Lucene search
K

76 matches found

OSV
OSV
added 2026/06/05 10:43 a.m.5 views

MINI-54QC-2262-J258

Bulletin has no description...

9.1CVSS5.2AI score0.0036EPSS
Exploits0
Circl
Circl
added 2026/04/18 1:18 a.m.7 views

CVE-2026-2262

creationtimestamp| type| source ---|---|--- 2026-04-18 01:18:04+00:00| published-proof-of-concept| Telegram/u5f3Gra6Haipf3VJEB4yu-gwc95-0FLxvYnhbIvKSTo7fn8 2026-04-21 03:41:01+00:00| confirmed| https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/CVE-2026-2262.yaml 2026-04-22...

7.5CVSS4.8AI score0.0239EPSS
Exploits1References2
NVD
NVD
added 2026/04/18 12:16 a.m.9 views

CVE-2026-2262

The Easy Appointments plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.12.21 via the /wp-json/wp/v2/eablocks/eaappointments/ REST API endpoint. This is due to the endpoint being registered with 'permissioncallback' = 'returntrue', which...

7.5CVSS0.0239EPSS
Exploits1References6
Vulnrichment
Vulnrichment
added 2026/04/17 11:26 p.m.3 views

CVE-2026-2262 Easy Appointments <= 3.12.21 - Unauthenticated Sensitive Information Exposure via REST API

The Easy Appointments plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.12.21 via the /wp-json/wp/v2/eablocks/eaappointments/ REST API endpoint. This is due to the endpoint being registered with 'permissioncallback' = 'returntrue', which...

7.5CVSS5.7AI score0.0239EPSS
Exploits1References6
RedhatCVE
RedhatCVE
added 2026/01/09 8:52 a.m.8 views

CVE-2021-2262

Vulnerability in the Oracle Purchasing product of Oracle E-Business Suite component: Endeca. The supported version that is affected is 12.1.3. Easily exploitable vulnerability allows low privileged attacker with network access via HTTPS to compromise Oracle Purchasing. Successful attacks of this...

8.1CVSS6.8AI score0.00987EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:19 a.m.9 views

CVE-2024-2262

Themify WordPress plugin before 1.4.4 does not have CSRF check in its bulk action, which could allow attackers to make logged in users delete arbitrary filters via CSRF attack, granted they know the related filter slugs...

4.7CVSS6.9AI score0.00237EPSS
Exploits2References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-2262

Malicious code in bioql PyPI...

7.4CVSS9AI score0.00518EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 10:45 p.m.8 views

CVE-2022-2262

A vulnerability has been found in Online Hotel Booking System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file editallroom.php of the component Room Handler. The manipulation of the argument id with the input...

7.2CVSS7.3AI score0.00768EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 4:30 p.m.12 views

CVE-2020-2262

Jenkins Android Lint Plugin 2.6 and earlier does not escape the annotation message in tooltips, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers able to provide report files to the plugin's post-build step...

5.4CVSS5.5AI score0.00735EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/03/20 7:9 a.m.11 views

CVE-2025-2262

The The Logo Slider – Logo Showcase, Logo Carousel, Logo Gallery and Client Logo Presentation plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 3.7.3. This is due to the software allowing users to execute an action that does not properly...

7.3CVSS7.9AI score0.00432EPSS
Exploits0References1
Circl
Circl
added 2025/03/18 6:52 a.m.10 views

CVE-2025-2262

creationtimestamp| type| source ---|---|--- 2025-03-18 06:52:22+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/7895 2025-03-18 09:00:30+00:00| published-proof-of-concept| Telegram/UVQjc4SiwKYbHISzpLSbOWAvgTBqOWKvIl-W9tejZt2xfoI 2025-03-18 09:22:49+00:00| seen|...

7.3CVSS8.7AI score0.00432EPSS
Exploits0References3
CVE
CVE
added 2025/03/18 6:36 a.m.93 views

CVE-2025-2262

CVE-2025-2262 – WordPress Logo Slider (GS-Logo-Slider) vulnerability : Affects Logo Slider – Logo Showcase, Logo Carousel, Logo Gallery and Client Logo Presentation for WordPress, versions up to and including 3.7.3. The flaw arises from executing an action without proper validation before running...

7.3CVSS7.4AI score0.00432EPSS
Exploits0References5
Cvelist
Cvelist
added 2025/03/18 6:36 a.m.19 views

CVE-2025-2262 Logo Slider <= 3.7.3 - Unauthenticated Arbitrary Shortcode Execution

The The Logo Slider – Logo Showcase, Logo Carousel, Logo Gallery and Client Logo Presentation plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 3.7.3. This is due to the software allowing users to execute an action that does not properly...

7.3CVSS0.00432EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2025/03/18 6:36 a.m.8 views

CVE-2025-2262 Logo Slider <= 3.7.3 - Unauthenticated Arbitrary Shortcode Execution

The The Logo Slider – Logo Showcase, Logo Carousel, Logo Gallery and Client Logo Presentation plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 3.7.3. This is due to the software allowing users to execute an action that does not properly...

7.3CVSS7.6AI score0.00432EPSS
Exploits0References5
OSV
OSV
added 2024/06/06 12:17 p.m.13 views

CGA-2262-Q924-X253

Bulletin has no description...

7.5CVSS8.3AI score0.91969EPSS
Exploits1
Patchstack
Patchstack
added 2024/04/01 12:0 a.m.13 views

WordPress Themify – WooCommerce Product Filter Plugin < 1.4.4 is vulnerable to Cross Site Request Forgery (CSRF)

Software Themify – WooCommerce Product Filter Type Plugin Vulnerable versions 1.4.4 Fixed in 1.4.4 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-2262 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 9af412c77d7f Credits...

4.7CVSS6.6AI score0.00237EPSS
Exploits2References3Affected Software1
Circl
Circl
added 2024/02/01 6:46 p.m.6 views

CVE-2013-2262

creationtimestamp| type| source ---|---|--- 2024-02-01 18:46:31+00:00| seen| https://t.me/ctinow/177735...

7.5CVSS7.4AI score0.01926EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2023/09/22 12:0 a.m.22 views

Rockwell Automation Select Logix Communication Modules Stack-Based Buffer Overflow (CVE-2023-2262)

A buffer overflow vulnerability exists in the Rockwell Automation select 1756-EN communication devices. If exploited, a threat actor could potentially leverage this vulnerability to perform a remote code execution. To exploit this vulnerability, a threat actor would have to send a maliciously...

9.8CVSS7.7AI score0.00977EPSS
Exploits0References4
Circl
Circl
added 2023/09/20 8:30 p.m.7 views

CVE-2023-2262

creationtimestamp| type| source ---|---|--- 2023-09-20 20:30:27+00:00| seen| https://t.me/cibsecurity/70813...

9.8CVSS8.7AI score0.00977EPSS
Exploits0References1
CVE
CVE
added 2023/09/20 3:20 p.m.72 views

CVE-2023-2262

The CVE-2023-2262 entry affects Rockwell Automation 1756-EN* communication devices (e.g., EN2T/EN2TK/EN2TXT/EN2TP/EN2TR/EN3TR, etc.). The vulnerability is a stack-based buffer overflow in the 1756 EN2T/EN2T-like modules triggered by a malicious CIP request, enabling potential remote code executio...

9.8CVSS9.9AI score0.00977EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder