Lucene search
K

184 matches found

Vulnrichment
Vulnrichment
added 2025/02/18 7:54 p.m.6 views

CVE-2025-22657 WordPress Atarim plugin <= 4.0.9 - Arbitrary Content Deletion vulnerability

Missing Authorization vulnerability in Vito Peleg Atarim allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Atarim: from n/a through 4.0.9...

7.5CVSS7.5AI score0.00342EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/02/18 7:54 p.m.36 views

CVE-2025-22657 WordPress Atarim plugin <= 4.0.9 - Arbitrary Content Deletion vulnerability

Missing Authorization vulnerability in Vito Peleg Atarim atarim-visual-collaboration allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Atarim: from n/a through = 4.0.9...

7.5CVSS0.00342EPSS
Exploits0References1
CVE
CVE
added 2025/02/18 7:54 p.m.64 views

CVE-2025-22657

CVE-2025-22657 describes a Missing Authorization vulnerability in the WordPress Atarim plugin (versions

7.5CVSS5.9AI score0.00342EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/02/18 12:0 a.m.6 views

WordPress plugin Atarim 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

7.5CVSS6.6AI score0.00342EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/02/18 12:0 a.m.6 views

PT-2025-6957 · Vito Peleg · Atarim

Name of the Vulnerable Software and Affected Versions: Atarim versions prior to 4.0.9 Description: The issue is related to a missing authorization vulnerability in Vito Peleg Atarim, which allows the exploitation of incorrectly configured access control security levels. Recommendations: For...

7.5CVSS7.1AI score0.00342EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/02/06 2:34 a.m.7 views

CVE-2025-24570

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Vito Peleg Atarim atarim-visual-collaboration allows Stored XSS.This issue affects Atarim: from n/a through = 4.0.8...

7.1CVSS7.2AI score0.00396EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/02/03 4:22 p.m.7 views

WordPress Atarim plugin <= 4.0.9 - Arbitrary Content Deletion vulnerability

Arbitrary Content Deletion vulnerability discovered by Mika Patchstack Alliance in WordPress Plugin Atarim versions = 4.0.9...

7.5CVSS7AI score0.00342EPSS
Exploits0Affected Software1
NVD
NVD
added 2025/01/24 6:15 p.m.8 views

CVE-2025-24570

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Vito Peleg Atarim atarim-visual-collaboration allows Stored XSS.This issue affects Atarim: from n/a through = 4.0.8...

7.1CVSS0.00396EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/01/24 5:24 p.m.8 views

CVE-2025-24570 WordPress Atarim plugin <= 4.0.8 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Vito Peleg Atarim atarim-visual-collaboration allows Stored XSS.This issue affects Atarim: from n/a through = 4.0.8...

7.1CVSS7.2AI score0.00396EPSS
Exploits0References1
CVE
CVE
added 2025/01/24 5:24 p.m.48 views

CVE-2025-24570

CVE-2025-24570 : Stored XSS in WordPress Visual Website Collaboration plugin Atarim (versions n/a–4.0.8). The issue arises from improper neutralization of input during web-page generation, enabling attackers to inject scripts that run in other users’ browsers. The vulnerability is explicitly asso...

7.1CVSS7.2AI score0.00396EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/01/24 5:24 p.m.22 views

CVE-2025-24570 WordPress Atarim plugin <= 4.0.8 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Vito Peleg Atarim atarim-visual-collaboration allows Stored XSS.This issue affects Atarim: from n/a through = 4.0.8...

7.1CVSS0.00396EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/01/24 11:47 a.m.6 views

WordPress Atarim plugin <= 4.0.8 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Mika in WordPress Plugin Atarim versions = 4.0.8...

7.1CVSS6.1AI score0.00396EPSS
Exploits0Affected Software1
Positive Technologies
Positive Technologies
added 2025/01/24 12:0 a.m.6 views

PT-2025-5411 · Atarim · Atarim

Name of the Vulnerable Software and Affected Versions: Atarim versions n/a through 4.0.8 Description: The issue is related to improper neutralization of input during web page generation, which allows for Stored Cross-site Scripting XSS. This means an attacker can inject malicious scripts into the...

7.1CVSS6.3AI score0.00396EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/01/24 12:0 a.m.7 views

WordPress plugin Atarim 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site...

7.1CVSS8AI score0.00396EPSS
Exploits0References2
OSV
OSV
added 2025/01/21 10:15 a.m.4 views

CVE-2024-12104

The Visual Website Collaboration, Feedback & Project Management – Atarim plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the wpfdeletefile and wpfdeletefile functions in all versions up to, and including, 4.0.9. This makes it possible for...

7.5CVSS7.3AI score0.0034EPSS
Exploits0References2
NVD
NVD
added 2025/01/21 10:15 a.m.28 views

CVE-2024-12104

The Visual Website Collaboration, Feedback & Project Management – Atarim plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the wpfdeletefile and wpfdeletefile functions in all versions up to, and including, 4.0.9. This makes it possible for...

7.5CVSS0.0034EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/01/21 9:21 a.m.29 views

CVE-2024-12104 Visual Website Collaboration, Feedback & Project Management – Atarim <= 4.0.9 - Missing Authorization to Authenticated (Subscriber+) Project Page/File Deletion

The Visual Website Collaboration, Feedback & Project Management – Atarim plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the wpfdeletefile and wpfdeletefile functions in all versions up to, and including, 4.0.9. This makes it possible for...

5.3CVSS0.0034EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/01/21 9:21 a.m.9 views

CVE-2024-12104 Visual Website Collaboration, Feedback & Project Management – Atarim <= 4.0.9 - Missing Authorization to Authenticated (Subscriber+) Project Page/File Deletion

The Visual Website Collaboration, Feedback & Project Management – Atarim plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the wpfdeletefile and wpfdeletefile functions in all versions up to, and including, 4.0.9. This makes it possible for...

5.3CVSS7.1AI score0.0034EPSS
Exploits0References2
CVE
CVE
added 2025/01/21 9:21 a.m.58 views

CVE-2024-12104

CVE-2024-12104 documents a vulnerability in Visual Website Collaboration, Feedback & Project Management – Atarim (WordPress) where all versions up to 4.0.9 lack a required capability check on wpf_delete_file and wpf_delete_file functions. This permits unauthenticated attackers to delete project p...

7.5CVSS7.1AI score0.0034EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2025/01/21 12:0 a.m.5 views

WordPress plugin Atarim 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

7.5CVSS8.1AI score0.0034EPSS
Exploits0References3
Rows per page
Query Builder