Lucene search
K

27 matches found

Nuclei
Nuclei
added 9 hours ago8 views

Dyn Business Panel Plugin <= 1.0.0 - Cross-Site Scripting

Dyn Business Panel WordPress plugin = 1.0.0 contains a reflected cross-site scripting caused by lack of sanitization and escaping of a parameter in output, letting attackers execute scripts in the context of high privilege users, exploit requires victim to click a malicious link. id: CVE-2024-130...

7.1CVSS7.1AI score0.00522EPSS
Exploits1References2
Patchstack
Patchstack
added 2025/12/31 12:0 a.m.6 views

WordPress Dyn Business Panel plugin <= 1.0.0 - Reflected XSS vulnerability

Reflected XSS vulnerability discovered by Bob Matyas in WordPress Plugin Dyn Business Panel versions = 1.0.0...

7.1CVSS8.3AI score0.00316EPSS
Exploits1References1Affected Software1
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-51311

Malicious code in bioql PyPI...

7.1CVSS8.7AI score0.00154EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-51310

Malicious code in bioql PyPI...

7.1CVSS8.7AI score0.00316EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-51309

Malicious code in bioql PyPI...

7.1CVSS8.7AI score0.00522EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:9 a.m.7 views

CVE-2024-13055

The Dyn Business Panel WordPress plugin through 1.0.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

7.1CVSS6.1AI score0.00522EPSS
Exploits1References1
Patchstack
Patchstack
added 2025/01/27 11:28 p.m.6 views

WordPress Dyn Business Panel plugin <= 1.0.0 - Stored XSS via CSRF vulnerability

Stored XSS via CSRF vulnerability discovered by Bob Matyas in WordPress Plugin Dyn Business Panel versions = 1.0.0...

7.1CVSS6AI score0.00154EPSS
Exploits1References1Affected Software1
Patchstack
Patchstack
added 2025/01/27 11:27 p.m.5 views

WordPress Dyn Business Panel plugin <= 1.0.0 - Reflected XSS vulnerability

Reflected XSS vulnerability discovered by Hassan Khan Yusufzai - Splint3r7 in WordPress Plugin Dyn Business Panel versions = 1.0.0...

7.1CVSS6.4AI score0.00522EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2025/01/27 6:15 a.m.3 views

CVE-2024-13056

The Dyn Business Panel WordPress plugin through 1.0.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

7.1CVSS5.8AI score0.00316EPSS
Exploits1References1
NVD
NVD
added 2025/01/27 6:15 a.m.28 views

CVE-2024-13056

The Dyn Business Panel WordPress plugin through 1.0.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

7.1CVSS0.00316EPSS
Exploits1References1
OSV
OSV
added 2025/01/27 6:15 a.m.3 views

CVE-2024-13055

The Dyn Business Panel WordPress plugin through 1.0.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

7.1CVSS5.8AI score0.00522EPSS
Exploits1References1
NVD
NVD
added 2025/01/27 6:15 a.m.19 views

CVE-2024-13055

The Dyn Business Panel WordPress plugin through 1.0.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

7.1CVSS0.00522EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/01/27 6:0 a.m.6 views

CVE-2024-13057 Dyn Business Panel <= 1.0.0 - Stored XSS via CSRF

The Dyn Business Panel WordPress plugin through 1.0.0 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS payloads via a CSRF attack...

7.2AI score0.00154EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/01/27 6:0 a.m.7 views

CVE-2024-13056 Dyn Business Panel <= 1.0.0 - Reflected XSS

The Dyn Business Panel WordPress plugin through 1.0.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

7AI score0.00316EPSS
Exploits1References1
CVE
CVE
added 2025/01/27 6:0 a.m.56 views

CVE-2024-13056

CVE-2024-13056 applies to the Dyn Business Panel WordPress plugin (versions up to 1.0.0). The issue is a Reflected Cross‑Site Scripting caused by insufficient sanitisation/escaping of a parameter, which could be exploited against high-privilege users such as admins. The connected documents corrob...

7.1CVSS5.8AI score0.00316EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2025/01/27 6:0 a.m.31 views

CVE-2024-13057 Dyn Business Panel <= 1.0.0 - Stored XSS via CSRF

The Dyn Business Panel WordPress plugin through 1.0.0 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS payloads via a CSRF attack...

0.00154EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/01/27 6:0 a.m.28 views

CVE-2024-13056 Dyn Business Panel <= 1.0.0 - Reflected XSS

The Dyn Business Panel WordPress plugin through 1.0.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

0.00316EPSS
Exploits1References1
CVE
CVE
added 2025/01/27 6:0 a.m.50 views

CVE-2024-13057

CVE-2024-13057 affects the Dyn Business Panel WordPress plugin (versions up to 1.0.0). The connected sources describe a missing CSRF check in some areas and lack of input sanitisation/escaping, enabling a logged-in admin to inject Stored XSS via a CSRF attack. The CVE notes this as a Stored Cross...

7.1CVSS5.6AI score0.00154EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2025/01/27 6:0 a.m.27 views

CVE-2024-13055 Dyn Business Panel <= 1.0.0 - Reflected XSS

The Dyn Business Panel WordPress plugin through 1.0.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

0.00522EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/01/27 6:0 a.m.7 views

CVE-2024-13055 Dyn Business Panel <= 1.0.0 - Reflected XSS

The Dyn Business Panel WordPress plugin through 1.0.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

7AI score0.00522EPSS
Exploits1References1
Rows per page
Query Builder