Lucene search
+L

90 matches found

nuclei
nuclei
added yesterday68 views

WordPress Ninja Job Board < 1.3.3 - Direct Request

WordPress Ninja Job Board plugin prior to 1.3.3 is susceptible to a direct request vulnerability. The plugin does not protect the directory where it stores uploaded resumes, making it vulnerable to unauthenticated directory listing which allows the download of uploaded resumes. id: CVE-2022-2544...

7.5CVSS7AI score0.03158EPSS
Exploits2References5
osv
osv
added 2 days ago3 views

ROOT-OS-DEBIAN-12-CVE-2008-2544 CVE-2008-2544 in rootio-linux - Patched by Root

Root has patched CVE-2008-2544 in the rootio-linux package for Root:Debian:12. Multiple fixed versions available...

5.5CVSS8.2AI score0.00303EPSS
Exploits1
osv
osv
added 6 days ago3 views

MINI-79MJ-2544-Q8FC

Bulletin has no description...

7.5CVSS6.1AI score0.00601EPSS
Exploits0
osv
osv
added 2026/06/23 12:59 p.m.3 views

MINI-7VH6-2544-9RJX

Bulletin has no description...

9.4CVSS5.7AI score0.00203EPSS
Exploits0
osv
osv
added 2026/05/11 10:32 a.m.9 views

MINI-2544-3HX5-2F6J

Bulletin has no description...

5.9CVSS5.7AI score0.0017EPSS
Exploits0
vulnersosv
vulnersosv
added 2026/02/16 8:59 a.m.12 views

figma-tree (>=0.0.1 <=0.0.11) potentially affected by CVE-2026-2544 via lu2 (=2023.9.15)

lu2 NPM version =2023.9.15 is affected by a known vulnerability. The following packages have a transitive dependency on lu2 and may be impacted: - figma-tree =0.0.1, =0.0.11 Source cves: CVE-2026-2544 Source advisory: SNYK:JS-LU2-15285654...

7.5CVSS7.1AI score0.02735EPSS
Exploits0
nvd
nvd
added 2026/02/16 8:16 a.m.7 views

CVE-2026-2544

A security flaw has been discovered in yued-fe LuLu UI up to 3.0.0. This issue affects the function childprocess.exec of the file run.js. The manipulation results in os command injection. The attack can be launched remotely. The vendor was contacted early about this disclosure but did not respond...

7.5CVSS0.02735EPSS
Exploits0References4
euvd
euvd
added 2026/01/14 5:28 a.m.8 views

EUVD-2026-2544

The List Site Contributors plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'alpha' parameter in versions up to, and including, 1.1.8 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary we...

6.1CVSS5.1AI score0.00693EPSS
Exploits1References4
cgr
cgr
added 2026/01/09 7:17 p.m.5 views

CVE-2008-2544 vulnerabilities

Vulnerabilities for packages: linux-qemu-melange, linux-vmware, linux-qemu...

5.5CVSS6.7AI score0.00303EPSS
Exploits1
openvas
openvas
added 2025/12/19 12:0 a.m.2 views

Huawei EulerOS: Security Advisory for icu (EulerOS-SA-2025-2544)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7CVSS6.7AI score0.00304EPSS
Exploits0References2
euvd
euvd
added 2025/10/07 12:30 a.m.6 views

EUVD-2020-2544

Malware in sbrugna...

5.3CVSS5.3AI score0.0086EPSS
Exploits0References3
euvd
euvd
added 2025/10/03 8:7 p.m.3 views

EUVD-2022-2544

Malicious code in bioql PyPI...

9.8CVSS9.3AI score0.01011EPSS
Exploits1References3
circl
circl
added 2025/04/05 2:36 a.m.7 views

CVE-2025-2544

creationtimestamp| type| source ---|---|--- 2025-04-05 02:36:35+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/10592 2025-04-05 06:33:41+00:00| seen| https://t.me/cvedetector/22177...

6.4CVSS8.7AI score0.00299EPSS
Exploits0References2
nvd
nvd
added 2025/04/05 2:15 a.m.5 views

CVE-2025-2544

The AI Content Pipelines plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 1.6 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Author-level access and...

6.4CVSS0.00299EPSS
Exploits0References5
cve
cve
added 2025/04/05 1:44 a.m.59 views

CVE-2025-2544

AI Content Pipelines (WordPress) shows a Stored Cross-Site Scripting vulnerability via SVG file uploads in versions ≤ 1.6, caused by insufficient input sanitization and output escaping. The issue can be triggered by an authenticated user with Author-level access and above, potentially affecting p...

6.4CVSS5.7AI score0.00299EPSS
Exploits0References5
patchstack
patchstack
added 2025/04/04 8:11 p.m.4 views

WordPress AI Content Pipelines plugin <= 1.6 - Authenticated (Author+) Stored Cross-Site Scripting via SVG File Upload vulnerability

Authenticated Author+ Stored Cross-Site Scripting via SVG File Upload vulnerability discovered by Avraham Shemesh in WordPress Plugin AI Content Pipelines versions = 1.6...

6.4CVSS6.3AI score0.00299EPSS
Exploits0References1Affected Software1
circl
circl
added 2025/03/11 12:47 a.m.8 views

RHSA-2025:2544

creationtimestamp| type| source ---|---|--- 2025-03-11 00:47:17+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/7075...

4.8AI score
Exploits0References1
nessus
nessus
added 2025/03/04 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2016-2544

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Race condition in the queuedelete function in sound/core/seq/seqqueue.c in the Linux kernel before 4.4.1 allows local users to cause a denial of service...

5.1CVSS6.3AI score0.00337EPSS
Exploits0References3
nessus
nessus
added 2024/10/09 12:0 a.m.20 views

CentOS 6 : chromium-browser (RHSA-2020:2544)

The remote CentOS Linux 6 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2020:2544 advisory. - Use after free in reader mode in Google Chrome on Android prior to 83.0.4103.61 allowed a remote attacker who had compromised the renderer process to...

9.6CVSS7.4AI score0.06414EPSS
Exploits13References31
openvas
openvas
added 2024/10/09 12:0 a.m.70 views

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2024-2544)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS9.8AI score0.01401EPSS
Exploits0References4
Rows per page
Query Builder