Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

72 matches found

RedhatCVE
RedhatCVEadded 2026/03/01 7:43 a.m.1 views

CVE-2026-1542

The Super Stage WP WordPress plugin through 1.0.1 unserializes user input via REQUEST, which could allow unauthenticated users to perform PHP Object Injection when a suitable gadget is present on the blog...

6.5CVSS6AI score0.00105EPSS
Exploits0References1
Circl
Circladded 2026/02/28 9:43 a.m.1 views

CVE-2026-1542

creationtimestamp| type| source ---|---|--- 2026-02-28 09:43:48+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mfvwsfcq6o2v 2026-02-28 10:09:43+00:00| seen| https://bsky.app/profile/postac001.bsky.social/post/3mfvyaqnuay2l 2026-02-28 10:09:43+00:00| seen|...

6.5CVSS5.9AI score0.00105EPSS
Exploits0References3
CVE
CVEadded 2026/02/28 6:0 a.m.9 views

CVE-2026-1542

The CVE-2026-1542 entry concerns the Super Stage WP WordPress plugin (vulnerable through 1.0.1). It describes an insecure unserialization of user input from REQUEST, leading to PHP Object Injection when a suitable gadget exists on the blog. The vulnerability is exploitable by unauthenticated user...

6.5CVSS6AI score0.00105EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/02/28 6:0 a.m.19 views

CVE-2026-1542 Super Stage WP <= 1.0.1 - Unauthenticated PHP Object Injection

The Super Stage WP WordPress plugin through 1.0.1 unserializes user input via REQUEST, which could allow unauthenticated users to perform PHP Object Injection when a suitable gadget is present on the blog...

0.00105EPSS
Exploits0References1
EUVD
EUVDadded 2026/01/08 9:17 a.m.1 views

EUVD-2026-1542

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in themesuite Automotive Listings automotive allows Blind SQL Injection.This issue affects Automotive Listings: from n/a through = 18.6...

9.8CVSS7.1AI score0.00058EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2025/03/28 11:34 a.m.7 views

CVE-2025-1542

Improper permission control vulnerability in the OXARI ServiceDesk application could allow an attacker using a guest access or an unprivileged account to gain additional administrative permissions in the application.This issue affects OXARI ServiceDesk in versions before 2.0.324.0...

9.3CVSS7.4AI score0.00106EPSS
Exploits0References1
Circl
Circladded 2025/03/26 11:25 a.m.4 views

CVE-2025-1542

creationtimestamp| type| source ---|---|--- 2025-03-26 11:25:27+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/8832 2025-03-26 12:40:15+00:00| seen| https://bsky.app/profile/cyberalerts.bsky.social/post/3llbslsqh3v2g 2025-03-26 13:00:50+00:00| seen|...

9.3CVSS5.8AI score0.00106EPSS
Exploits0References3
NVD
NVDadded 2025/03/26 11:15 a.m.9 views

CVE-2025-1542

Improper permission control vulnerability in the OXARI ServiceDesk application could allow an attacker using a guest access or an unprivileged account to gain additional administrative permissions in the application.This issue affects OXARI ServiceDesk in versions before 2.0.324.0...

9.3CVSS0.00106EPSS
Exploits0References2
CVE
CVEadded 2025/03/26 11:7 a.m.50 views

CVE-2025-1542

CVE-2025-1542 describes an improper permission control vulnerability in the OXARI ServiceDesk application. The issue affects versions prior to 2.0.324.0, where an attacker using a guest or unprivileged account could gain additional administrative permissions in the application. The NVD metrics in...

9.3CVSS7.3AI score0.00106EPSS
Exploits0References2
Cvelist
Cvelistadded 2025/03/26 11:7 a.m.15 views

CVE-2025-1542 Improper permission control in OXARI ServiceDesk

Improper permission control vulnerability in the OXARI ServiceDesk application could allow an attacker using a guest access or an unprivileged account to gain additional administrative permissions in the application.This issue affects OXARI ServiceDesk in versions before 2.0.324.0...

9.3CVSS0.00106EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2025/03/26 11:7 a.m.5 views

CVE-2025-1542 Improper permission control in OXARI ServiceDesk

Improper permission control vulnerability in the OXARI ServiceDesk application could allow an attacker using a guest access or an unprivileged account to gain additional administrative permissions in the application.This issue affects OXARI ServiceDesk in versions before 2.0.324.0...

9.3CVSS7.3AI score0.00106EPSS
Exploits0References2
Exploit DB
Exploit DBadded 2024/08/24 12:0 a.m.201 views

Elber Wayber Analog/Digital Audio STL 4.00 - Device Config Disclosure

Elber Wayber Analog/Digital Audio STL 4.00 Device Config Vendor: Elber S.r.l. Product web page: https://www.elber.it Affected version: Version 3.0.0 Revision 1553 Firmware Ver. 4.00 Rev. 1501 Version 3.0.0 Revision 1542 Firmware Ver. 4.00 Rev. 1516 Version 3.0.0 Revision 1530 Firmware Ver. 4.00...

7.4AI score
Exploits0
0day.today
0day.todayadded 2024/04/22 12:0 a.m.263 views

Elber Wayber Analog/Digital Audio STL 4.00 Insecure Direct Object Reference Vulnerability

Elber Wayber Analog/Digital Audio STL version 4.00 suffers from an unauthenticated device configuration and client-side hidden functionality disclosure vulnerability. Elber Wayber Analog/Digital Audio STL 4.00 Device Config Vendor: Elber S.r.l. Product web page: https://www.elber.it Affected...

7.5AI score
Exploits0
Cvelist
Cvelistadded 2023/03/21 12:0 a.m.16 views

CVE-2023-1542 Business Logic Errors in answerdev/answer

Business Logic Errors in GitHub repository answerdev/answer prior to 1.0.6...

8.1CVSS5.7AI score0.00309EPSS
Exploits1References2
Vulnrichment
Vulnrichmentadded 2023/03/21 12:0 a.m.7 views

CVE-2023-1542 Business Logic Errors in answerdev/answer

Business Logic Errors in GitHub repository answerdev/answer prior to 1.0.6...

8.1CVSS5.4AI score0.00309EPSS
Exploits1References2
CVE
CVEadded 2023/03/21 12:0 a.m.47 views

CVE-2023-1542

CVE-2023-1542 concerns business logic errors in the open-source project answerdev/answer prior to version 1.0.6 . Connected sources confirm the affected component and version range and provide a remediation: upgrade to 1.0.6 or later . The issue is described consistently across Red Hat/OSV and ot...

8.1CVSS5.8AI score0.00309EPSS
Exploits1References2Affected Software1
Circl
Circladded 2022/05/30 12:17 p.m.1 views

CVE-2022-1542

creationtimestamp| type| source ---|---|--- 2022-05-30 12:17:56+00:00| seen| https://t.me/cibsecurity/43537...

4.8CVSS4.9AI score0.00206EPSS
Exploits2References1
NVD
NVDadded 2022/05/30 9:15 a.m.10 views

CVE-2022-1542

The HPB Dashboard WordPress plugin through 1.3.1 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Cross-Site Scripting attacks even when unfilteredhtml is disallowed...

4.8CVSS0.00206EPSS
Exploits2References1
Cvelist
Cvelistadded 2022/05/30 8:35 a.m.12 views

CVE-2022-1542 HPB Dashboard <= 1.3.1 - Admin+ Stored Cross Site Scripting

The HPB Dashboard WordPress plugin through 1.3.1 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Cross-Site Scripting attacks even when unfilteredhtml is disallowed...

5.1AI score0.00206EPSS
Exploits2References1
CVE
CVEadded 2022/05/30 8:35 a.m.69 views

CVE-2022-1542

CVE-2022-1542 affects the WordPress HPB Dashboard plugin

4.8CVSS4.8AI score0.00206EPSS
Exploits2References1Affected Software1
Rows per page
Query Builder