CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7 matches found

CVE•added 2018/12/03 4:0 p.m.•65 views

CVE-2018-1002003

CVE-2018-1002003 corresponds to a reflected XSS vulnerability in the WordPress plugin Arigato Autoresponder and Newsletter, version 2.5.1.8, with exploitation requiring administrative privileges. The connected documents indicate this entry is part of a broader set of vulnerabilities in the same p...

4.8CVSS5.2AI score0.0023EPSS

Exploits5References3Affected Software1

exploitpack•added 2018/09/18 12:0 a.m.•42 views

WordPress Plugin Arigato Autoresponder and Newsletter 2.5 - Blind SQL Injection Reflected Cross-Site Scripting

WordPress Plugin Arigato Autoresponder and Newsletter 2.5 - Blind SQL Injection Reflected Cross-Site Scripting Title: Blind SQL injection and multiple reflected XSS vulnerabilities in Wordpress Plugin Arigato Autoresponder and Newsletter v2.5 Author: Larry W. Cashdollar, @larry0 Date: 2018-08-22...

6.5CVSS0.4AI score0.04057EPSS

Exploits14

Exploit DB•added 2018/09/18 12:0 a.m.•56 views

WordPress Plugin Arigato Autoresponder and Newsletter 2.5 - Blind SQL Injection / Reflected Cross-Site Scripting

Title: Blind SQL injection and multiple reflected XSS vulnerabilities in Wordpress Plugin Arigato Autoresponder and Newsletter v2.5 Author: Larry W. Cashdollar, @larry0 Date: 2018-08-22...

7.2CVSS5.4AI score0.04057EPSS

Exploits14

0day.today•added 2018/09/18 12:0 a.m.•73 views

WordPress Arigato Autoresponder And Newsletter 2.5 SQL Injection / XSS Vulnerabilities

Exploit for php platform in category web applications Title: Blind SQL injection and multiple reflected XSS vulnerabilities in Wordpress Plugin Arigato Autoresponder and Newsletter v2.5 Author: Larry W. Cashdollar, @larry0 Date: 2018-08-22...

0.1AI score0.04057EPSS

Exploits14

OSV•added 2017/09/14 1:29 p.m.•3 views

CVE-2017-1002003

Vulnerability in wordpress plugin wp2android-turn-wp-site-into-android-app v1.1.4, The plugin includes unlicensed vulnerable CMS software from http://www.invedion.com...

9.8CVSS5.8AI score0.4773EPSS

Exploits4References4

CVE•added 2017/09/14 1:0 p.m.•71 views

CVE-2017-1002003

CVE-2017-1002003 affects the WordPress plugin wp2android-turn-wp-site-into-android-app (version 1.1.4). The vulnerability stems from the plugin embedding unlicensed vulnerable CMS software from invedion.com, enabling an arbitrary file upload via the plugin’s functionality (as evidenced by multipl...

9.8CVSS9.3AI score0.4773EPSS

Exploits4References4Affected Software1

Packet Storm•added 2017/03/17 12:0 a.m.•57 views

WordPress Multiple Plugin File Upload

import requests import random import string print "---------------------------------------------------------------------" print "Multiple Wordpress Plugin - Remote File Upload Exploit\nDiscovery: Larry W. Cashdollar\nExploit Author: Munir Njiru\nCWE: 434\n\n1. Zen App Mobile Native =3.0...

5CVSS0.4AI score0.64339EPSS

Exploits12

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by