Lucene search
K

4 matches found

NVD
NVD
added 2024/05/24 6:15 a.m.13 views

CVE-2024-1134

The SEOPress – On-site SEO plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the SEO title and description parameters as well as others in all versions up to, and including, 7.5.2.1 due to insufficient input sanitization and output escaping. This makes it possible for attacker...

6.4CVSS6AI score0.00259EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/04/09 6:58 p.m.25 views

CVE-2024-2165 SEOPress – On-site SEO <= 7.5.2.1 - Authenticated (Author+) Stored Cross-Site Scripting

The SEOPress – On-site SEO plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the image alt parameter in all versions up to, and including, 7.5.2.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with author access...

6.4CVSS5.9AI score0.00423EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/04/09 12:0 a.m.5 views

PT-2024-18998 · WordPress · Seopress

Name of the Vulnerable Software and Affected Versions: SEOPress – On-site SEO plugin for WordPress versions up to, and including, 7.5.2.1 Description: The issue arises from insufficient input sanitization and output escaping, allowing authenticated attackers with author access or higher to inject...

6.4CVSS9.3AI score0.00423EPSS
Exploits0References5
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/15 7:6 a.m.32 views

Security Bulletin: A busybox vulnerability affects IBM DataPower Gateways (CVE-2014-4607)

Summary A buffer overflow vulnerability affects IBM DataPower Gateways. IBM DataPower Gateways has addressed the applicable CVE Vulnerability Details CVEID: CVE-2014-4607 DESCRIPTION: Oberhumer LZO could allow a remote attacker to execute arbitrary code on the system, caused by an integer overflo...

8.8CVSS7.5AI score0.05315EPSS
Exploits1Affected Software1
Rows per page
Query Builder