CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

32 matches found

RedhatCVE•added 2025/05/23 9:1 a.m.•2 views

CVE-2024-31396

Code injection vulnerability exists in a-blog cms Ver.3.1.x series versions prior to Ver.3.1.12 and Ver.3.0.x series versions prior to Ver.3.0.32. If this vulnerability is exploited, a user with an administrator or higher privilege who can log in to the product may execute an arbitrary command on...

6.6CVSS7.1AI score0.00751EPSS

Exploits0References1

OSV•added 2024/05/22 5:15 a.m.•1 views

CVE-2024-31396

6.6CVSS6AI score0.00751EPSS

Exploits0References2

OSV•added 2024/05/22 5:15 a.m.•0 views

CVE-2024-30419

Cross-site scripting vulnerability exists in a-blog cms Ver.3.1.x series versions prior to Ver.3.1.12, Ver.3.0.x series versions prior to Ver.3.0.32, Ver.2.11.x series versions prior to Ver.2.11.61, Ver.2.10.x series versions prior to Ver.2.10.53, and Ver.2.9 and earlier versions. If this...

5.4CVSS5.9AI score0.00973EPSS

Exploits0References2

Vulnrichment•added 2024/05/22 4:35 a.m.•11 views

CVE-2024-31396

7.6AI score0.00751EPSS

Exploits0References2

OSV•added 2023/05/03 2:15 p.m.•0 views

CVE-2023-23874

Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Metaphor Creations Ditty plugin = 3.0.32 versions...

5.4CVSS6.7AI score

Exploits0References1

Cvelist•added 2023/05/03 1:5 p.m.•28 views

CVE-2023-23874 WordPress Ditty Plugin <= 3.0.32 is vulnerable to Cross Site Scripting (XSS)

Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Metaphor Creations Ditty plugin = 3.0.32 versions...

6.5CVSS6AI score0.00181EPSS

Exploits0References1

CNNVD•added 2023/05/03 12:0 a.m.•2 views

WordPress plugin Ditty 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

6.5CVSS6.6AI score0.00181EPSS

Exploits0References2

Prion•added 2023/03/09 11:15 p.m.•20 views

Input validation

Missing validation in DAST analyzer affecting all versions from 1.11.0 prior to 3.0.32, allows custom request headers to be sent with every request, regardless of the host...

4CVSS6.6AI score0.00208EPSS

Exploits1References2Affected Software1

Positive Technologies•added 2023/03/09 12:0 a.m.•2 views

PT-2023-13546 · Unknown · Dast Analyzer

Name of the Vulnerable Software and Affected Versions: DAST analyzer versions 1.11.0 through 3.0.32 Description: The issue is related to missing validation in the DAST analyzer, which allows custom request headers to be sent with every request, regardless of the host. This affects all versions fr...

7.7CVSS7.5AI score0.00208EPSS

Exploits1References10

SUSE CVE•added 2023/02/15 3:47 a.m.•1 views

SUSE CVE-2021-20273

A flaw was found in privoxy before 3.0.32. A crash can occur via a crafted CGI request if Privoxy is toggled off...

7.5CVSS7.1AI score0.02806EPSS

Exploits0References5

SUSE CVE•added 2023/02/15 3:47 a.m.•1 views

SUSE CVE-2021-20275

A flaw was found in privoxy before 3.0.32. A invalid read of size two may occur in chunkedbodyiscomplete leading to denial of service...

7.5CVSS7.1AI score0.02553EPSS

Exploits0References5

Mageia•added 2021/04/02 10:16 a.m.•14 views

Updated privoxy packages fix security vulnerabilities

Updated privoxy package fixes security vulnerabilities: The privoxy package has been updated to version 3.0.32, fixing five security issues and several other bugs...

4AI score

Exploits0References2

OSV•added 2021/04/02 10:16 a.m.•3 views

MGASA-2021-0166 Updated privoxy packages fix security vulnerabilities

Updated privoxy package fixes security vulnerabilities: The privoxy package has been updated to version 3.0.32, fixing five security issues and several other bugs...

7.2AI score

Exploits0References3

Tenable Nessus•added 2021/03/22 12:0 a.m.•24 views

openSUSE Security Update : privoxy (openSUSE-2021-443)

This update for privoxy fixes the following issues : Update to version 3.0.32 : - Security/Reliability boo1183129 - ssplit: Remove an assertion that could be triggered with a crafted CGI request. Commit 2256d7b4d67. OVE-20210203-0001. CVE-2021-20272 Reported by: Joshua Rogers Opera - cgisendbanne...

7.5CVSS7.1AI score0.02806EPSS

Exploits0References7

OSV•added 2021/03/21 11:9 p.m.•3 views

OPENSUSE-SU-2021:0460-1 Security update for privoxy

This update for privoxy fixes the following issues: Update to version 3.0.32: - Security/Reliability boo1183129 - ssplit: Remove an assertion that could be triggered with a crafted CGI request. Commit 2256d7b4d67. OVE-20210203-0001. CVE-2021-20272 Reported by: Joshua Rogers Opera - cgisendbanner:...

7.5CVSS7.4AI score0.02806EPSS

Exploits0References7

OSV•added 2021/03/09 2:15 p.m.•0 views

ALPINE-CVE-2021-20273

A flaw was found in privoxy before 3.0.32. A crash can occur via a crafted CGI request if Privoxy is toggled off...

7.5CVSS6.5AI score0.02806EPSS

Exploits0References1

OSV•added 2021/03/09 2:15 p.m.•15 views

CVE-2021-20273

A flaw was found in privoxy before 3.0.32. A crash can occur via a crafted CGI request if Privoxy is toggled off...

7.5CVSS7.3AI score

Exploits0References4