CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

CVE•added 2017/11/03 6:0 p.m.•50 views

CVE-2017-1000153

This CVE affects Mahara versions 15.04 (before 15.04.10), 15.10 (before 15.10.6), and 16.04 (before 16.04.4) due to incorrect access control after a password-reset link is sent via email and the user changes the default email. Mahara fails to invalidate the old link, allowing an attacker to acces...

9.8CVSS9.6AI score0.00383EPSS

Exploits1References1Affected Software1

OSV•added 2016/10/10 8:59 p.m.•0 views

CVE-2016-1000153

Reflected XSS in wordpress plugin tidio-gallery v1.1...

6.1CVSS5.8AI score

Exploits0References3

NVD•added 2016/10/10 8:59 p.m.•11 views

CVE-2016-1000153

Reflected XSS in wordpress plugin tidio-gallery v1.1...

6.1CVSS6AI score0.01868EPSS

Exploits2References3

CVE•added 2016/10/10 8:0 p.m.•61 views

CVE-2016-1000153

The CVE-2016-1000153 entry concerns WordPress tidio-gallery plugin (v1.1 and earlier). A reflected XSS vulnerability exists in the plugin (notably in popup-insert-help.php) that could allow an attacker to execute arbitrary script in the victim’s browser, potentially stealing cookies or session da...

6.1CVSS5.9AI score0.01868EPSS

Exploits2References3Affected Software1