14 matches found
Exploit for CVE-2025-29009
CVE-2025-29009-POC Medical Prescr...
CVE-2025-29009
creationtimestamp| type| source ---|---|--- 2025-11-04 11:04:54+00:00| seen| https://sploitus.com/exploit?id=916CC362-4D92-508B-B1C4-1477570284D4 2025-11-04 15:00:15+00:00| published-proof-of-concept| Telegram/lU3-VleZ8xnGRhD2LVytPBlCefJ7xJ3S6Ezuc1kg2yKkWNE 2025-11-04 21:00:05+00:00|...
CVE-2025-29009 WordPress Medical Prescription Attachment Plugin for WooCommerce <= 1.2.3 - Arbitrary File Upload Vulnerability
Unrestricted Upload of File with Dangerous Type vulnerability in Webkul Medical Prescription Attachment Plugin for WooCommerce allows Upload a Web Shell to a Web Server. This issue affects Medical Prescription Attachment Plugin for WooCommerce: from n/a through 1.2.3...
CVE-2025-29009 WordPress Medical Prescription Attachment Plugin for WooCommerce <= 1.2.3 - Arbitrary File Upload Vulnerability
Unrestricted Upload of File with Dangerous Type vulnerability in Webkul Medical Prescription Attachment Plugin for WooCommerce medical-prescription-attachment-plugin-for-woocommerce allows Upload a Web Shell to a Web Server.This issue affects Medical Prescription Attachment Plugin for WooCommerce...
WordPress Medical Prescription Attachment Plugin for WooCommerce <= 1.2.3 - Arbitrary File Upload Vulnerability
Arbitrary File Upload Vulnerability discovered by 0xd4rk5id3 in WordPress Plugin Medical Prescription Attachment Plugin for WooCommerce versions = 1.2.3...
CVE-2024-29009
Cross-site request forgery CSRF vulnerability in easy-popup-show all versions allows a remote unauthenticated attacker to hijack the authentication of the administrator and to perform unintended operations if the administrator views a malicious page while logged in...
CVE-2024-29009
CVE-2024-29009 affects the WordPress plugin easy-popup-show (all versions) and is a CSRF vulnerability. The issue enables a remote unauthenticated attacker to hijack an administrator’s session by enticing the admin to view a malicious page, potentially allowing unintended operations. Multiple con...
CVE-2023-29009
creationtimestamp| type| source ---|---|--- 2023-10-28 00:17:36+00:00| seen| https://t.me/cibsecurity/73096...
JVN#45547161: Multiple vulnerabilities in baserCMS
baserCMS provided by baserCMS Users Community contains multiple vulnerabilities listed below. Stored cross-site scripting vulnerability CWE-79 - CVE-2023-29009 Version| Vector| Score ---|---|--- CVSS v3| CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N| Base Score: 5.4 CVSS v2|...
CVE-2022-29009
creationtimestamp| type| source ---|---|--- 2022-05-11 18:35:37+00:00| seen| https://t.me/cibsecurity/42361...
CVE-2022-29009
CVE-2022-29009 applies to Cyber Cafe Management System Project v1.0 (CCMS). The NVD/Nuclei and related CVE records describe multiple SQL injection vulnerabilities in the Admin panel, exploitable via the username and password parameters, which can allow an attacker to bypass authentication and pot...
CVE-2021-29009
A cross-site scripting XSS issue in SEO Panel 4.8.0 allows remote attackers to inject JavaScript via archive.php in the "type" parameter...
CVE-2021-29009
SEO Panel 4.8.0 is affected by a cross-site scripting (XSS) vulnerability. The issue arises in archive.php via the type parameter, allowing remote attackers to inject JavaScript. Documented impact includes partial integrity and low confidentiality impact with network attack vector and user intera...
cPanel Input Validation Error Vulnerability (CNVD-2019-29009)
cPanel is a set of Web-based automated colocation platform from the US-based cPanel. The platform is primarily used to automate the management of websites and servers. An input validation error vulnerability exists in versions prior to cPanel 57.9999.54. The vulnerability stems from a network...