Lucene search
K

100 matches found

Circl
Circl
added 2026/06/19 4:45 p.m.6 views

CVE-2011-0627

creationtimestamp| type| source ---|---|--- 2026-06-19 16:45:38+00:00| exploited| https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/dcf5d8b8-625c-4e32-ad2a-f1854199bbda 2026-06-23 14:04:10+00:00| exploited|...

9.3CVSS6AI score0.05066EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2026/01/09 10:45 a.m.8 views

CVE-2022-0627

The Amelia WordPress plugin before 1.0.47 does not sanitize and escape the code parameter before outputting it back in an admin page, leading to a Reflected Cross-Site Scripting...

6.1CVSS6.7AI score0.00788EPSS
Exploits2References1
Circl
Circl
added 2026/01/09 10:0 a.m.4 views

CVE-2026-0627

creationtimestamp| type| source ---|---|--- 2026-01-09 10:00:29+00:00| seen| Telegram/-qRpWClxl86ARAdiPdNSW7xfOFXs-vHSEsY-1W0Qow9HIWs 2026-01-09 10:36:56+00:00| seen| https://gist.github.com/Darkcrai86/40ea39bffa0cacde908c043e94a780db 2026-01-09 11:35:16+00:00| seen|...

6.4CVSS4.8AI score0.00188EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2020-0627

Malware in sbrugna...

9.8CVSS9.3AI score0.02685EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-0627

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.00894EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2025/05/21 7:38 p.m.10 views

CVE-2009-0627

Unspecified vulnerability in Cisco NX-OS before 4.01aN21, when running on Nexus 5000 platforms, allows remote attackers to cause a denial of service crash via an unspecified "sequence of TCP packets" related to "TCP State manipulation," possibly related to separate attacks against CVE-2008-4609...

7.8CVSS6.9AI score0.32123EPSS
Exploits3References1
RedhatCVE
RedhatCVE
added 2025/05/21 6:11 p.m.9 views

CVE-1999-0627

The rexd service is running, which uses weak authentication that can allow an attacker to execute commands...

7.4AI score0.06707EPSS
Exploits1References1
Patchstack
Patchstack
added 2025/04/28 7:27 a.m.12 views

WordPress AI Autotagger plugin < 3.30.0 - Admin+ Stored XSS vulnerability

Admin+ Stored XSS vulnerability discovered by Dmitrii Ignatyev in WordPress Plugin TaxoPress versions 3.30.0...

3.5CVSS7.4AI score0.00219EPSS
Exploits1References1Affected Software1
NVD
NVD
added 2025/04/28 6:15 a.m.14 views

CVE-2025-0627

The WordPress Tag, Category, and Taxonomy Manager WordPress plugin before 3.30.0 does not sanitise and escape some of its Widgets settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for...

3.5CVSS0.00219EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/04/28 6:0 a.m.22 views

CVE-2025-0627 AI Autotagger < 3.30.0 - Admin+ Stored XSS

The WordPress Tag, Category, and Taxonomy Manager WordPress plugin before 3.30.0 does not sanitise and escape some of its Widgets settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for...

0.00219EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/04/28 6:0 a.m.8 views

CVE-2025-0627 AI Autotagger < 3.30.0 - Admin+ Stored XSS

The WordPress Tag, Category, and Taxonomy Manager WordPress plugin before 3.30.0 does not sanitise and escape some of its Widgets settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for...

3.4AI score0.00219EPSS
Exploits1References1
CVE
CVE
added 2025/04/28 6:0 a.m.56 views

CVE-2025-0627

CVE-2025-0627 involves the WordPress Tag, Category, and Taxonomy Manager – AI Autotagger plugin (pre-3.30.0). The issue is a failure to sanitize/escape certain Widgets settings, enabling Stored Cross-Site Scripting by high-privilege users (e.g., admins) even when unfiltered_html is disabled (such...

3.5CVSS5.4AI score0.00219EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2024/06/11 2:1 a.m.23 views

CVE-2024-0627 Custom Field Template <= 2.6.1 - Authenticated(Constibutor+) Stored Cross-Site Scripting via Custom Field Name

The Custom Field Template plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's custom field name column in all versions up to, and including, 2.6.1 due to insufficient input sanitization and output escaping on user supplied custom fields. This makes it possible for...

6.4CVSS0.00263EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/06/11 2:1 a.m.13 views

CVE-2024-0627 Custom Field Template <= 2.6.1 - Authenticated(Constibutor+) Stored Cross-Site Scripting via Custom Field Name

The Custom Field Template plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's custom field name column in all versions up to, and including, 2.6.1 due to insufficient input sanitization and output escaping on user supplied custom fields. This makes it possible for...

6.4CVSS5.8AI score0.00263EPSS
Exploits0References2
CVE
CVE
added 2024/06/11 2:1 a.m.52 views

CVE-2024-0627

The CVE-2024-0627 entry concerns the WordPress plugin Custom Field Template (versions

6.4CVSS5.9AI score0.00263EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2024/06/10 12:0 a.m.12 views

WordPress Custom Field Template Plugin <= 2.6.1 is vulnerable to Cross Site Scripting (XSS)

Software Custom Field Template Type Plugin Vulnerable versions = 2.6.1 Fixed in 2.6.2 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-0627 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 79102f5cc8d6 Credits Luk 6785 Required...

6.4CVSS5.8AI score0.00263EPSS
Exploits0References3Affected Software1
Tenable Nessus
Tenable Nessus
added 2024/02/12 12:0 a.m.44 views

Rocky Linux 8 : gnutls (RLSA-2024:0627)

The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2024:0627 advisory. - A vulnerability was found in GnuTLS. The response times to malformed ciphertexts in RSA-PSK ClientKeyExchange differ from the response times of ciphertexts wit...

7.5CVSS6.6AI score0.01614EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2024/02/02 12:0 a.m.39 views

Oracle Linux 8 : gnutls (ELSA-2024-0627)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-0627 advisory. 3.6.16-8.1 - auth/rsa-psk: minimize branching after decryption RHEL-21550 Tenable has extracted the preceding description block directly from the Oracle Linux...

7.5CVSS6.7AI score0.01614EPSS
Exploits1References2
Circl
Circl
added 2024/01/31 10:16 a.m.5 views

RHSA-2024:0627

creationtimestamp| type| source ---|---|--- 2024-01-31 10:16:58+00:00| seen| https://t.me/ctinow/176619...

4.8AI score
Exploits0References1
RedHat Linux
RedHat Linux
added 2024/01/31 8:50 a.m.409 views

Moderate: Red Hat Security Advisory: gnutls security update

An update for gnutls is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

7.5CVSS6.7AI score0.01614EPSS
Exploits1References2
Rows per page
Query Builder