Lucene search
+L

265 matches found

OSV
OSV
added 2023/09/04 12:15 p.m.13 views

CVE-2023-4216

The Orders Tracking for WooCommerce WordPress plugin before 1.2.6 doesn't validate the fileurl parameter when importing a CSV file, allowing high privilege users with the managewoocommerce capability to access any file on the web server via a Traversal attack. The content retrieved is however...

2.7CVSS7.3AI score0.00545EPSS
Exploits2References1
Prion
Prion
added 2023/09/04 12:15 p.m.18 views

Spoofing

The Orders Tracking for WooCommerce WordPress plugin before 1.2.6 doesn't validate the fileurl parameter when importing a CSV file, allowing high privilege users with the managewoocommerce capability to access any file on the web server via a Traversal attack. The content retrieved is however...

3.3CVSS4.1AI score0.00545EPSS
Exploits2References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/09/04 11:27 a.m.17 views

CVE-2023-4216 Orders Tracking for WooCommerce < 1.2.6 - Admin+ Arbitrary File Access/Read

The Orders Tracking for WooCommerce WordPress plugin before 1.2.6 doesn't validate the fileurl parameter when importing a CSV file, allowing high privilege users with the managewoocommerce capability to access any file on the web server via a Traversal attack. The content retrieved is however...

3.5AI score0.00545EPSS
Exploits2References1
CNNVD
CNNVD
added 2023/09/04 12:0 a.m.17 views

WordPress plugin Orders Tracking for WooCommerce path traversal vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A path traversal vulnerability in the...

2.7CVSS6.6AI score0.00545EPSS
Exploits2References2
Huntr
Huntr
added 2023/08/14 11:2 a.m.17 views

Stored XSS via user's Username

Description The application allows creating users with Username containing Malicious HTML/Javascript that can be executed in the users’ privileged context during the user editing process or visiting a phishing link. Proof of Concept Step 1: A privileged user creates a normal user account with...

6.3AI score
Exploits0References1
Exploit DB
Exploit DB
added 2023/05/23 12:0 a.m.236 views

ChurchCRM v4.5.4 - Reflected XSS via Image (Authenticated)

Exploit Title: ChurchCRM v4.5.4 - Reflected XSS via Image Authenticated Date: 2023-04-17 Exploit Author: Rahad Chowdhury Vendor Homepage: http://churchcrm.io/ Software Link: https://github.com/ChurchCRM/CRM/releases/tag/4.5.4 Version: 4.5.4 Tested on: Windows 10, PHP 7.4.29, Apache 2.4.53 CVE:...

4.8CVSS5.2AI score0.01508EPSS
Exploits3
BDU FSTEC
BDU FSTEC
added 2023/05/22 12:0 a.m.8 views

Vulnerability of EVlink City parking charging station software. Issues with EVlink Parking and EVlink Smart Wallbox, which arise due to incorrect neutralization during the creation of web pages. This allows a malicious actor to inject arbitrary codes during CSV file import or parameter changes at the station.

The software vulnerabilities of EVlink City parking stations. EVlink Parking and EVlink Smart Wallbox have vulnerabilities due to incorrect neutralization during the creation of their web pages. This allows unauthorized individuals to inject arbitrary codes during CSV file import or parameter...

5.5CVSS6.1AI score0.00472EPSS
Exploits0References4
Packet Storm
Packet Storm
added 2023/05/19 12:0 a.m.326 views

ChurchCRM 4.5.4 Cross Site Scripting

Exploit Title: ChurchCRM v4.5.4 - Reflected XSS via Image Authenticated Date: 2023-04-17 Exploit Author: Rahad Chowdhury Vendor Homepage: http://churchcrm.io/ Software Link: https://github.com/ChurchCRM/CRM/releases/tag/4.5.4 Version: 4.5.4 Tested on: Windows 10, PHP 7.4.29, Apache 2.4.53 CVE:...

7.1AI score0.01508EPSS
Exploits3
0day.today
0day.today
added 2023/05/19 12:0 a.m.308 views

ChurchCRM 4.5.4 Cross Site Scripting Vulnerability

Exploit Title: ChurchCRM v4.5.4 - Reflected XSS via Image Authenticated Exploit Author: Rahad Chowdhury Vendor Homepage: http://churchcrm.io/ Software Link: https://github.com/ChurchCRM/CRM/releases/tag/4.5.4 Version: 4.5.4 Tested on: Windows 10, PHP 7.4.29, Apache 2.4.53 CVE: CVE-2023-31699 Step...

4.8CVSS7.1AI score0.01508EPSS
Exploits3
Huntr
Huntr
added 2023/05/04 6:10 a.m.22 views

Cross-site Scripting and CSP Bypass in app.diagrams.net

Description The application allows the user to import a CSV template into the schema, but does not clean the input from the columns resulting in any javascript code being executed. Proof of Concept Example CSV import. Use for comments and for configuration. Paste CSV below. The following names ar...

5.8CVSS7AI score0.00534EPSS
Exploits0References1
NVD
NVD
added 2023/04/03 7:15 p.m.36 views

CVE-2022-43771

Hitachi Vantara Pentaho Business Analytics Server versions before 9.4.0.0 and 9.3.0.1, including 8.3.x, using the Pentaho Data Access plugin exposes a service endpoint for CSV import which allows a user supplied path to access resources that are out of bounds...

6.5CVSS6.5AI score0.23894EPSS
Exploits0References1
OSV
OSV
added 2023/04/03 7:15 p.m.8 views

CVE-2022-43771

Hitachi Vantara Pentaho Business Analytics Server versions before 9.4.0.0 and 9.3.0.1, including 8.3.x, using the Pentaho Data Access plugin exposes a service endpoint for CSV import which allows a user supplied path to access resources that are out of bounds...

6.5CVSS5.8AI score0.23894EPSS
Exploits0References1
Prion
Prion
added 2023/04/03 7:15 p.m.25 views

Design/Logic Flaw

Hitachi Vantara Pentaho Business Analytics Server versions before 9.4.0.0 and 9.3.0.1, including 8.3.x, using the Pentaho Data Access plugin exposes a service endpoint for CSV import which allows a user supplied path to access resources that are out of bounds...

4CVSS6.5AI score0.23894EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/04/03 6:40 p.m.9 views

CVE-2022-43771 Hitachi Vantara Pentaho Business Analytics Server - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Hitachi Vantara Pentaho Business Analytics Server versions before 9.4.0.0 and 9.3.0.1, including 8.3.x, using the Pentaho Data Access plugin exposes a service endpoint for CSV import which allows a user supplied path to access resources that are out of bounds...

6.5CVSS6.5AI score0.23894EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/04/03 6:40 p.m.38 views

CVE-2022-43771 Hitachi Vantara Pentaho Business Analytics Server - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Hitachi Vantara Pentaho Business Analytics Server versions before 9.4.0.0 and 9.3.0.1, including 8.3.x, using the Pentaho Data Access plugin exposes a service endpoint for CSV import which allows a user supplied path to access resources that are out of bounds...

6.5CVSS6.7AI score0.23894EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2023/02/15 6:16 a.m.6 views

SUSE CVE-2005-4190

Multiple cross-site scripting XSS vulnerabilities in Horde Application Framework before 3.0.8 allow remote authenticated users to inject arbitrary web script or HTML via multiple vectors, as demonstrated by 1 the identity field, 2 Category and 3 Label search fields, 4 the Mobile Phone field, and ...

3.5CVSS5.9AI score0.01598EPSS
Exploits0References5
NVD
NVD
added 2023/02/09 10:15 p.m.23 views

CVE-2023-24686

An issue in the CSV Import function of ChurchCRM v4.5.3 and below allows attackers to execute arbitrary code via importing a crafted CSV file...

4.8CVSS5.7AI score0.00658EPSS
Exploits1References3
Prion
Prion
added 2023/02/09 10:15 p.m.12 views

Code injection

An issue in the CSV Import function of ChurchCRM v4.5.3 and below allows attackers to execute arbitrary code via importing a crafted CSV file...

4.3CVSS5.7AI score0.00658EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2023/02/09 12:0 a.m.59 views

CVE-2023-24686

CVE-2023-24686 affects ChurchCRM v4.5.3 and earlier. The vulnerability resides in the CSV Import function, enabling an attacker to execute arbitrary code by importing a crafted CSV file. The available sources (NVD, RH, OSV, CNVD-style records, CVE feeds) consistently describe the issue as a code-...

4.8CVSS5.7AI score0.00658EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichment
added 2023/02/09 12:0 a.m.6 views

CVE-2023-24686

An issue in the CSV Import function of ChurchCRM v4.5.3 and below allows attackers to execute arbitrary code via importing a crafted CSV file...

8AI score0.00658EPSS
Exploits1References3
Rows per page
Query Builder