CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2024-28480

Malicious code in bioql PyPI...

9.6CVSS8.6AI score0.00112EPSS

Exploits0References1

RedhatCVE•added 2025/02/05 9:33 a.m.•5 views

CVE-2024-30560

Cross-Site Request Forgery CSRF vulnerability in 大侠WP DX-Watermark.This issue affects DX-Watermark: from n/a through 1.0.4...

9.6CVSS8.6AI score0.00112EPSS

Exploits0References1

NVD•added 2024/04/25 9:15 a.m.•8 views

CVE-2024-30560

Cross-Site Request Forgery CSRF vulnerability in 大侠WP DX-Watermark.This issue affects DX-Watermark: from n/a through 1.0.4...

9.6CVSS9.4AI score0.00112EPSS

Exploits0References1

CVE•added 2024/04/25 8:41 a.m.•65 views

CVE-2024-30560

CVE-2024-30560 describes a Cross-Site Request Forgery (CSRF) vulnerability in the WordPress plugin DX-Watermark, affecting DX-Watermark versions up to 1.0.4. The entry shows a high base CVSS score (3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H) with a base score of 9.6 and a CRITICAL severity, indicati...

9.6CVSS8.5AI score0.00112EPSS

Exploits0References1

Vulnrichment•added 2024/04/25 8:41 a.m.•17 views

CVE-2024-30560 WordPress DX-Watermark plugin <= 1.0.4 - CSRF to Arbitrary File Upload and XSS vulnerability

Cross-Site Request Forgery CSRF vulnerability in 大侠WP DX-Watermark.This issue affects DX-Watermark: from n/a through 1.0.4...

9.6CVSS7AI score0.00112EPSS

Exploits0References1

Cvelist•added 2024/04/25 8:41 a.m.•14 views

CVE-2024-30560 WordPress DX-Watermark plugin <= 1.0.4 - CSRF to Arbitrary File Upload and XSS vulnerability

Cross-Site Request Forgery CSRF vulnerability in 大侠WP DX-Watermark.This issue affects DX-Watermark: from n/a through 1.0.4...

9.6CVSS9.5AI score0.00112EPSS

Exploits0References1

CNNVD•added 2024/04/25 12:0 a.m.•2 views

WordPress plugin DX-Watermark 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site reques...

9.6CVSS8.3AI score0.00112EPSS

Exploits0References2

WPVulnDB•added 2024/04/03 12:0 a.m.•14 views

DX-Watermark <= 1.0.4 - Cross-Site Request Forgery

Description The DX-Watermark plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.0.4. This is due to missing or incorrect nonce validation. This makes it possible for unauthenticated attackers to upload arbitrary files and inject malicious web...

9.6CVSS6.3AI score0.00112EPSS

Exploits0References1

Patchstack•added 2024/03/29 11:4 a.m.•3 views

WordPress DX-Watermark plugin <= 1.0.4 - CSRF to Arbitrary File Upload and XSS vulnerability

CSRF to Arbitrary File Upload and XSS vulnerability discovered by Dimas Maulana Patchstack Alliance in WordPress Plugin DX-Watermark versions = 1.0.4...

9.6CVSS8.1AI score0.00112EPSS

Exploits0Affected Software1

Patchstack•added 2024/03/29 12:0 a.m.•8 views

WordPress DX-Watermark Plugin <= 1.0.4 is vulnerable to Cross Site Request Forgery (CSRF)

Software DX-Watermark Type Plugin Vulnerable versions = 1.0.4 Fixed in N/A OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-30560 Patch priority Low CVSS severity Low 9.6 Developer Claim ownership PSID 545443b5c1d7 Credits Dimas Maulana Required...

9.6CVSS6.6AI score0.00112EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by