Lucene search
+L

39 matches found

openbugbounty
openbugbounty
added 2024/07/09 7:34 a.m.4 views

jqmagick.imagemagick.org Cross Site Scripting vulnerability OBB-3942375

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
patchstack
patchstack
added 2024/07/09 12:0 a.m.10 views

WordPress Cliengo – Chatbot Plugin <= 3.0.1 is vulnerable to Broken Access Control

Software Cliengo – Chatbot Type Plugin Vulnerable versions = 3.0.1 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-5993 Patch priority Low CVSS severity Low 5.4 Developer Claim ownership PSID 950b128377a0 Credits Lucio Sá Required privilege...

5.4CVSS6.6AI score0.00465EPSS
Exploits0References3Affected Software1
patchstack
patchstack
added 2024/07/09 12:0 a.m.8 views

WordPress Just Custom Fields Plugin <= 3.3.2 is vulnerable to Cross Site Request Forgery (CSRF)

Software Just Custom Fields Type Plugin Vulnerable versions = 3.3.2 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-6168 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 9fc0b88e6af6 Credits Francesco Carlucci...

4.3CVSS6.7AI score0.00198EPSS
Exploits0References2Affected Software1
patchstack
patchstack
added 2024/07/09 12:0 a.m.8 views

WordPress Default Thumbnail Plus Plugin <= 1.0.2.3 is vulnerable to Arbitrary File Upload

Software Default Thumbnail Plus Type Plugin Vulnerable versions = 1.0.2.3 Fixed in N/A OWASP Top 10 A1: Injection Classification Arbitrary File Upload CVE CVE-2024-6161 Patch priority Medium CVSS severity Medium 9.9 Developer Claim ownership PSID ab5c2abdfe96 Credits István Márton Required...

8.8CVSS6.8AI score0.00786EPSS
Exploits0References2Affected Software1
patchstack
patchstack
added 2024/07/09 12:0 a.m.15 views

WordPress Pricing Table Plugin <= 2.0.1 is vulnerable to Broken Access Control

Software Pricing Table Type Plugin Vulnerable versions = 2.0.1 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-4102 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 7d83a882cffe Credits Benedictus Jovan aillesiM Required...

5.4CVSS6.6AI score0.00269EPSS
Exploits0References2Affected Software1
patchstack
patchstack
added 2024/07/09 12:0 a.m.17 views

WordPress User Activity Log Pro Plugin <= 2.3.4 is vulnerable to Broken Access Control

Software User Activity Log Pro Type Plugin Vulnerable versions = 2.3.4 Fixed in N/A OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-37929 Patch priority Medium CVSS severity Medium 6.3 Developer Claim ownership PSID a51ba27e9212 Credits Dave Jong Patchstac...

6.3CVSS6.3AI score0.00336EPSS
Exploits0References1Affected Software1
patchstack
patchstack
added 2024/07/09 12:0 a.m.9 views

WordPress Product Designer Plugin <= 1.0.33 is vulnerable to Broken Access Control

Software Product Designer Type Plugin Vulnerable versions = 1.0.33 Fixed in 1.0.34 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-3608 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 7913547b43c1 Credits Lucio Sá Required privilege...

5.3CVSS5.2AI score0.00562EPSS
Exploits0References2Affected Software1
patchstack
patchstack
added 2024/07/09 12:0 a.m.14 views

WordPress Woocommerce OpenPos Plugin <= 7.0.1 is vulnerable to Broken Access Control

Software Woocommerce OpenPos Type Plugin Vulnerable versions = 7.0.1 Fixed in 7.0.2 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-37935 Patch priority High CVSS severity High 7.5 Developer Claim ownership PSID d6898ddc425e Credits Dave Jong Patchstack...

7.5CVSS6.5AI score0.00423EPSS
Exploits0References1Affected Software1
patchstack
patchstack
added 2024/07/09 12:0 a.m.8 views

WordPress Just Custom Fields Plugin <= 3.3.2 is vulnerable to Broken Access Control

Software Just Custom Fields Type Plugin Vulnerable versions = 3.3.2 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-6167 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 899cda063365 Credits Francesco Carlucci Required...

4.3CVSS6.6AI score0.00297EPSS
Exploits0References2Affected Software1
patchstack
patchstack
added 2024/07/09 12:0 a.m.17 views

WordPress Woocommerce OpenPos Plugin <= 6.4.4 is vulnerable to Arbitrary File Deletion

Software Woocommerce OpenPos Type Plugin Vulnerable versions = 6.4.4 Fixed in 7.0.1 OWASP Top 10 A1: Broken Access Control Classification Arbitrary File Deletion CVE CVE-2024-37932 Patch priority High CVSS severity High 8.6 Developer Claim ownership PSID 80d70b64099f Credits Dave Jong Patchstack...

8.6CVSS6.5AI score0.00589EPSS
Exploits0References1Affected Software1
patchstack
patchstack
added 2024/07/09 12:0 a.m.17 views

WordPress Media Hygiene Plugin <= 3.0.1 is vulnerable to Broken Access Control

Software Media Hygiene Type Plugin Vulnerable versions = 3.0.1 Fixed in 3.0.2 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-5855 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 6586cb78deae Credits Lucio Sá Required privilege...

4.3CVSS6.6AI score0.0038EPSS
Exploits0References3Affected Software1
patchstack
patchstack
added 2024/07/09 12:0 a.m.10 views

WordPress Houzez CRM Plugin <= 1.4.2 is vulnerable to SQL Injection

Software Houzez CRM Type Plugin Vulnerable versions = 1.4.2 Fixed in 1.4.3 OWASP Top 10 A1: Injection Classification SQL Injection CVE CVE-2024-5792 Patch priority Low CVSS severity Low 8.5 Developer Claim ownership PSID 666665555649 Credits István Márton Required privilege Seller Published 9 Jul...

8.8CVSS6.9AI score0.00454EPSS
Exploits0References2Affected Software1
patchstack
patchstack
added 2024/07/09 12:0 a.m.14 views

WordPress Unlimited Elements For Elementor (Free Widgets, Addons, Templates) Plugin <= 1.5.112 is vulnerable to Cross Site Scripting (XSS)

Software Unlimited Elements For Elementor Free Widgets, Addons, Templates Type Plugin Vulnerable versions = 1.5.112 Fixed in 1.5.113 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-6169 Patch priority Low CVSS severity Low 6.5 Developer Unlimited...

6.4CVSS5.8AI score0.0051EPSS
Exploits1References4Affected Software1
patchstack
patchstack
added 2024/07/09 12:0 a.m.20 views

WordPress Generate PDF using Contact Form 7 Plugin <= 4.1.2 is vulnerable to Cross Site Request Forgery (CSRF)

Software Generate PDF using Contact Form 7 Type Plugin Vulnerable versions = 4.1.2 Fixed in 4.1.3 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-37555 Patch priority Low CVSS severity Low 9.6 Developer Claim ownership PSID 2989195e2c48 Credits...

9.8CVSS6.7AI score0.006EPSS
Exploits0References2Affected Software1
openbugbounty
openbugbounty
added 2023/07/09 8:40 p.m.18 views

atools.cz Cross Site Scripting vulnerability OBB-3496363

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.1AI score
Exploits0
openbugbounty
openbugbounty
added 2023/07/09 6:22 p.m.13 views

voparis-srv.obspm.fr Cross Site Scripting vulnerability OBB-3495753

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.1AI score
Exploits0
openbugbounty
openbugbounty
added 2023/07/09 5:5 p.m.11 views

restaurantdelagaremunzenberger.fr Cross Site Scripting vulnerability OBB-3495438

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.1AI score
Exploits0
openbugbounty
openbugbounty
added 2023/07/09 4:10 p.m.16 views

vbm.kulturhotell.se Cross Site Scripting vulnerability OBB-3495198

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.1AI score
Exploits0
openbugbounty
openbugbounty
added 2023/07/09 10:29 a.m.19 views

citrix.dhss.alaska.gov Cross Site Scripting vulnerability OBB-3494098

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.1AI score
Exploits0
openbugbounty
openbugbounty
added 2023/07/09 10:18 a.m.18 views

citrixaccesseast.va.gov Cross Site Scripting vulnerability OBB-3494085

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.1AI score
Exploits0
Rows per page
Query Builder