CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

104 matches found

WP Planet <= 0.1 - Cross-Site Scripting

A cross-site scripting vulnerability in rss.class/scripts/magpiedebug.php in the WP-Planet plugin 0.1 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the url parameter. id: CVE-2014-4592 info: name: WP Planet = 0.1 - Cross-Site Scripting author:...

6.1CVSS6.1AI score0.03884EPSS

Exploits2References4

OSV•added 2026/06/07 3:45 p.m.•3 views

MINI-4592-FCG8-GPXF

Bulletin has no description...

10CVSS5.2AI score0.00319EPSS

Exploits0

Tenable Nessus•added 2026/05/20 12:0 a.m.•11 views

Debian dla-4592 : firefox-esr - security update

The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-4592 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4592-1 [email protected]...

9.8CVSS6AI score0.00605EPSS

Exploits0References38

OSV•added 2026/05/08 1:23 p.m.•2 views

CGA-69GX-4592-CV3J

Bulletin has no description...

8.8CVSS5.7AI score0.00685EPSS

Exploits1

NVD•added 2026/03/23 4:16 p.m.•3 views

CVE-2026-4592

A security vulnerability has been detected in kalcaddle kodbox 1.64. This impacts the function loginAfter/tfaVerify of the file /workspace/source-code/plugins/client/controller/tfa/index.class.php of the component Password Login. The manipulation leads to improper authentication. The attack is...

6.3CVSS0.00348EPSS

Exploits0References4

Vulnrichment•added 2026/03/23 3:56 p.m.•2 views

CVE-2026-4592 kalcaddle kodbox Password Login index.class.php tfaVerify improper authentication

6.3CVSS5.4AI score0.00348EPSS

Exploits0References4

ATTACKERKB•added 2026/03/23 3:56 p.m.•1 views

CVE-2026-4592

6.3CVSS5.4AI score0.00348EPSS

Exploits0References4Affected Software1

OSV•added 2026/03/04 5:22 a.m.•0 views

MINI-4592-R6WX-377G

Bulletin has no description...

7.5CVSS5.9AI score0.00586EPSS

Exploits0

EUVD•added 2026/01/24 6:30 a.m.•3 views

EUVD-2026-4592

Not used...

5.3AI score

Exploits0References1

RedhatCVE•added 2025/11/14 12:1 a.m.•2 views

CVE-2025-60702

A command injection vulnerability exists in the TOTOLINK A950RG Router firmware V5.9c.4592B20191022ALL within the system.so binary. The setDiagnosisCfg function retrieves the ipDoamin parameter from user input via websGetVar and concatenates it directly into a ping system command executed via...

6.5CVSS8.4AI score0.02272EPSS

Exploits1References1

Positive Technologies•added 2025/11/13 12:0 a.m.•4 views

PT-2025-46901

Name of the Vulnerable Software and Affected Versions TOTOLINK A950RG Router firmware versions prior to V5.9c.4592 B20191022 ALL Description A buffer overflow issue exists in the global.so binary of the TOTOLINK A950RG Router firmware. The getSaveConfig function retrieves the http host parameter...

6.5CVSS7.9AI score0.00751EPSS

Exploits1References6

OSV•added 2025/11/04 9:25 p.m.•1 views

MINI-XRM6-GWX2-4592

Bulletin has no description...

7.5CVSS7AI score0.00573EPSS

Exploits0

Circl•added 2025/06/14 8:34 a.m.•5 views

CVE-2025-4592

creationtimestamp| type| source ---|---|--- 2025-06-14 08:34:10+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/18364...

4.3CVSS4.8AI score0.00126EPSS

Exploits0References1

CVE•added 2025/06/14 8:23 a.m.•36 views

CVE-2025-4592

The CVE-2025-4592 entry concerns the WordPress plugin AI Image Lab – Free AI Image Generator. It describes a Cross-Site Request Forgery vulnerability (versions

4.3CVSS4.2AI score0.00126EPSS

Exploits0References2

Vulnrichment•added 2025/06/14 8:23 a.m.•3 views

CVE-2025-4592 AI Image Lab – Free AI Image Generator <= 1.0.6 - Cross-Site Request Forgery to API Key Update

The AI Image Lab – Free AI Image Generator plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0.6. This is due to missing or incorrect nonce validation on the 'wpz-ai-images' page. This makes it possible for unauthenticated attackers to update...

4.3CVSS4.2AI score0.00126EPSS

Exploits0References2

Cvelist•added 2025/06/14 8:23 a.m.•20 views

CVE-2025-4592 AI Image Lab – Free AI Image Generator <= 1.0.6 - Cross-Site Request Forgery to API Key Update

4.3CVSS0.00126EPSS

Exploits0References2

Patchstack•added 2025/06/14 6:10 a.m.•6 views

WordPress AI Image Lab plugin <= 1.0.6 - Cross-Site Request Forgery to API Key Update vulnerability

Cross-Site Request Forgery to API Key Update vulnerability discovered by Kishan Vyas in WordPress Plugin AI Image Lab versions = 1.0.6...

4.3CVSS6.7AI score0.00126EPSS

Exploits0References1Affected Software1

Tenable Nessus•added 2025/03/04 12:0 a.m.•9 views

Linux Distros Unpatched Vulnerability : CVE-2013-4592

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Memory leak in the kvmsetmemoryregion function in virt/kvm/kvmmain.c in the Linux kernel before 3.9 allows local users to cause a denial of service memory...

4CVSS7.1AI score0.005EPSS

Exploits1References2

Vulnrichment•added 2024/05/07 2:0 p.m.•8 views

CVE-2024-4592 DedeCMS sys_group_edit.php cross-site request forgery

A vulnerability classified as problematic was found in DedeCMS 5.7. This vulnerability affects unknown code of the file /src/dede/sysgroupedit.php. The manipulation leads to cross-site request forgery. The attack can be initiated remotely. The exploit has been disclosed to the public and may be...

5CVSS6.8AI score0.00428EPSS

Exploits1References4

Circl•added 2024/03/18 8:41 a.m.•4 views

CVE-2014-4592

creationtimestamp| type| source ---|---|--- 2024-03-18 08:41:54+00:00| seen| https://t.me/ctinow/210266...

6.1CVSS6.1AI score0.03884EPSS

Exploits2References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by