0.00146EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/23 9:32 a.m.7 views

CVE-2024-0037

In applyCustomDescription of SaveUi.java, there is a possible way to view images belonging to a different user due to a missing permission check. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation...

3.3CVSS6.2AI score0.00115EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 3:57 p.m.7 views

CVE-2020-0037

In rwi93smsetreadonly of rwi93.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure over NFC with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-8.0...

7.8CVSS6.5AI score0.01155EPSS
Exploits0References1
Circl
Circl
added 2024/02/16 3:21 a.m.4 views

CVE-2024-0037

creationtimestamp| type| source ---|---|--- 2024-02-16 03:21:58+00:00| seen| https://t.me/ctinow/186089 2025-02-03 19:33:09+00:00| seen| https://vulnerability.circl.lu/bundle/cf59c148-4047-4ccd-8ba0-26fb7197899c...

3.3CVSS4.8AI score0.00115EPSS
Exploits0References2
CVE
CVE
added 2024/02/16 12:8 a.m.6893 views

CVE-2024-0037

The CVE-2024-0037 entry describes a local information disclosure in Android’s SaveUi.java, where applyCustomDescription can view other users’ images due to a missing permission check. Exploitation is possible with local attacker privileges and does not require user interaction. Connected document...

3.3CVSS6AI score0.00115EPSS
Exploits0References2Affected Software1
Circl
Circl
added 2023/03/13 7:23 p.m.11 views

CVE-2023-0037

creationtimestamp| type| source ---|---|--- 2023-03-13 19:23:12+00:00| seen| https://t.me/cibsecurity/59910 2025-03-02 11:44:20+00:00| seen| Telegram/473RzYN8J9DFpGG6FhPBWnoIOLebP5gKDXvWELJcosREZk7 2025-09-16 21:02:28+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3lyy7rtxcld...

9.8CVSS7.3AI score0.03911EPSS
Exploits2References2
NVD
NVD
added 2023/03/13 5:15 p.m.32 views

CVE-2023-0037

The 10Web Map Builder for Google Maps WordPress plugin before 1.0.73 does not properly sanitise and escape some parameters before using them in an SQL statement via an AJAX action available to unauthenticated users, leading to a SQL injection...

9.8CVSS9.8AI score0.03911EPSS
Exploits2References2
Cvelist
Cvelist
added 2023/03/13 4:3 p.m.31 views

CVE-2023-0037 10WebMapBuilder < 1.0.73 - Unauthenticated SQLi

The 10Web Map Builder for Google Maps WordPress plugin before 1.0.73 does not properly sanitise and escape some parameters before using them in an SQL statement via an AJAX action available to unauthenticated users, leading to a SQL injection...

10AI score0.03911EPSS
Exploits2References2
Vulnrichment
Vulnrichment
added 2023/03/13 4:3 p.m.12 views

CVE-2023-0037 10WebMapBuilder < 1.0.73 - Unauthenticated SQLi

The 10Web Map Builder for Google Maps WordPress plugin before 1.0.73 does not properly sanitise and escape some parameters before using them in an SQL statement via an AJAX action available to unauthenticated users, leading to a SQL injection...

9.8AI score0.03911EPSS
Exploits2References2
CVE
CVE
added 2023/03/13 4:3 p.m.91 views

CVE-2023-0037

Vulnerability summary: The WordPress plugin “10Web Map Builder for Google Maps” (

9.8CVSS9.9AI score0.03911EPSS
Exploits2References2Affected Software1
Patchstack
Patchstack
added 2023/03/03 12:0 a.m.13 views

WordPress 10Web Map Builder for Google Maps Plugin < 1.0.73 is vulnerable to SQL Injection

Software 10Web Map Builder for Google Maps Type Plugin Vulnerable versions 1.0.73 Fixed in 1.0.73 OWASP Top 10 A1: Injection Classification SQL Injection CVE CVE-2023-0037 Patch priority High CVSS severity High 8.2 Developer Claim ownership PSID d12f4275dd8a Credits Daniel Krohmer Fraunhofer IESE...

9.8CVSS7.2AI score0.03911EPSS
Exploits2References3Affected Software1
OpenVAS
OpenVAS
added 2023/01/09 12:0 a.m.9 views

SUSE: Security Advisory (SUSE-SU-2023:0037-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2023/01/08 12:0 a.m.16 views

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : ca-certificates-mozilla (SUSE-SU-2023:0037-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:0037-1 advisory. - Updated to 2.60 state of Mozilla SSL root CAs bsc1206622 Removed CAs: - Global Chambersign Root - EC-AC...

5.9AI score
Exploits0References3
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.21 views

Mageia: Security Advisory (MGASA-2017-0037)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.3CVSS5.7AI score0.01685EPSS
Exploits0References10
Rows per page
Query Builder