Lucene search
K

14 matches found

OSV
OSV
added 2025/08/14 6:52 p.m.1 views

MAL-2025-37551 Malicious code in ugli-mike-kilo-yvlls (npm)

The package ugli-mike-kilo-yvlls was found to contain malicious code...

7.2AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 7:43 a.m.11 views

CVE-2024-37551

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Perials Simple Social Share allows Stored XSS.This issue affects Simple Social Share: from n/a through 3.0...

5.9CVSS6.8AI score0.00274EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 6:43 p.m.10 views

CVE-2021-37551

In JetBrains YouTrack before 2021.2.16363, system user passwords were hashed with SHA-256...

5.3CVSS7AI score0.00699EPSS
Exploits0References1
Circl
Circl
added 2024/07/21 10:1 a.m.6 views

CVE-2024-37551

creationtimestamp| type| source ---|---|--- 2024-07-21 10:01:39+00:00| seen| https://t.me/cvedetector/1308...

5.9CVSS4.8AI score0.00274EPSS
Exploits0References1
NVD
NVD
added 2024/07/21 7:15 a.m.16 views

CVE-2024-37551

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Perials Simple Social Share allows Stored XSS.This issue affects Simple Social Share: from n/a through 3.0...

5.9CVSS0.00274EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/07/21 6:55 a.m.11 views

CVE-2024-37551 WordPress Simple Social Share plugin <= 3.0 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Perials Simple Social Share allows Stored XSS.This issue affects Simple Social Share: from n/a through 3.0...

5.9CVSS5.8AI score0.00274EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/07/21 6:55 a.m.31 views

CVE-2024-37551 WordPress Simple Social Share plugin <= 3.0 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Perials Simple Social Share allows Stored XSS.This issue affects Simple Social Share: from n/a through 3.0...

5.9CVSS0.00274EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/07/06 12:0 a.m.9 views

WordPress Simple Social Share Plugin <=3.0 is vulnerable to Cross Site Scripting (XSS)

Software Simple Social Share Type Plugin Vulnerable versions =3.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-37551 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 64e72c1e98e1 Credits Sharanabasappa Required privilege...

5.9CVSS6.6AI score0.00274EPSS
Exploits0References1Affected Software1
Circl
Circl
added 2023/08/03 4:40 p.m.2 views

CVE-2023-37551

creationtimestamp| type| source ---|---|--- 2023-08-03 16:40:15+00:00| seen| https://t.me/cibsecurity/67673 2026-03-17 12:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-26-076-01...

6.5CVSS6.4AI score0.00412EPSS
Exploits0References2
NVD
NVD
added 2023/08/03 12:15 p.m.14 views

CVE-2023-37551

In multiple Codesys products in multiple versions, after successful authentication as a user, specially crafted network communication requests can utilize the CmpApp component to download files with any file extensions to the controller. In contrast to the regular file download via CmpFileTransfe...

6.5CVSS6.6AI score0.00412EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/08/03 11:3 a.m.22 views

CVE-2023-37551 CODESYS Files or Directories Accessible to External Parties in CmpApp

In multiple Codesys products in multiple versions, after successful authentication as a user, specially crafted network communication requests can utilize the CmpApp component to download files with any file extensions to the controller. In contrast to the regular file download via CmpFileTransfe...

6.5CVSS6.8AI score0.00412EPSS
Exploits0References1
CVE
CVE
added 2023/08/03 11:3 a.m.51 views

CVE-2023-37551

The CVE-2023-37551 issue affects Codesys products where, after user authentication, crafted requests can use the CmpApp component to download files with arbitrary extensions to the controller, bypassing type filtering and potentially compromising the CODESYS Runtime integrity. The attack paths de...

6.5CVSS6.6AI score0.00412EPSS
Exploits0References1Affected Software9
Circl
Circl
added 2021/08/06 6:32 p.m.6 views

CVE-2021-37551

creationtimestamp| type| source ---|---|--- 2021-08-06 18:32:37+00:00| seen| https://t.me/cibsecurity/26943...

5.3CVSS5.5AI score0.00699EPSS
Exploits0References1
CVE
CVE
added 2021/08/06 1:31 p.m.63 views

CVE-2021-37551

CVE-2021-37551 affects JetBrains YouTrack prior to 2021.2.16363, where system user passwords were hashed with SHA-256. Public sources (CNVD/Red Hat/NVD) describe an encryption/hash issue that could allow password recovery from the hash. JetBrains’ Q2 2021 Security Bulletin confirms the issue and ...

5.3CVSS5.3AI score0.00699EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder