17 matches found
CVE-2021-22510
Reflected XSS vulnerability in Micro Focus Application Automation Tools Plugin - Jenkins plugin. The vulnerability affects all version 6.7 and earlier versions...
CVE-2025-22510
Deserialization of Untrusted Data vulnerability in kkarpieszuk WC Price History for Omnibus wc-price-history allows Object Injection.This issue affects WC Price History for Omnibus: from n/a through = 2.1.4...
CVE-2025-22510 WordPress WC Price History for Omnibus plugin <= 2.1.4 - PHP Object Injection vulnerability
Deserialization of Untrusted Data vulnerability in kkarpieszuk WC Price History for Omnibus wc-price-history allows Object Injection.This issue affects WC Price History for Omnibus: from n/a through = 2.1.4...
CVE-2025-22510 WordPress WC Price History for Omnibus plugin <= 2.1.4 - PHP Object Injection vulnerability
Deserialization of Untrusted Data vulnerability in Konrad Karpieszuk WC Price History for Omnibus allows Object Injection.This issue affects WC Price History for Omnibus: from n/a through 2.1.4...
CVE-2025-22510
CVE-2025-22510 describes a Deserialization of Untrusted Data vulnerability in the WC Price History for Omnibus WordPress plugin (WC Price History) that allows Object Injection. Affected: WC Price History for Omnibus versions up to 2.1.4 (hosted on WordPress). Root cause: untrusted data deserializ...
CVE-2025-22510
creationtimestamp| type| source ---|---|--- 2025-01-08 01:20:53+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/9755 2025-01-09 16:17:12+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lfd3brusew2f 2025-03-30 21:02:01+00:00| seen|...
Exploit for CVE-2025-22510
CVE-2025-22510 1️⃣ Component type WordPress plugin 2️...
CVE-2023-51643
Allegra uploadFile Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Allegra. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be...
CVE-2023-51643
Allegra uploadFile Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Allegra. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be...
CVE-2023-51643 Allegra uploadFile Directory Traversal Remote Code Execution Vulnerability
Allegra uploadFile Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Allegra. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be...
CVE-2023-51643 Allegra uploadFile Directory Traversal Remote Code Execution Vulnerability
Allegra uploadFile Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Allegra. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be...
CVE-2023-51643
CVE-2023-51643 describes a directory traversal remote code execution in Allegra, arising from the uploadFile method where user-supplied paths are not properly validated. This allows an unauthenticated attacker (authentication bypass mentioned in sources) to execute code with LOCAL SERVICE privile...
CVE-2024-22510
creationtimestamp| type| source ---|---|--- 2024-02-11 15:44:26+00:00| seen| https://t.me/arpsyndicate/3427...
CVE-2022-22510
creationtimestamp| type| source ---|---|--- 2022-02-02 16:28:55+00:00| seen| https://t.me/cibsecurity/36708...
CVE-2022-22510 CODESYS: Null Pointer Dereference in CODESYS PROFINET stack
Codesys Profinet in version V4.2.0.0 is prone to null pointer dereference that allows a denial of service DoS attack of an unauthenticated user via SNMP...
CVE-2022-22510
CVE-2022-22510 affects the Codesys Profinet stack; specifically vulnerable in version V4.2.0.0 due to a null pointer dereference that allows a denial of service by an unauthenticated user via SNMP. The connected documents confirm the vulnerable component and the root cause, but do not provide exp...
CVE-2021-22510
CVE-2021-22510 affects the Micro Focus Application Automation Tools Plugin for Jenkins (plugin version 6.7 and earlier). The root cause is that user input is not escaped in a form validation response, leading to a Reflected XSS vulnerability. Several connected sources corroborate this issue and n...