CVE-2022-50892

VIAVIWEB Wallpaper Admin 1.0 contains a SQL injection vulnerability that allows attackers to bypass authentication by manipulating login credentials. Attackers can exploit the login page by injecting 'admin' or 1=1-- - payload to gain unauthorized access to the administrative interface...

CVE-2025-50892

creationtimestamp| type| source ---|---|--- 2025-09-10 15:10:00+00:00| seen| https://gist.github.com/christopher-ellis-workday/756c998f9f59dd2c437d83e60c7ed220 2025-09-10 21:04:50+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lyj54qvzex2x...

CVE-2023-50892

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in CodexThemes TheGem - Creative Multi-Purpose & WooCommerce WordPress Theme allows Reflected XSS.This issue affects TheGem - Creative Multi-Purpose & WooCommerce WordPress Theme: from n/a through 5.9...

CVE-2023-50892

CVE-2023-50892 describes a Reflected XSS in TheGem – Creative Multi-Purpose & WooCommerce WordPress Theme. Affected: TheGem versions up to 5.9.1 (range n/a–5.9.1). NVD lists CVSSv3.1 metrics: AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N with base score 6.1 (Medium); Patchstack CNA reports CVSSv3.1 metrics...

WordPress TheGem Theme <= 5.9.1 is vulnerable to Cross Site Scripting (XSS)

Software TheGem Type Theme Vulnerable versions = 5.9.1 Fixed in 5.9.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-50892 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID e038c2e19876 Credits Rafie Muhammad Patchstack Required privile...