10 matches found
CVE-2025-12571
creationtimestamp| type| source ---|---|--- 2025-11-26 23:51:33+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3m6l2dqyroe2a 2025-11-27 14:45:23+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3m6mmc2leh72h 2025-11-29 09:22:55+00:00| seen|...
CVE-2024-12571
The Store Locator for WordPress with Google Maps – LotsOfLocales plugin for WordPress is vulnerable to Local File Inclusion in version 3.98.9 via the 'slengine' parameter. This makes it possible for unauthenticated attackers to include and execute arbitrary files on the server, allowing the...
CVE-2024-12571 Store Locator <= 3.98.10 - Unauthenticated Local File Inclusion
The Store Locator for WordPress with Google Maps – LotsOfLocales plugin for WordPress is vulnerable to Local File Inclusion in version 3.98.9 via the 'slengine' parameter. This makes it possible for unauthenticated attackers to include and execute arbitrary files on the server, allowing the...
CVE-2024-12571
CVE-2024-12571 affects the Store Locator for WordPress with Google Maps – LotsOfLocales plugin (WordPress) up to version 3.98.10. The issue is an unauthenticated Local File Inclusion via the sl_engine parameter, enabling an attacker to include and execute arbitrary PHP code on the server, potenti...
Oracle Linux 7 : Unbreakable Enterprise kernel (ELSA-2024-12571)
The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-12571 advisory. - crypto: pcrypt - Fix hungtask for PADATARESET Lu Jialin Orabug: 36806710 CVE-2023-52813 - usbnet: sanity check for maxpacket Oliver Neukum Orabug:...
CVE-2019-12571
Affected software: London Trust Media Private Internet Access (PIA) VPN Client for macOS, v0.9.8 beta (build 02099). Vulnerability details: When the client connects, it creates the XML file /tmp/pia-watcher.plist. If this file exists, it is truncated and its contents overwritten by an attacker wi...
CVE-2018-12571
CVE-2018-12571 affects Microsoft Forefront Unified Access Gateway 2010. The vulnerability arises in uniquesig0/InternalSite/InitParams.aspx where a comma-separated orig_url list can trigger outbound DNS queries to arbitrary hosts, enabling potential traffic amplification and/or SSRF. POCs and dis...
Microsoft Forefront Unified Access Gateway 2010 External DNS Interaction
Exploit Title: Microsoft Forefront Unified Access Gateway 2010 External DNS Interaction Vendor Homepage: https://www.microsoft.com/ Version: 2010 CVE : CVE-2018-12571 Proof of Concept 1 Microsoft Forefront Unified Access Gateway 2010 allows remote attackers to trigger outbound DNS queries for...
elahmad.com XSS vulnerability
Vulnerable URL: http://elahmad.com/IP/ipdomain.php?IP=%3C/script%3E%3Cimg%20src=x%20onerror=prompt/XSSPOSED/%3E Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 12571 VIP website status:| Yes Check elahmad.com SSL...
CVE-2020-12571
CVE-2020-12571 is rejected/not used; this CVE entry does not represent an active vulnerability.