Lucene search
K

6 matches found

NVD
NVD
added 2026/06/02 12:16 p.m.16 views

CVE-2026-39550

Deserialization of Untrusted Data vulnerability in Elated-Themes Aperitif allows Object Injection. This issue affects Aperitif: from n/a through 1.6...

8.1CVSS0.00308EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/02/24 12:0 a.m.3 views

PT-2025-7743 · Unknown · Simple Google Sitemap

Name of the Vulnerable Software and Affected Versions: Simple Google Sitemap versions 1.6 and earlier Description: A Cross-Site Request Forgery CSRF issue affects the software, allowing unauthorized requests. Recommendations: For Simple Google Sitemap versions 1.6 and earlier, update to a version...

4.3CVSS9.5AI score0.00158EPSS
Exploits0References4
NVD
NVD
added 2025/01/16 9:15 p.m.6 views

CVE-2025-23815

Cross-Site Request Forgery CSRF vulnerability in linickx root Cookie allows Cross Site Request Forgery. This issue affects root Cookie: from n/a through 1.6...

7.1CVSS0.00197EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/09/25 12:0 a.m.6 views

PT-2024-39202 · WordPress · 012 Ps Multi Languages

Name of the Vulnerable Software and Affected Versions: 012 Ps Multi Languages plugin for WordPress versions up to, and including, 1.6 Description: The issue is related to Stored Cross-Site Scripting via translated titles due to insufficient input sanitization and output escaping. This allows...

6.4CVSS6.2AI score0.00263EPSS
Exploits0References9
Positive Technologies
Positive Technologies
added 2022/07/29 12:0 a.m.6 views

PT-2022-3994

Name of the Vulnerable Software and Affected Versions PrestaShop versions 1.6.0.10 through 1.7.8.7 Description The issue is related to an SQL injection vulnerability in PrestaShop, an Open Source e-commerce platform. This vulnerability can be chained to call PHP's Eval function on attacker input,...

10CVSS9.7AI score0.05071EPSS
Exploits2References11
OSV
OSV
added 2015/04/07 12:0 a.m.2 views

UBUNTU-CVE-2015-1317

Use-after-free vulnerability in Oxide before 1.5.6 and 1.6.x before 1.6.1 allows remote attackers to cause a denial of service crash or possibly execute arbitrary code by deleting all WebContents while a RenderProcessHost instance still exists...

7.5CVSS6.2AI score0.02981EPSS
Exploits0References3
Rows per page
Query Builder