Lucene search
K

127 matches found

CVE
CVE
added 2025/08/14 10:34 a.m.20 views

CVE-2025-49267

CVE-2025-49267 affects WordPress plugin Frontend Admin by DynamiApps (versions up to and including 3.28.3). The issue is an SQL Injection due to improper neutralization of special elements, enabling blind SQL injection. Public references confirm affected software and version range; multiple sourc...

8.5CVSS5.9AI score0.00251EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/08/14 12:0 a.m.5 views

WordPress plugin Frontend Admin by DynamiApps SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A SQL injection vulnerability exists in...

8.5CVSS7.4AI score0.00251EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/08/14 12:0 a.m.4 views

PT-2025-33196 · Dynamiapps · Shabti Kaplan Frontend Admin

Name of the Vulnerable Software and Affected Versions: Shabti Kaplan Frontend Admin versions through 3.28.3 Description: An improper neutralization of special elements used in an SQL command vulnerability 'SQL Injection' exists in Shabti Kaplan Frontend Admin by DynamiApps, allowing for blind SQL...

8.5CVSS7AI score0.00251EPSS
Exploits0References3
Patchstack
Patchstack
added 2025/08/12 12:34 p.m.5 views

WordPress Frontend Admin by DynamiApps plugin <= 3.28.3 - SQL Injection vulnerability

SQL Injection vulnerability discovered by Frissi0n in WordPress Plugin Frontend Admin by DynamiApps versions = 3.28.3...

8.5CVSS7.8AI score0.00251EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVE
added 2025/07/06 11:21 a.m.11 views

CVE-2025-49303

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Shabti Kaplan Frontend Admin by DynamiApps acf-frontend-form-element allows Path Traversal.This issue affects Frontend Admin by DynamiApps: from n/a through = 3.28.7...

6.8CVSS5.9AI score0.0041EPSS
Exploits0References1
NVD
NVD
added 2025/07/04 12:15 p.m.6 views

CVE-2025-49303

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Shabti Kaplan Frontend Admin by DynamiApps acf-frontend-form-element allows Path Traversal.This issue affects Frontend Admin by DynamiApps: from n/a through = 3.28.7...

6.8CVSS0.0041EPSS
Exploits0References1
CVE
CVE
added 2025/07/04 11:18 a.m.26 views

CVE-2025-49303

CVE-2025-49303 — WordPress plugin Frontend Admin by DynamiApps

6.8CVSS5.9AI score0.0041EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/07/04 11:18 a.m.14 views

CVE-2025-49303 WordPress Frontend Admin by DynamiApps plugin <= 3.28.7 - Arbitrary File Download Vulnerability

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Shabti Kaplan Frontend Admin by DynamiApps acf-frontend-form-element allows Path Traversal.This issue affects Frontend Admin by DynamiApps: from n/a through = 3.28.7...

6.8CVSS0.0041EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/04 11:18 a.m.7 views

CVE-2025-49303 WordPress Frontend Admin by DynamiApps plugin <= 3.28.7 - Arbitrary File Download Vulnerability

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Shabti Kaplan Frontend Admin by DynamiApps acf-frontend-form-element allows Path Traversal.This issue affects Frontend Admin by DynamiApps: from n/a through = 3.28.7...

6.8CVSS5.9AI score0.0041EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/07/04 12:0 a.m.8 views

PT-2025-27922 · Dynamiapps · Frontend Admin

Name of the Vulnerable Software and Affected Versions: Frontend Admin by DynamiApps versions n/a through 3.28.7 Description: The issue is related to an Improper Limitation of a Pathname to a Restricted Directory, also known as 'Path Traversal'. This allows for Path Traversal in the affected...

6.8CVSS5.9AI score0.0041EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/07/04 12:0 a.m.8 views

WordPress plugin Frontend Admin by DynamiApps Path Traversal Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A path traversal...

6.8CVSS5.8AI score0.0041EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 2:18 a.m.7 views

CVE-2023-51411

Unrestricted Upload of File with Dangerous Type vulnerability in Shabti Kaplan Frontend Admin by DynamiApps.This issue affects Frontend Admin by DynamiApps: from n/a through 3.18.3...

10CVSS8.6AI score0.00617EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/27 2:27 p.m.7 views

CVE-2025-26987

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Shabti Kaplan Frontend Admin by DynamiApps acf-frontend-form-element allows Reflected XSS.This issue affects Frontend Admin by DynamiApps: from n/a through = 3.25.17...

7.1CVSS7.2AI score0.00286EPSS
Exploits0References1
NVD
NVD
added 2025/02/25 3:15 p.m.13 views

CVE-2025-26987

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Shabti Kaplan Frontend Admin by DynamiApps acf-frontend-form-element allows Reflected XSS.This issue affects Frontend Admin by DynamiApps: from n/a through = 3.25.17...

7.1CVSS0.00286EPSS
Exploits0References1
OSV
OSV
added 2025/02/25 3:15 p.m.5 views

CVE-2025-26987

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Shabti Kaplan Frontend Admin by DynamiApps allows Reflected XSS. This issue affects Frontend Admin by DynamiApps: from n/a through 3.25.17...

6.1CVSS7.3AI score0.00286EPSS
Exploits0References1
CVE
CVE
added 2025/02/25 2:16 p.m.66 views

CVE-2025-26987

CVE-2025-26987 describes a Reflected Cross-Site Scripting (XSS) vulnerability in Frontend Admin by DynamiApps (often listed as Frontend Admin by DynamiApps). The initial description states an XSS condition in the Shabti Kaplan Frontend Admin by DynamiApps and indicates affected versions from n/a ...

7.1CVSS7.2AI score0.00286EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/02/25 2:16 p.m.7 views

CVE-2025-26987 WordPress Frontend Admin by DynamiApps plugin <= 3.25.17 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Shabti Kaplan Frontend Admin by DynamiApps acf-frontend-form-element allows Reflected XSS.This issue affects Frontend Admin by DynamiApps: from n/a through = 3.25.17...

7.1CVSS8.6AI score0.00286EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/02/25 2:16 p.m.17 views

CVE-2025-26987 WordPress Frontend Admin by DynamiApps plugin <= 3.25.17 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Shabti Kaplan Frontend Admin by DynamiApps acf-frontend-form-element allows Reflected XSS.This issue affects Frontend Admin by DynamiApps: from n/a through = 3.25.17...

7.1CVSS0.00286EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/02/25 12:0 a.m.5 views

WordPress plugin Frontend Admin by DynamiApps 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists i...

7.1CVSS8AI score0.00286EPSS
Exploits0References2
Patchstack
Patchstack
added 2025/02/23 9:9 p.m.3 views

WordPress Frontend Admin by DynamiApps plugin <= 3.25.17 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by Dimas Maulana Patchstack Alliance in WordPress Plugin Frontend Admin by DynamiApps versions = 3.25.17...

7.1CVSS6.1AI score0.00286EPSS
Exploits0Affected Software1
Rows per page
Query Builder