Lucene search
K

353 matches found

NVD
NVD
added 2024/12/13 3:15 p.m.16 views

CVE-2024-54287

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Best WP Developer Advanced Blog Post Block advanced-blog-post-block allows Stored XSS.This issue affects Advanced Blog Post Block: from n/a through = 1.0.4...

6.5CVSS0.00362EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/12/13 2:25 p.m.14 views

CVE-2024-54287 WordPress Advanced Blog Post Block plugin <= 1.0.4 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Best WP Developer Advanced Blog Post Block advanced-blog-post-block allows Stored XSS.This issue affects Advanced Blog Post Block: from n/a through = 1.0.4...

6.5CVSS0.00362EPSS
Exploits0References1
CVE
CVE
added 2024/12/13 2:25 p.m.39 views

CVE-2024-54287

CVE-2024-54287 describes an Authenticated Stored Cross‑Site Scripting (XSS) in the WordPress plugin Advanced Blog Post Block (block named “Advanced Blog Post Block”). Affected are versions up to and including 1.0.4 (listed as affected “from n/a through 1.0.4”). Exact root cause details are not pr...

6.5CVSS7.2AI score0.00362EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/12/13 12:0 a.m.4 views

WordPress plugin Advanced Blog Post Block 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists in...

6.5CVSS7.8AI score0.00362EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/12/11 5:5 p.m.4 views

WordPress Advanced Blog Post Block plugin <= 1.0.4 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Gab Patchstack Alliance in WordPress Plugin Advanced Blog Post Block versions = 1.0.4...

6.5CVSS6.1AI score0.00362EPSS
Exploits0Affected Software1
Github Security Blog
Github Security Blog
added 2024/11/25 3:26 p.m.22 views

Artifact poisoning vulnerability in action-download-artifact v5 and earlier

Summary In versions of dawidd6/action-download-artifact before v6, a repository's forks were also searched by default when attempting to find matching artifacts. This could be exploited by an unprivileged attacker to introduce compromised artifacts such as malicious executables into a privileged...

6.9AI score
Exploits0References4Affected Software1
Circl
Circl
added 2024/11/04 4:6 p.m.2 views

CVE-2024-50523

creationtimestamp| type| source ---|---|--- 2024-11-04 16:06:56+00:00| seen| https://t.me/cvedetector/9747 2026-04-01 18:40:09+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mihdowq4lc2u...

10CVSS4.8AI score0.00501EPSS
Exploits0References2
GithubExploit
GithubExploit
added 2024/10/29 11:34 p.m.1037 views

Exploit for OS Command Injection in Cyberpanel

CyberPanel Command Injection Vulnerability - CVE-2024-51378...

10CVSS10AI score0.94878EPSS
Exploits7
Circl
Circl
added 2024/10/28 1:39 p.m.4 views

CVE-2024-50442

creationtimestamp| type| source ---|---|--- 2024-10-28 13:39:04+00:00| seen| https://t.me/cvedetector/9103 2026-04-04 15:40:09+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3miokztfltn23...

7.2CVSS4.8AI score0.00538EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/10/24 12:0 a.m.3 views

baserCMS 跨站脚本漏洞

baserCMS is an enterprise-level content management system CMS from the baserCMS team. A cross-site scripting vulnerability exists in baserCMS versions prior to 5.1.2, which stems from a cross-site scripting vulnerability in the blog post feature...

6.3CVSS5.9AI score0.00303EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/10/24 12:0 a.m.4 views

baserCMS 跨站脚本漏洞

baserCMS is an enterprise-level content management system CMS from the baserCMS team. A cross-site scripting vulnerability exists in baserCMS versions prior to 5.1.2, which stems from a cross-site scripting vulnerability in the blog post and content list functionality...

5.4CVSS5.9AI score0.0028EPSS
Exploits0References3
Circl
Circl
added 2024/10/20 2:5 p.m.4 views

CVE-2024-47634

creationtimestamp| type| source ---|---|--- 2024-10-20 14:05:14+00:00| seen| https://t.me/cvedetector/8437 2026-04-02 02:00:14+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mii4bujvia2c...

9.8CVSS4.8AI score0.00186EPSS
Exploits0References2
Circl
Circl
added 2024/10/20 12:24 p.m.8 views

CVE-2024-49329

creationtimestamp| type| source ---|---|--- 2024-10-20 12:24:33+00:00| seen| https://t.me/cvedetector/8411 2026-04-02 04:00:14+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3miicygng222u...

10CVSS4.8AI score0.00501EPSS
Exploits0References2
Circl
Circl
added 2024/10/20 12:24 p.m.4 views

CVE-2024-49621

creationtimestamp| type| source ---|---|--- 2024-10-20 12:24:20+00:00| seen| https://t.me/cvedetector/8403 2026-04-03 07:20:09+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mil6msukal2f...

8.8CVSS4.8AI score0.00216EPSS
Exploits0References2
Circl
Circl
added 2024/10/17 8:49 p.m.6 views

CVE-2024-49219

creationtimestamp| type| source ---|---|--- 2024-10-17 20:49:58+00:00| seen| https://t.me/cvedetector/8221 2026-04-03 09:00:14+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mile7sby3h2v...

8.8CVSS4.8AI score0.0041EPSS
Exploits0References2
GithubExploit
GithubExploit
added 2024/10/09 4:22 p.m.362 views

Exploit for SQL Injection in Paloaltonetworks Expedition

CVE-2024-9465: Palo Alto Expedition Unauthenticated SQL Inject...

9.2CVSS10AI score0.99597EPSS
Exploits3
Circl
Circl
added 2024/09/26 6:25 p.m.16 views

CVE-2023-36039

creationtimestamp| type| source ---|---|--- 2024-09-26 18:25:07+00:00| seen| https://www.thezdi.com/blog/2024/9/25/exploiting-exchange-powershell-after-proxynotshell-part-4-no-argument-constructor...

8CVSS6.8AI score0.72992EPSS
Exploits0References1
Circl
Circl
added 2024/09/10 5:25 p.m.10 views

CVE-2024-38228

creationtimestamp| type| source ---|---|--- 2024-09-10 17:25:32+00:00| seen| https://www.thezdi.com/blog/2024/9/10/the-september-2024-security-update-review...

7.2CVSS6.8AI score0.04178EPSS
Exploits0References1
Circl
Circl
added 2024/09/10 5:25 p.m.25 views

CVE-2024-38014

creationtimestamp| type| source ---|---|--- 2024-09-10 17:25:32+00:00| seen| https://www.thezdi.com/blog/2024/9/10/the-september-2024-security-update-review 2024-09-11 04:00:00+00:00| seen| https://www.govcert.gov.hk/en/alertsdetail.php?id=1368 2024-09-11 09:47:58+00:00| exploited|...

7.8CVSS7.4AI score0.06008EPSS
Exploits2References24
Packet Storm
Packet Storm
added 2024/08/31 12:0 a.m.161 views

NIS bootparamd Domain Name Disclosure

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'NIS bootparamd Domain Name Disclosure', 'Description' = %q This module discloses the NIS domain name from bootparamd. You must know a client...

7.4AI score
Exploits0
Rows per page
Query Builder