Lucene search
K

9 matches found

OSV
OSV
added 2025/03/11 9:15 p.m.8 views

CVE-2025-28879

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in aumsrini Bee Layer Slider allows Stored XSS. This issue affects Bee Layer Slider: from n/a through 1.1...

5.4CVSS7.3AI score0.00246EPSS
Exploits0References1
NVD
NVD
added 2024/12/16 3:15 p.m.10 views

CVE-2024-55977

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in BinaryCarpenter LaunchPage.app Importer launchpage-app-importer allows SQL Injection.This issue affects LaunchPage.app Importer: from n/a through = 1.1...

9.3CVSS0.00513EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/12/13 12:0 a.m.3 views

PT-2024-36217 · Woocommerce · Check Pincode For Woocommerce

Name of the Vulnerable Software and Affected Versions: Check Pincode For Woocommerce versions 1.1 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting. This allows for Reflected XSS. Recommendations: For...

7.1CVSS6.8AI score0.00333EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2024/12/02 12:0 a.m.5 views

PT-2024-35814 · Unknown · Autoquiz Ai Quiz

Name of the Vulnerable Software and Affected Versions: AutoQuiz AI Quiz versions n/a through 1.1 Description: The issue is related to a missing authorization vulnerability in AutoQuiz AI Quiz, which allows accessing functionality not properly constrained by Access Control Lists ACLs. This means...

5.3CVSS9.3AI score0.0053EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/11/16 12:0 a.m.6 views

PT-2024-35244 · Unknown · B-Banner Slider

Name of the Vulnerable Software and Affected Versions: B-Banner Slider versions 1.1 and earlier Description: The issue is related to an unrestricted upload of files with dangerous types, allowing an attacker to upload a web shell to a web server. This poses a severe cybersecurity risk...

9.9CVSS9.4AI score0.00478EPSS
Exploits0References9
Positive Technologies
Positive Technologies
added 2024/10/28 12:0 a.m.4 views

PT-2024-34255 · Woocommerce · Woocommerce Quote Calculator

Name of the Vulnerable Software and Affected Versions: WooCommerce Quote Calculator versions 1.1 and earlier Description: The issue is related to an SQL Injection vulnerability, specifically an Improper Neutralization of Special Elements used in an SQL Command. This allows for Blind SQL Injection...

9.8CVSS7.8AI score0.00475EPSS
Exploits0References6
OSV
OSV
added 2023/12/18 11:15 p.m.1 views

CVE-2023-49763

Cross-Site Request Forgery CSRF vulnerability in Creatomatic Ltd CSprite.This issue affects CSprite: from n/a through 1.1...

8.8CVSS5.8AI score
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/02/19 12:0 a.m.5 views

PT-2023-10155 · Unknown · Java-Xmlbuilder

Name of the Vulnerable Software and Affected Versions: java-xmlbuilder versions up to 1.1 Description: A vulnerability was found in the software, rated as problematic. It affects some unknown functionality and leads to xml external entity reference. Recommendations: For versions up to 1.1, upgrad...

9.8CVSS9.2AI score0.01231EPSS
Exploits1References13
Positive Technologies
Positive Technologies
added 2021/10/18 12:0 a.m.3 views

PT-2021-19806 · Apache · Apache Superset

Name of the Vulnerable Software and Affected Versions: Apache Superset versions up to and including 1.1 Description: The issue allows an attacker with Explore access to save a chart with a malicious title, injecting html including scripts into the page, due to incorrect sanitization of titles on...

5.4CVSS7.1AI score0.01602EPSS
Exploits0References9
Rows per page
Query Builder