CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

310 matches found

OSV•added 2019/12/05 4:15 a.m.•2 views

CVE-2019-19589

The Lever PDF Embedder plugin 4.4 for WordPress does not block the distribution of polyglot PDF documents that are valid JAR archives. Note: It has been argued that "The vulnerability reported in PDF Embedder Plugin is not valid as the plugin itself doesn't control or manage the file upload...

9.8CVSS5.7AI score0.01771EPSS

Exploits1References2

Prion•added 2019/12/05 4:15 a.m.•18 views

Design/Logic Flaw

DISPUTED The Lever PDF Embedder plugin 4.4 for WordPress does not block the distribution of polyglot PDF documents that are valid JAR archives. Note: It has been argued that "The vulnerability reported in PDF Embedder Plugin is not valid as the plugin itself doesn't control or manage the file...

7.5CVSS9.4AI score0.01771EPSS

Exploits1References2Affected Software1

CVE•added 2019/12/05 3:16 a.m.•74 views

CVE-2019-19589

The CVE-2019-19589 affects the Lever PDF Embedder plugin for WordPress (v4.4). The vulnerability stems from the plugin not blocking polyglot PDF documents that are valid JAR archives during distribution, with the upload process controlled by WordPress core rather than the plugin itself. This mean...

9.8CVSS9.3AI score0.01771EPSS

Exploits1References2Affected Software1

Cvelist•added 2019/12/05 3:16 a.m.•25 views

CVE-2019-19589

9.5AI score0.01771EPSS

Exploits1References2

Vulnrichment•added 2019/12/05 3:16 a.m.•19 views

CVE-2019-19589

6.9AI score0.01771EPSS

Exploits1References2

Positive Technologies•added 2019/12/05 12:0 a.m.•4 views

PT-2019-15878 · Lever +1 · Lever Pdf Embedder +1

Name of the Vulnerable Software and Affected Versions: The Lever PDF Embedder plugin version 4.4 for WordPress Description: The issue concerns the distribution of polyglot PDF documents that are valid JAR archives. However, it has been argued that the plugin itself does not control the file uploa...

9.8CVSS6.9AI score0.01771EPSS

Exploits1References3

OpenVAS•added 2019/08/27 12:0 a.m.•21 views

WordPress Google Doc Embedder Plugin < 2.6.2 Multiple Vulnerabilities

The WordPress plugin SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.113474";...

7AI score

Exploits0References1

OpenVAS•added 2019/08/27 12:0 a.m.•19 views

WordPress Google Doc Embedder Plugin < 2.6.1 XSS Vulnerability

6.1CVSS6.3AI score0.00951EPSS

Exploits0References1

OSV•added 2019/08/14 4:15 p.m.•5 views

CVE-2016-10880

The google-document-embedder plugin before 2.6.1 for WordPress has XSS...

6.1CVSS5.8AI score0.00951EPSS

Exploits0References1

OSV•added 2019/08/14 4:15 p.m.•4 views

CVE-2016-10882

The google-document-embedder plugin before 2.6.2 for WordPress has CSRF...

8.8CVSS5.8AI score

Exploits0References1

NVD•added 2019/08/14 4:15 p.m.•10 views

CVE-2016-10881

The google-document-embedder plugin before 2.6.2 for WordPress has XSS...

6.1CVSS6.4AI score0.00951EPSS

Exploits0References1

NVD•added 2019/08/14 4:15 p.m.•14 views

CVE-2016-10880

The google-document-embedder plugin before 2.6.1 for WordPress has XSS...

6.1CVSS6.4AI score0.00951EPSS

Exploits0References1

OSV•added 2019/08/14 4:15 p.m.•3 views

CVE-2016-10881

The google-document-embedder plugin before 2.6.2 for WordPress has XSS...

6.1CVSS5.8AI score0.00951EPSS

Exploits0References1

Prion•added 2019/08/14 4:15 p.m.•12 views

Cross site scripting

The google-document-embedder plugin before 2.6.1 for WordPress has XSS...

4.3CVSS7.2AI score0.00951EPSS

Exploits0References1Affected Software1

Prion•added 2019/08/14 4:15 p.m.•12 views

Cross site scripting

The google-document-embedder plugin before 2.6.2 for WordPress has XSS...

4.3CVSS7.2AI score0.00951EPSS

Exploits0References1Affected Software1

Prion•added 2019/08/14 4:15 p.m.•12 views

Cross site request forgery (csrf)

The google-document-embedder plugin before 2.6.2 for WordPress has CSRF...

6.8CVSS7.2AI score0.00708EPSS

Exploits0References1Affected Software1

Cvelist•added 2019/08/14 3:37 p.m.•16 views

CVE-2016-10880

The google-document-embedder plugin before 2.6.1 for WordPress has XSS...

6.4AI score0.00951EPSS

Exploits0References1

CVE•added 2019/08/14 3:37 p.m.•52 views

CVE-2016-10880

The CVE-2016-10880 entry concerns the WordPress plugin google-document-embedder . The vulnerable component is the plugin prior to version 2.6.1 , which is affected by a XSS flaw. Red Hat and multiple scanners corroborate the same issue. The exact root cause details are not provided in the documen...

6.1CVSS6.3AI score0.00951EPSS

Exploits0References1Affected Software1

CVE•added 2019/08/14 3:37 p.m.•52 views

CVE-2016-10881

The CVE-2016-10881 entry concerns the WordPress Google Document Embedder plugin prior to version 2.6.2, which is reported to have an XSS vulnerability. Since multiple connected sources (RH advisory, NVD/NVD-derived entries, and OpenVAS data) confirm the same issue but do not provide vendor-specif...

6.1CVSS6.9AI score0.00951EPSS

Exploits0References1Affected Software1

Cvelist•added 2019/08/14 3:37 p.m.•16 views

CVE-2016-10881

The google-document-embedder plugin before 2.6.2 for WordPress has XSS...

7AI score0.00951EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by