Lucene search
+L

224 matches found

RedhatCVE
RedhatCVE
added 2025/08/22 8:31 a.m.6 views

CVE-2025-53985

Insertion of Sensitive Information Into Sent Data vulnerability in Crocoblock JetTabs jet-tabs allows Retrieve Embedded Sensitive Data.This issue affects JetTabs: from n/a through = 2.2.9...

6.5CVSS5.9AI score0.00321EPSS
Exploits0References1
NVD
NVD
added 2025/08/20 8:15 a.m.4 views

CVE-2025-53985

Insertion of Sensitive Information Into Sent Data vulnerability in Crocoblock JetTabs jet-tabs allows Retrieve Embedded Sensitive Data.This issue affects JetTabs: from n/a through = 2.2.9...

6.5CVSS0.00321EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/08/20 8:3 a.m.13 views

CVE-2025-53985 WordPress JetTabs <= 2.2.9 - Sensitive Data Exposure Vulnerability

Insertion of Sensitive Information Into Sent Data vulnerability in Crocoblock JetTabs jet-tabs allows Retrieve Embedded Sensitive Data.This issue affects JetTabs: from n/a through = 2.2.9...

6.5CVSS0.00321EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/08/20 8:3 a.m.2 views

CVE-2025-53985 WordPress JetTabs <= 2.2.9 - Sensitive Data Exposure Vulnerability

Insertion of Sensitive Information Into Sent Data vulnerability in Crocoblock JetTabs jet-tabs allows Retrieve Embedded Sensitive Data.This issue affects JetTabs: from n/a through = 2.2.9...

6.5CVSS5.2AI score0.00321EPSS
Exploits0References1
CVE
CVE
added 2025/08/20 8:3 a.m.19 views

CVE-2025-53985

CVE-2025-53985 affects WordPress Crocoblock JetTabs ( 2.2.9).

6.5CVSS5.9AI score0.00321EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/08/20 12:0 a.m.5 views

PT-2025-33991 · Crocoblock · Jettabs

Name of the Vulnerable Software and Affected Versions: Crocoblock JetTabs versions through 2.2.9 Description: An insertion of sensitive information into sent data issue exists in Crocoblock JetTabs, potentially allowing the retrieval of embedded sensitive data. Recommendations: Update JetTabs to ...

6.5CVSS5.9AI score0.00321EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/08/20 12:0 a.m.4 views

WordPress plugin JetTabs 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

6.5CVSS6.4AI score0.00321EPSS
Exploits0References2
OSV
OSV
added 2025/08/04 3:15 p.m.7 views

CVE-2025-26065

A cross-site scripting XSS vulnerability in Intelbras RX1500 v2.2.9 and RX3000 v1.0.11 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the name of a visiting Wi-Fi network...

7.3CVSS5.9AI score0.00358EPSS
Exploits1References4
CNNVD
CNNVD
added 2025/08/04 12:0 a.m.4 views

Intelbras RX1500 安全漏洞

The Intelbras RX1500 is a router from the Brazilian company Intelbras. A security vulnerability exists in Intelbras RX1500 version v2.2.9 and RX3000 version v1.0.11, which originates from cross-site scripting and could lead to the execution of arbitrary web scripts...

7.3CVSS6.1AI score0.00358EPSS
Exploits1References5
Patchstack
Patchstack
added 2025/07/16 12:9 p.m.7 views

WordPress JetTabs plugin <= 2.2.9 - Cross Site Scripting (XSS) Vulnerability

Cross Site Scripting XSS Vulnerability discovered by stealthcopter in WordPress Plugin JetTabs versions = 2.2.9...

6.5CVSS6AI score0.00204EPSS
Exploits0Affected Software1
NVD
NVD
added 2025/07/16 11:15 a.m.5 views

CVE-2025-53984

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Crocoblock JetTabs jet-tabs allows Stored XSS.This issue affects JetTabs: from n/a through = 2.2.9...

6.5CVSS0.00204EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/06/06 11:18 a.m.10 views

CVE-2025-49077 WordPress Dynamic Pricing and Discount Rules plugin <= 2.2.9 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in ThemeHigh Dynamic Pricing and Discount Rules allows Cross Site Request Forgery.This issue affects Dynamic Pricing and Discount Rules: from n/a through 2.2.9...

4.3CVSS7AI score0.00124EPSS
Exploits0References1
CVE
CVE
added 2025/06/06 11:18 a.m.63 views

CVE-2025-49077

CVE-2025-49077: CSRF vulnerability in WordPress plugin Dynamic Pricing and Discount Rules (versions

4.3CVSS5.9AI score0.00124EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 4:14 a.m.6 views

CVE-2023-32296

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Kangu para WooCommerce plugin = 2.2.9 versions...

7.1CVSS5.9AI score0.00324EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 2:39 a.m.10 views

CVE-2023-5664

The Garden Gnome Package plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'ggpkg' shortcode in all versions up to, and including, 2.2.8 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticate...

6.4CVSS5.8AI score0.00557EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 3:46 p.m.13 views

CVE-2020-21124

UReport 2.2.9 allows attackers to execute arbitrary code due to a lack of access control to the designer page...

9.8CVSS7.8AI score0.02183EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/22 5:13 a.m.7 views

CVE-2011-5329

The redirection plugin before 2.2.9 for WordPress has XSS in the admin menu, a different issue than CVE-2011-4562...

6.1CVSS5.8AI score0.02393EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/03/25 6:0 a.m.5 views

CVE-2025-0717 Social Slider Feed < 2.2.9 - Admin+ Stored XSS

To exploit the vulnerability, it is necessary:...

7.2AI score0.00246EPSS
Exploits1References1
CVE
CVE
added 2025/01/16 8:6 p.m.56 views

CVE-2025-23712

CVE-2025-23712 applies to Kapost (WordPress plugin) and describes a Cross-Site Request Forgery (CSRF) vulnerability that can lead to Stored Cross-Site Scripting (XSS). The entry indicates affected software Kapost from n/a up to version 2.2.9. The connected Red Hat advisory also references the sam...

7.1CVSS7.2AI score0.00169EPSS
Exploits0References1
OSV
OSV
added 2024/11/13 2:15 a.m.8 views

CVE-2024-10853

The Buy one click WooCommerce plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the removeorder AJAX action in all versions up to, and including, 2.2.9. This makes it possible for authenticated attackers, with Subscriber-level access and...

4.3CVSS7.3AI score0.00344EPSS
Exploits0References2
Rows per page
Query Builder