Lucene search
K

4 matches found

ATTACKERKB
ATTACKERKB
added 2026/05/27 7:45 a.m.7 views

CVE-2026-8042

The Github Shortcode plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'repo' shortcode attribute in the 'github' shortcode in all versions up to, and including, 0.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated...

6.4CVSS6AI score0.00191EPSS
Exploits0References4
Patchstack
Patchstack
added 2025/12/31 12:0 a.m.6 views

WordPress Featured Image via URL plugin <= 0.1 - Authenticated (Contributor+) Arbitrary FIle Upload vulnerability

Authenticated Contributor+ Arbitrary FIle Upload vulnerability discovered by kr0d in WordPress Plugin Featured Image via URL versions = 0.1...

8.8CVSS5.3AI score0.0048EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2025/01/24 12:0 a.m.6 views

PT-2025-5058 · Gigaom · Gigaom Sphinx

Name of the Vulnerable Software and Affected Versions: Gigaom Sphinx versions up to 0.1 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as 'Cross-site Scripting', which allows Reflected XSS. This enables attackers to inject malicious...

7.1CVSS9.5AI score0.0022EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2006/09/29 12:0 a.m.3 views

PT-2006-5835 · Net2Ftp · Net2Ftp

Name of the Vulnerable Software and Affected Versions: net2ftp versions 0.1 through 0.62 Description: A remote file inclusion issue in index.php allows remote attackers to execute arbitrary PHP code via a URL in the application rootdir parameter. However, this issue has been disputed by a...

7.5CVSS8AI score0.0235EPSS
Exploits0References12
Rows per page
Query Builder