Lucene search
K

15 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 9:52 a.m.9 views

CVE-2020-10480

CSRF in admin/add-category.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to add a new category via a crafted request...

4.3CVSS6.8AI score0.00567EPSS
Exploits1References1
EUVD
EUVD
added 2025/12/19 3:31 p.m.4 views

EUVD-2025-204538

A vulnerability was detected in Campcodes Supplier Management System 1.0. This affects an unknown function of the file /admin/addcategory.php. Performing manipulation of the argument txtCategoryName results in sql injection. The attack is possible to be carried out remotely. The exploit is now...

7.5CVSS7.2AI score0.00371EPSS
Exploits1References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-2933

Malware in sbrugna...

4.3CVSS4.9AI score0.00567EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2017-6657

Malware in sbrugna...

4.3CVSS4.8AI score0.01191EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/05/22 10:55 a.m.7 views

CVE-2017-15197

In Kanboard before 1.0.47, by altering form data, an authenticated user can add a new category to a private project of another user...

4.3CVSS6.7AI score0.01191EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/03/03 12:52 p.m.20 views

CVE-2025-1874 SQL injection vulnerability in 101news

SQL injection vulnerability have been found in 101news affecting version 1.0 through the "description" parameter in admin/add-category.php...

9.3CVSS0.00389EPSS
Exploits0References1
OSV
OSV
added 2024/03/13 4:15 p.m.4 views

CVE-2024-0385

The Categorify plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the categorifyAjaxAddCategory function in all versions up to, and including, 1.0.7.4. This makes it possible for authenticated attackers, with subscriber-level access and...

4.3CVSS5.8AI score0.00578EPSS
Exploits0References2
OSV
OSV
added 2023/11/22 4:15 p.m.5 views

CVE-2023-5415

The Funnelforms Free plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the fnsfaddcategory function in versions up to, and including, 3.4. This makes it possible for authenticated attackers, with subscriber-level permissions and above, to...

4.3CVSS5.8AI score0.00403EPSS
Exploits0References2
OSV
OSV
added 2022/06/06 11:15 p.m.5 views

CVE-2022-28051

The "Add category" functionality inside the "Global Keywords" menu in "SeedDMS" version 6.0.18 and 5.1.25, is prone to stored XSS which allows an attacker to inject malicious javascript code...

5.4CVSS5.8AI score0.00783EPSS
Exploits1References3
CNNVD
CNNVD
added 2022/05/16 12:0 a.m.5 views

Cybozu Garoon 输入验证错误漏洞

Cybozu Garoon is a portal-type OA office system from Cybozu Japan. The system provides portal, e-mail, bookmarks, scheduling, bulletin board, document management, and other functions. An input validation error vulnerability exists in Cybozu Garoon, which stems from insufficient validation of...

4.3CVSS5.3AI score0.00685EPSS
Exploits0References5
OSV
OSV
added 2022/04/13 11:15 p.m.4 views

CVE-2021-43154

Cross Site Scripting XSS vulnerability exists in CMS Made Simple 2.2.15 via the Name field in an Add Category action in moduleinterface.php...

6.1CVSS5.8AI score0.0054EPSS
Exploits0References1
OSV
OSV
added 2022/01/17 1:15 p.m.3 views

CVE-2021-25046

The Modern Events Calendar Lite WordPress plugin before 6.2.0 alloed any logged-in user, even a subscriber user, may add a category whose parameters are incorrectly escaped in the admin panel, leading to stored XSS...

5.4CVSS5.8AI score0.00611EPSS
Exploits2References1
OSV
OSV
added 2021/11/08 6:15 p.m.4 views

CVE-2021-24625

The SpiderCatalog WordPress plugin through 1.7.3 does not sanitise or escape the 'parent' and 'ordering' parameters from the admin dashboard before using them in a SQL statement, leading to a SQL injection when adding a category...

7.2CVSS7.1AI score0.01467EPSS
Exploits2References2
NVD
NVD
added 2020/03/12 2:15 p.m.18 views

CVE-2020-10480

CSRF in admin/add-category.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to add a new category via a crafted request...

4.3CVSS4.5AI score0.00567EPSS
Exploits1References2
OSV
OSV
added 2017/11/12 6:29 p.m.4 views

CVE-2017-16799

In CMS Made Simple 2.2.3.1, in modules/New/action.addcategory.php, stored XSS is possible via the m1name parameter to admin/moduleinterface.php during addition of a category, a related issue to CVE-2010-3882...

5.4CVSS5.8AI score0.00486EPSS
Exploits0References1
Rows per page
Query Builder