CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added 2022/08/25 8:15 p.m.•2 views

ALPINE-CVE-2022-2980

NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.0259...

5.5CVSS6.8AI score0.00667EPSS

OSV•added 2022/08/23 8:15 p.m.•3 views

ALPINE-CVE-2021-3995

A logic error was found in the libmount library of util-linux in the function that allows an unprivileged user to unmount a FUSE filesystem. This flaw allows an unprivileged local attacker to unmount FUSE filesystems that belong to certain other users who have a UID that is a prefix of the UID of...

5.5CVSS6.5AI score0.0063EPSS

Exploits3References1

OSV•added 2022/08/23 4:15 p.m.•3 views

CVE-2022-36347

Authenticated admin+ Stored Cross-Site Scripting XSS vulnerability in Alpine Press Alpine PhotoTile for Pinterest plugin = 1.3.1 at WordPress...

5.4CVSS5.8AI score0.00485EPSS

OSV•added 2022/08/23 4:15 p.m.•1 views

ALPINE-CVE-2021-3670

MaxQueryDuration not honoured in Samba AD DC LDAP...

6.5CVSS7AI score0.01645EPSS

Prion•added 2022/08/23 4:15 p.m.•16 views

Cross site scripting

Authenticated admin+ Stored Cross-Site Scripting XSS vulnerability in Alpine Press Alpine PhotoTile for Pinterest plugin = 1.3.1 at WordPress...

4.9CVSS5.3AI score0.00485EPSS

Exploits0References2Affected Software1

Vulnrichment•added 2022/08/23 3:48 p.m.•7 views

CVE-2022-36347 WordPress Alpine PhotoTile for Pinterest plugin <= 1.3.1 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability

Authenticated admin+ Stored Cross-Site Scripting XSS vulnerability in Alpine Press Alpine PhotoTile for Pinterest plugin = 1.3.1 at WordPress...

4.8CVSS4.9AI score0.00485EPSS

Cvelist•added 2022/08/23 3:48 p.m.•25 views

CVE-2022-36347 WordPress Alpine PhotoTile for Pinterest plugin <= 1.3.1 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability

Authenticated admin+ Stored Cross-Site Scripting XSS vulnerability in Alpine Press Alpine PhotoTile for Pinterest plugin = 1.3.1 at WordPress...

4.8CVSS5.4AI score0.00485EPSS

CVE•added 2022/08/23 3:48 p.m.•74 views

CVE-2022-36347

CVE-2022-36347 affects WordPress via the plugin Alpine PhotoTile for Pinterest (versions ≤ 1.3.1). The root cause is inadequate sanitization/escaping of plugin settings, enabling an authenticated attacker with admin-level privileges to perform a Stored Cross-Site Scripting (XSS) attack. Impact is...

5.4CVSS5AI score0.00485EPSS

Exploits0References2Affected Software1

CNNVD•added 2022/08/23 12:0 a.m.•2 views

WordPress plugin Alpine Press Alpine PhotoTile for Pinterest 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

5.4CVSS5.3AI score0.00485EPSS

Exploits0References3

OSV•added 2022/08/15 11:15 p.m.•2 views

ALPINE-CVE-2022-2817

Use After Free in GitHub repository vim/vim prior to 9.0.0213...

7.8CVSS6.8AI score0.00498EPSS

OSV•added 2022/08/15 10:15 p.m.•2 views

ALPINE-CVE-2022-2816

Out-of-bounds Read in GitHub repository vim/vim prior to 9.0.0212...

7.8CVSS6.8AI score0.00513EPSS

Patchstack•added 2022/08/12 12:0 a.m.•18 views

WordPress Alpine PhotoTile for Pinterest plugin <= 1.3.1 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability

Authenticated Stored Cross-Site Scripting XSS vulnerability discovered by ptsfence in WordPress Alpine PhotoTile for Pinterest plugin versions = 1.3.1. Solution Deactivate and delete. This plugin has been closed as of August 10, 2022 and is not available for download. This closure is temporary,...

5.4CVSS2AI score0.00485EPSS

Exploits0Affected Software1

WPVulnDB•added 2022/08/12 12:0 a.m.•20 views

Alpine PhotoTile for Pinterest <= 1.3.1 - Admin+ Stored Cross-Site Scripting

The plugin does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

5.4CVSS2.6AI score0.00485EPSS

Exploits0Affected Software1

OSV•added 2022/07/28 5:15 p.m.•2 views

ALPINE-CVE-2016-3709

Possible cross-site scripting vulnerability in libxml after commit 960f0e2...

6.1CVSS6.3AI score0.00749EPSS

RedHat Linux•added 2022/07/25 10:9 p.m.•86 views

Moderate: Red Hat Security Advisory: ACS 3.71 enhancement and security update

Updated images are now available for Red Hat Advanced Cluster Security. The updated image includes bug fixes and feature improvements. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a...

8.8CVSS7.3AI score0.00521EPSS

OSV•added 2022/07/14 8:15 p.m.•0 views

ALPINE-CVE-2022-23825

Aliases in the branch predictor may cause some AMD processors to predict the wrong branch type potentially leading to information disclosure...

6.5CVSS6.6AI score0.00772EPSS

OSV•added 2022/07/12 7:15 p.m.•1 views

ALPINE-CVE-2022-29900

Mis-trained branch predictions for return instructions may allow arbitrary speculative code execution under certain microarchitecture-dependent conditions...

6.5CVSS7.8AI score0.03796EPSS

OSV•added 2022/07/05 1:15 p.m.•2 views

ALPINE-CVE-2022-33743

network backend may cause Linux netfront to use freed SKBs While adding logic to support XDP eXpress Data Path, a code label was moved in a way allowing for SKBs having references pointers retained for further processing to nevertheless be freed...

7.8CVSS7.2AI score0.00341EPSS

OSV•added 2022/07/03 3:15 p.m.•2 views

ALPINE-CVE-2022-2289

Use After Free in GitHub repository vim/vim prior to 9.0...

7.8CVSS6.8AI score0.01042EPSS