CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CNNVD•added 2024/12/13 12:0 a.m.•2 views

WordPress plugin FAQs 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on servers running PHP and MySQL. WordPress plugin is an application plugin. A cross-site scripting vulnerability...

6.5CVSS7.4AI score0.00362EPSS

Patchstack•added 2024/12/06 10:18 p.m.•4 views

WordPress FAQs plugin <= 1.0.2 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by SOPROBRO Patchstack Alliance in WordPress Plugin FAQs versions = 1.0.2...

6.5CVSS6.1AI score0.00362EPSS

Exploits0Affected Software1

OSV•added 2024/07/31 2:39 a.m.•5 views

MAL-2024-7864 Malicious code in @illimity/rtl-faqs-state (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1b3cec0888ebd3cfb912bb1459486caca7109d7fdb2a980c28641e3eef38d451 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Citrix•added 2024/07/14 12:0 a.m.•5 views

Xenserver Storage: Comprehensive Guide

Introduction This article will assist you in resolving issues with unavailable VDI Virtual Disk Image. Overview of the Issue In different situations, XenServer experiences issues with starting VM’s , taking a snapshot or scan of SR’s and failing with error “VDI is not available ”. This article wi...

Citrix•added 2024/07/14 12:0 a.m.•8 views

Xenserver Configuration: Comprehensive Guide

Introduction This article will direct you to resources that provide guidance on configuring basic pools for XenServer Top Knowledge Content Basic Configuration guide for a XenServer Pool CTX128391 - How to Remove a Server from a XenServer Pool that Contains Only One Host CTX216127 - How to change...

Citrix•added 2024/07/14 12:0 a.m.•9 views

Xenserver Upgrade: Comprehensive Guide

Introduction This article aims to assist you in XenServer upgrade process and troubleshooting Overview of the Article This article will assist you in finding resources that discuss upgrading procedures and troubleshooting techniques Appendix: Top Knowledge Content Troubleshooting Common Problems...

Citrix•added 2024/07/14 12:0 a.m.•5 views

Xenserver Networking: Comprehensive Guide

Introduction This article aims to assist you in addressing network-related issues or configurations on XenServer Overview of the Article This article will direct you to additional articles covering networking on XenServer, focusing on configuration and troubleshooting. Appendix: Top Knowledge...

7.1AI score

NVD•added 2024/03/27 6:15 a.m.•10 views

CVE-2024-24842

Deserialization of Untrusted Data vulnerability in Echo Plugins Knowledge Base for Documentation, FAQs with AI Assistance.This issue affects Knowledge Base for Documentation, FAQs with AI Assistance: from n/a through 11.30.2...

8.7CVSS8.7AI score0.00465EPSS

NVD•added 2024/03/25 7:15 p.m.•18 views

CVE-2024-28108

phpMyFAQ is an open source FAQ web application for PHP 8.1+ and MySQL, PostgreSQL and other databases. Due to insufficient validation on the contentLink parameter, it is possible for unauthenticated users to inject HTML code to the page which might affect other users. Also, requires that adding n...

6.1CVSS4.7AI score0.00539EPSS

Exploits1References2

Cvelist•added 2024/03/25 6:52 p.m.•37 views

CVE-2024-28108 phpMyFAQ Stored HTML Injection at contentLink

4.7CVSS5.5AI score0.00539EPSS

Exploits1References2

Patchstack•added 2024/02/02 12:0 a.m.•15 views

WordPress Knowledge Base for Documentation, FAQs with AI Assistance Plugin <= 11.30.2 is vulnerable to PHP Object Injection

Software Knowledge Base for Documentation, FAQs with AI Assistance Type Plugin Vulnerable versions = 11.30.2 Fixed in 11.31.0 OWASP Top 10 A3: Injection Classification PHP Object Injection CVE CVE-2024-24842 Patch priority High CVSS severity High 8.7 Developer Claim ownership PSID 6e74033eecde...

8.7CVSS6.8AI score0.00465EPSS

Exploits0References2Affected Software1

Debian•added 2023/07/10 8:45 p.m.•38 views

[SECURITY] [DLA 3489-1] mediawiki security update

Debian LTS Advisory DLA-3489-1 [email protected] https://www.debian.org/lts/security/ Markus Koschany July 10, 2023 https://wiki.debian.org/LTS Package : mediawiki Version : 1:1.31.16-1+deb10u5 CVE ID : CVE-2022-47927 A security issue was discovered in MediaWiki, a website engine for...

5.5CVSS5.9AI score0.00269EPSS

Exploits1

Huntr•added 2023/07/07 8:30 a.m.•17 views

Stored Xss in Question field due to lack of sanitization in Link.php

Description Stored XSS Cross-Site Scripting is a type of web application vulnerability that allows an attacker to inject malicious scripts into a website or web application. Unlike reflected XSS, where the malicious script is embedded in a URL and executed immediately, stored XSS involves the...

4.9CVSS5.6AI score0.00426EPSS

Veeam•added 2023/06/26 12:0 a.m.•25 views

Veeam Cloud Service Provider Case Administrator FAQ

Intended Audience This article contains information that is relevant to Veeam Cloud Service Providers. If you are not a Veeam Cloud Service Provider, please review the following: KB2211: My Account Portal - Role Management FAQ Case Administrator Assignment Restrictions Attempting to assign a case...

6.2AI score

The Hacker News•added 2023/05/16 12:20 p.m.•39 views

Inside Qilin Ransomware: Affiliates Take Home 85% of Ransom Payouts

Ransomware affiliates associated with the Qilin ransomware-as-a-service RaaS scheme earn anywhere between 80% to 85% of each ransom payment, according to new findings from Group-IB. The cybersecurity firm said it was able to infiltrate the group in March 2023, uncovering details about the...

6.5AI score

NVD•added 2023/05/04 1:15 p.m.•19 views

CVE-2023-25962

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Biplob Adhikari Accordion – Multiple Accordion or FAQs Builder plugin = 2.3.0 versions...

5.9CVSS5.4AI score0.00369EPSS