Lucene search
K

20 matches found

RedhatCVE
RedhatCVE
added 2026/02/15 7:10 a.m.8 views

CVE-2026-2027

The AMP Enhancer – Compatibility Layer for Official AMP Plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the AMP Custom CSS setting in all versions up to, and including, 1.0.49 due to insufficient input sanitization and output escaping on user supplied attributes. This makes ...

4.4CVSS5.7AI score0.00202EPSS
Exploits0References1
NVD
NVD
added 2026/02/14 5:16 a.m.8 views

CVE-2026-2027

The AMP Enhancer – Compatibility Layer for Official AMP Plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the AMP Custom CSS setting in all versions up to, and including, 1.0.49 due to insufficient input sanitization and output escaping on user supplied attributes. This makes ...

4.4CVSS0.00202EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/02/14 4:35 a.m.3 views

CVE-2026-2027

The AMP Enhancer – Compatibility Layer for Official AMP Plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the AMP Custom CSS setting in all versions up to, and including, 1.0.49 due to insufficient input sanitization and output escaping on user supplied attributes. This makes ...

4.4CVSS6AI score0.00202EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/02/14 4:35 a.m.29 views

CVE-2026-2027 AMP Enhancer <= 1.0.49 - Authenticated (Administrator+) Stored Cross-Site Scripting via AMP Custom CSS Setting

The AMP Enhancer – Compatibility Layer for Official AMP Plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the AMP Custom CSS setting in all versions up to, and including, 1.0.49 due to insufficient input sanitization and output escaping on user supplied attributes. This makes ...

4.4CVSS0.00202EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/02/14 12:0 a.m.8 views

WordPress plugin AMP Enhancer – Compatibility Layer for Official AMP Plugin 跨站脚本漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows users to create personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be installed t...

4.4CVSS5.6AI score0.00202EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/12/17 10:3 a.m.4 views

CVE-2025-64246

Missing Authorization vulnerability in netopsae Accessibility by AudioEye accessibility-by-audioeye allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Accessibility by AudioEye: from n/a through = 1.0.49...

4.3CVSS7AI score0.00185EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/12/16 8:12 a.m.31 views

CVE-2025-64246 WordPress Accessibility by AudioEye plugin <= 1.0.49 - Broken Access Control vulnerability

Missing Authorization vulnerability in netopsae Accessibility by AudioEye accessibility-by-audioeye allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Accessibility by AudioEye: from n/a through = 1.0.49...

4.3CVSS0.00185EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/12/16 8:12 a.m.2 views

CVE-2025-64246 WordPress Accessibility by AudioEye plugin <= 1.0.49 - Broken Access Control vulnerability

Missing Authorization vulnerability in netopsae Accessibility by AudioEye accessibility-by-audioeye allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Accessibility by AudioEye: from n/a through = 1.0.49...

4.3CVSS6.6AI score0.00185EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/12/16 12:0 a.m.6 views

PT-2025-51394

Name of the Vulnerable Software and Affected Versions Accessibility by AudioEye versions through 1.0.49 Description An authorization issue exists in Accessibility by AudioEye, allowing exploitation of incorrectly configured access control security levels. Recommendations Update Accessibility by...

4.3CVSS6.6AI score0.00185EPSS
Exploits0References3
Patchstack
Patchstack
added 2025/12/14 5:26 p.m.6 views

WordPress Accessibility by AudioEye plugin <= 1.0.49 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Nabil Irawan in WordPress Plugin Accessibility by AudioEye versions = 1.0.49...

4.3CVSS7AI score0.00185EPSS
Exploits0Affected Software1
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2020-30186

Malware in sbrugna...

7.5CVSS7.4AI score0.0694EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2025/08/27 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2020-9274

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Pure-FTPd 1.0.49. An uninitialized pointer vulnerability has been detected in the diraliases linked list. When the lookupaliasconst...

7.5CVSS7AI score0.05813EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2023/02/15 4:0 a.m.3 views

SUSE CVE-2020-9365

An issue was discovered in Pure-FTPd 1.0.49. An out-of-bounds OOB read has been detected in the purestrcmp function in utils.c...

5.1CVSS7AI score0.0694EPSS
Exploits0References3
OSV
OSV
added 2021/09/05 7:15 p.m.7 views

UBUNTU-CVE-2021-40524

In Pure-FTPd before 1.0.50, an incorrect maxfilesize quota mechanism in the server allows attackers to upload files of unbounded size, which may lead to denial of service or a server hang. This occurs because a certain greater-than-zero test does not anticipate an initial -1 value. Versions 1.0.2...

7.5CVSS5.8AI score0.04285EPSS
Exploits1References3
CNNVD
CNNVD
added 2021/09/05 12:0 a.m.5 views

Pure-FTPd 代码问题漏洞

Pure-FTPd is an FTP File Transfer Protocol server. jedisct1 A code issue vulnerability exists in Pure-FTPd, which stems from Pure-FTPd version 1.0.49, where an incorrect maxfilesize quota mechanism in the server allows an attacker to upload unlimited sized files, which could result in a denial of...

7.5CVSS7.4AI score0.04285EPSS
Exploits1References5
Debian CVE
Debian CVE
added 2020/02/26 3:29 p.m.49 views

CVE-2020-9274

An issue was discovered in Pure-FTPd 1.0.49. An uninitialized pointer vulnerability has been detected in the diraliases linked list. When the lookupaliasconst char alias or printaliasesvoid function is called, they fail to correctly detect the end of the linked list and try to access a non-existe...

7.5CVSS7.4AI score0.05813EPSS
Exploits0
CNVD
CNVD
added 2020/02/25 12:0 a.m.3 views

Pure-FTPd Buffer Overflow Vulnerability

Pure-FTPd is an FTP File Transfer Protocol server. A buffer overflow vulnerability exists in the 'purestrcmp' function of the utils.c file in Pure-FTPd version 1.0.49. The vulnerability stems from a network system or product performing operations in memory without properly validating data...

7.5CVSS7.3AI score0.0694EPSS
Exploits0References1
OSV
OSV
added 2020/02/24 4:15 p.m.3 views

UBUNTU-CVE-2020-9365

An issue was discovered in Pure-FTPd 1.0.49. An out-of-bounds OOB read has been detected in the purestrcmp function in utils.c...

7.5CVSS5.7AI score0.0694EPSS
Exploits0References4
Prion
Prion
added 2019/12/31 3:15 p.m.21 views

Stack overflow

In Pure-FTPd 1.0.49, a stack exhaustion issue was discovered in the listdir function in ls.c...

5CVSS7.5AI score0.04365EPSS
Exploits0References3Affected Software2
Cvelist
Cvelist
added 2019/12/31 2:4 p.m.25 views

CVE-2019-20176

In Pure-FTPd 1.0.49, a stack exhaustion issue was discovered in the listdir function in ls.c...

7.5AI score0.04365EPSS
Exploits0References3
Rows per page
Query Builder