Lucene search
K

84 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 4:49 a.m.10 views

CVE-2023-37393

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Atarim Visual Website Collaboration, Feedback & Project Management – Atarim plugin = 3.9.3 versions...

7.1CVSS5.6AI score0.0032EPSS
Exploits0
Cvelist
Cvelist
added 2025/02/25 2:17 p.m.12 views

CVE-2025-26993 WordPress Visual Website Collaboration Atarim plugin <= 4.1.0 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Vito Peleg Atarim atarim-visual-collaboration allows Reflected XSS.This issue affects Atarim: from n/a through = 4.1.0...

7.1CVSS0.00285EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/02/25 2:17 p.m.5 views

CVE-2025-26993 WordPress Visual Website Collaboration Atarim plugin <= 4.1.0 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Vito Peleg Atarim atarim-visual-collaboration allows Reflected XSS.This issue affects Atarim: from n/a through = 4.1.0...

7.1CVSS8.6AI score0.00285EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/02/25 12:0 a.m.4 views

WordPress plugin Atarim 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site...

7.1CVSS8.3AI score0.00285EPSS
Exploits0References2
Patchstack
Patchstack
added 2025/02/23 9:3 p.m.5 views

WordPress Visual Website Collaboration Atarim plugin <= 4.1.0 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by Dimas Maulana Patchstack Alliance in WordPress Plugin Atarim versions = 4.1.0...

7.1CVSS6.1AI score0.00285EPSS
Exploits0Affected Software1
Cvelist
Cvelist
added 2025/02/18 7:54 p.m.33 views

CVE-2025-22657 WordPress Atarim plugin <= 4.0.9 - Arbitrary Content Deletion vulnerability

Missing Authorization vulnerability in Vito Peleg Atarim atarim-visual-collaboration allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Atarim: from n/a through = 4.0.9...

7.5CVSS0.00342EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/02/18 12:0 a.m.5 views

WordPress plugin Atarim 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

7.5CVSS6.6AI score0.00342EPSS
Exploits0References2
Patchstack
Patchstack
added 2025/02/03 4:22 p.m.5 views

WordPress Atarim plugin <= 4.0.9 - Arbitrary Content Deletion vulnerability

Arbitrary Content Deletion vulnerability discovered by Mika Patchstack Alliance in WordPress Plugin Atarim versions = 4.0.9...

7.5CVSS7AI score0.00342EPSS
Exploits0Affected Software1
Vulnrichment
Vulnrichment
added 2025/01/24 5:24 p.m.8 views

CVE-2025-24570 WordPress Atarim plugin <= 4.0.8 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Vito Peleg Atarim atarim-visual-collaboration allows Stored XSS.This issue affects Atarim: from n/a through = 4.0.8...

7.1CVSS7.2AI score0.00396EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/01/24 5:24 p.m.18 views

CVE-2025-24570 WordPress Atarim plugin <= 4.0.8 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Vito Peleg Atarim atarim-visual-collaboration allows Stored XSS.This issue affects Atarim: from n/a through = 4.0.8...

7.1CVSS0.00396EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/01/24 11:47 a.m.6 views

WordPress Atarim plugin <= 4.0.8 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Mika in WordPress Plugin Atarim versions = 4.0.8...

7.1CVSS6.1AI score0.00396EPSS
Exploits0Affected Software1
CNNVD
CNNVD
added 2025/01/24 12:0 a.m.5 views

WordPress plugin Atarim 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site...

7.1CVSS8AI score0.00396EPSS
Exploits0References2
OSV
OSV
added 2025/01/21 10:15 a.m.4 views

CVE-2024-12104

The Visual Website Collaboration, Feedback & Project Management – Atarim plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the wpfdeletefile and wpfdeletefile functions in all versions up to, and including, 4.0.9. This makes it possible for...

7.5CVSS7.3AI score0.0034EPSS
Exploits0References2
NVD
NVD
added 2025/01/21 10:15 a.m.27 views

CVE-2024-12104

The Visual Website Collaboration, Feedback & Project Management – Atarim plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the wpfdeletefile and wpfdeletefile functions in all versions up to, and including, 4.0.9. This makes it possible for...

7.5CVSS0.0034EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/01/21 9:21 a.m.29 views

CVE-2024-12104 Visual Website Collaboration, Feedback & Project Management – Atarim <= 4.0.9 - Missing Authorization to Authenticated (Subscriber+) Project Page/File Deletion

The Visual Website Collaboration, Feedback & Project Management – Atarim plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the wpfdeletefile and wpfdeletefile functions in all versions up to, and including, 4.0.9. This makes it possible for...

5.3CVSS0.0034EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/01/21 9:21 a.m.9 views

CVE-2024-12104 Visual Website Collaboration, Feedback & Project Management – Atarim <= 4.0.9 - Missing Authorization to Authenticated (Subscriber+) Project Page/File Deletion

The Visual Website Collaboration, Feedback & Project Management – Atarim plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the wpfdeletefile and wpfdeletefile functions in all versions up to, and including, 4.0.9. This makes it possible for...

5.3CVSS7.1AI score0.0034EPSS
Exploits0References2
CVE
CVE
added 2025/01/21 9:21 a.m.58 views

CVE-2024-12104

CVE-2024-12104 documents a vulnerability in Visual Website Collaboration, Feedback & Project Management – Atarim (WordPress) where all versions up to 4.0.9 lack a required capability check on wpf_delete_file and wpf_delete_file functions. This permits unauthenticated attackers to delete project p...

7.5CVSS7.1AI score0.0034EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2025/01/21 12:0 a.m.5 views

WordPress plugin Atarim 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

7.5CVSS8.1AI score0.0034EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/11/01 12:0 a.m.4 views

WordPress plugin Atarim 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

6.5CVSS6.6AI score0.00419EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/08/16 11:16 a.m.5 views

WordPress Atarim plugin <= 4.0.1 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Trương Hữu Phúc Patchstack Alliance in WordPress Plugin Atarim versions = 4.0.1...

5.3CVSS7AI score0.00371EPSS
Exploits0Affected Software1
Rows per page
Query Builder