Lucene search
K

1312 matches found

OSV
OSV
added 2023/06/26 11:15 a.m.4 views

CVE-2023-29434

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in FancyThemes Optin Forms – Simple List Building Plugin for WordPress plugin = 1.3.1 versions...

4.8CVSS7.3AI score0.00369EPSS
Exploits0References1
OSV
OSV
added 2023/06/26 8:15 a.m.4 views

CVE-2023-29423

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in PI Websolution Cancel order request / Return order / Repeat Order / Reorder for WooCommerce plugin = 1.3.2 versions...

4.8CVSS7.3AI score0.00369EPSS
Exploits0References1
OSV
OSV
added 2023/06/23 11:15 a.m.3 views

CVE-2023-28044

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable...

6.7CVSS5.8AI score0.00168EPSS
Exploits0References1
OSV
OSV
added 2023/06/22 12:15 p.m.5 views

CVE-2023-27452

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Wow-Company Button Generator – easily Button Builder plugin = 2.3.3 versions...

4.8CVSS7.3AI score0.00369EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/06/22 11:51 a.m.5 views

CVE-2023-26534 WordPress WP Repost Plugin <= 0.1 is vulnerable to Cross Site Scripting (XSS)

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in OneWebsite WP Repost plugin = 0.1 versions...

5.9CVSS5.4AI score0.00369EPSS
Exploits0References1
OSV
OSV
added 2023/06/21 1:15 p.m.4 views

CVE-2023-27439

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in glSPICE New Adman plugin = 1.6.8 versions...

4.8CVSS7.3AI score0.00369EPSS
Exploits0References1
OSV
OSV
added 2023/06/16 9:15 a.m.3 views

CVE-2023-26541

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Alexander Suess asMember plugin = 1.5.4 versions...

4.8CVSS5.8AI score0.00369EPSS
Exploits0References1
OSV
OSV
added 2023/06/13 3:15 a.m.2 views

CVE-2023-32114

SAP NetWeaver Change and Transport System - versions 702, 731, 740, 750, 751, 752, 753, 754, 755, 756, 757, allows an authenticated user with admin privileges to maliciously run a benchmark program repeatedly in intent to slowdown or make the server unavailable which may lead to a limited impact ...

2.7CVSS5.8AI score0.00596EPSS
Exploits0References2
OSV
OSV
added 2023/06/03 12:15 p.m.3 views

CVE-2023-32582

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Kyle Maurer Don8 plugin = 0.4 versions...

4.8CVSS5.8AI score
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2023/05/19 1:15 p.m.5 views

CVE-2023-31756

A command injection vulnerability exists in the administrative web portal in TP-Link Archer VR1600V devices running firmware Versions = 0.1.0. 0.9.1 v5006.0 Build 220518 Rel.32480n which allows remote attackers, authenticated to the administrative web portal as an administrator user to open an...

6.7CVSS5.8AI score0.01756EPSS
Exploits2References2
NVD
NVD
added 2023/05/18 11:15 a.m.24 views

CVE-2022-47157

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Don Benjamin WP Custom Fields Search plugin = 1.2.34 versions...

5.9CVSS5.4AI score0.00369EPSS
Exploits0References1
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2023/05/17 6:9 a.m.5 views

OS command injection vulnerability in Inaba Denki Sangyo Wi-Fi AP UNIT

Overview Wi-Fi AP UNIT provided by Inaba Denki Sangyo Co., Ltd. contains an OS command injection vulnerability CWE-78. Chuya Hayakawa of 00One, Inc. reported this vulnerability to JPCERT/CC. JPCERT/CC coordinated with the developer. Impact An arbitrary OS command may be executed by an authenticat...

7.2CVSS7.5AI score0.0088EPSS
Exploits0References4
Prion
Prion
added 2023/05/10 5:15 p.m.21 views

Cross site scripting

A cross-site scripting XSS vulnerability in Palo Alto Networks PAN-OS software on Panorama appliances enables an authenticated read-write administrator to store a JavaScript payload in the web interface that will execute in the context of another administrator’s browser when viewed...

4.3CVSS4.7AI score0.00427EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2023/05/06 11:15 p.m.4 views

CVE-2023-25491

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Samuel Marshall JCH Optimize plugin = 3.2.2 versions...

4.8CVSS6.5AI score0.00369EPSS
Exploits0References1
OSV
OSV
added 2023/05/03 3:15 p.m.3 views

CVE-2022-46852

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in WP Table Builder plugin = 1.4.6 versions...

4.8CVSS5.8AI score0.00396EPSS
Exploits0References1
OSV
OSV
added 2023/05/03 2:15 p.m.5 views

CVE-2023-22683

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Themis Solutions, Inc. Clio Grow plugin = 1.0.0 versions...

4.8CVSS6.6AI score0.00369EPSS
Exploits0References1
OSV
OSV
added 2023/05/01 5:15 p.m.3 views

CVE-2023-22921

A cross-site scripting XSS vulnerability in the Zyxel NBG-418N v2 firmware versions prior to V1.00AARP.14C0 could allow a remote authenticated attacker with administrator privileges to store malicious scripts using a web management interface parameter, resulting in denial-of-service DoS condition...

7.5CVSS7.1AI score
Exploits0References1
OSV
OSV
added 2023/04/25 7:15 p.m.1 views

DEBIAN-CVE-2021-23186

A sandboxing issue in Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier allows authenticated administrators to access and modify database contents of other tenants, in a multi-tenant system...

8.7CVSS7.9AI score0.00644EPSS
Exploits0References1
OSV
OSV
added 2023/04/24 7:15 p.m.3 views

CVE-2023-1623

The Custom Post Type UI WordPress plugin before 1.13.5 does not properly check for CSRF when sending the debug information to a user supplied email, which could allow attackers to make a logged in admin send such information to an arbitrary email address via a CSRF attack...

6.5CVSS7AI score0.00352EPSS
Exploits1References1
OSV
OSV
added 2023/04/23 11:15 a.m.6 views

CVE-2023-23806

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Davinder Singh Custom Settings plugin = 1.0 versions...

4.8CVSS6.6AI score0.00369EPSS
Exploits0References1
Rows per page
Query Builder