Lucene search
K

11 matches found

RedhatCVE
RedhatCVE
added 2025/09/07 2:32 p.m.4 views

CVE-2025-58822

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in mndpsingh287 WP Mail wp-mail allows DOM-Based XSS.This issue affects WP Mail: from n/a through = 1.3...

6.5CVSS5.9AI score0.00202EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/12/13 12:0 a.m.3 views

PT-2024-36123 · Unknown · Think201 Easy Replace

Name of the Vulnerable Software and Affected Versions: Think201 Easy Replace versions n/a through 1.3 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting. This allows for Stored XSS attacks. Recommendations: For...

6.5CVSS5.9AI score0.00367EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/10/05 12:0 a.m.5 views

PT-2024-32593 · Unknown · Ashraf Xltab

Name of the Vulnerable Software and Affected Versions: Ashraf XLTab – Accordions and Tabs for Elementor Page Builder versions 1.3 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for...

6.5CVSS6.2AI score0.00231EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2024/04/15 12:0 a.m.9 views

PT-2024-24578 · Unknown · Ads.Txt Admin

Name of the Vulnerable Software and Affected Versions: Ads.Txt Admin versions 1.3 and earlier Description: A Cross-Site Request Forgery CSRF issue affects the Ads.Txt Admin. This is a type of attack where an attacker tricks a user into performing unintended actions on a web application that the...

4.3CVSS6.5AI score0.00212EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/02/01 12:0 a.m.5 views

PT-2024-13904 · Ibm · Ibm Powersc

Name of the Vulnerable Software and Affected Versions: IBM PowerSC versions 1.3 through 2.1 Description: The issue is related to the use of insecure HTTP methods, which could allow a remote attacker to perform unauthorized file request modification. Recommendations: For versions 1.3 through 2.1,...

5.3CVSS5AI score0.00492EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2024/02/01 12:0 a.m.7 views

PT-2024-14020 · Ibm · Ibm Powersc

Name of the Vulnerable Software and Affected Versions: IBM PowerSC versions 1.3 through 2.1 Description: The issue is related to the use of weaker than expected cryptographic algorithms, which could allow an attacker to decrypt highly sensitive information. Recommendations: For IBM PowerSC versio...

7.5CVSS7.2AI score0.00318EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2024/01/31 12:0 a.m.3 views

PT-2024-19306 · Unknown · Elise Bosse Frontpage Manager

Name of the Vulnerable Software and Affected Versions: Elise Bosse Frontpage Manager versions 1.3 and earlier Description: The issue is a Cross-Site Request Forgery CSRF vulnerability. This type of vulnerability allows an attacker to trick a user into performing unintended actions on a web...

8.8CVSS8.8AI score0.00237EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2023/08/30 12:0 a.m.5 views

PT-2023-25141 · Unknown · Abhay Yadav Breadcrumb Simple Plugin

Name of the Vulnerable Software and Affected Versions: Abhay Yadav Breadcrumb simple plugin versions 1.3 and earlier Description: The issue is related to a Stored Cross-Site Scripting XSS vulnerability that affects authenticated administrators. This vulnerability allows an attacker to inject...

5.9CVSS5.1AI score0.00442EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2022/05/17 12:0 a.m.4 views

PT-2022-20420 · Jenkins · Jenkins +1

Name of the Vulnerable Software and Affected Versions: Jenkins Multiselect parameter Plugin versions 1.3 and earlier Description: The issue results in a stored cross-site scripting XSS vulnerability, which is exploitable by attackers with Item/Configure permission. This occurs because the plugin...

8CVSS5.6AI score0.007EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2015/02/17 12:0 a.m.5 views

PT-2015-5280 · Elastic · Elasticsearch

Name of the Vulnerable Software and Affected Versions: Elasticsearch versions 1.3.x through 1.3.7 Elasticsearch versions 1.4.x through 1.4.2 Description: The Groovy scripting engine in Elasticsearch allows remote attackers to bypass the sandbox protection mechanism and execute arbitrary shell...

9.8CVSS9.4AI score0.99906EPSS
Exploits19References27
Positive Technologies
Positive Technologies
added 2003/12/31 12:0 a.m.7 views

PT-2003-2178 · Microsoft +1 · Windows +1

Name of the Vulnerable Software and Affected Versions: Pedestal Software Integrity Protection Driver IPD versions 1.3 and earlier Description: The issue allows privileged attackers, such as rootkits, to bypass file access restrictions to the Windows kernel. This is achieved by using the...

9.8CVSS6.5AI score0.01633EPSS
Exploits1References8
Rows per page
Query Builder