Lucene search
K

23 matches found

CVE
CVE
added 2026/06/29 1:36 p.m.13 views

CVE-2026-57336

CVE-2026-57336 affects the WordPress Jobify theme up to version 4.3.2 and is an unauthenticated Cross-Site Scripting (XSS) vulnerability. The CVSS 3.1 vector (AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L) indicates network access with low attack complexity, no privileges required, user interaction needed,...

7.1CVSS5.8AI score0.00146EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/29 1:36 p.m.33 views

CVE-2026-57336 WordPress Jobify theme <= 4.3.2 - Cross Site Scripting (XSS) vulnerability

Unauthenticated Cross Site Scripting XSS in Jobify = 4.3.2 versions...

7.1CVSS0.00146EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/06/29 1:36 p.m.6 views

CVE-2026-57336

Unauthenticated Cross Site Scripting XSS in Jobify = 4.3.2 versions...

7.1CVSS5.8AI score0.00146EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/05/12 4:39 p.m.6 views

CVE-2026-44343

WGDashboard is a dashboard for WireGuard VPN. Prior to 4.3.2, there are critical vulnerabilities affecting WGDashboard that, if exploited, could allow unauthorized parties to access the host file system without authentication. This vulnerability is fixed in 4.3.2...

9.3CVSS5.8AI score0.00434EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2026/05/01 6:45 p.m.3 views

MINI-7MJV-4327-52HM

Bulletin has no description...

5.3CVSS5.7AI score0.0041EPSS
Exploits0
CNNVD
CNNVD
added 2026/03/25 12:0 a.m.9 views

N2W 安全漏洞

N2W is a data backup and recovery software developed by N2W Corporation. Versions of N2W prior to 4.3.2 and 4.4.1 contained security vulnerabilities. These vulnerabilities were due to deceptive vulnerabilities, which could lead to remote code execution and theft of account credentials...

9.8CVSS6.5AI score0.00527EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/03/13 11:42 a.m.3 views

CVE-2026-32447 WordPress Atarim plugin <= 4.3.2 - Broken Access Control vulnerability

Missing Authorization vulnerability in Vito Peleg Atarim atarim-visual-collaboration allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Atarim: from n/a through = 4.3.2...

4.3CVSS5.8AI score0.00159EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/05 5:54 a.m.6 views

CVE-2026-28126

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Sizam RH Frontend Publishing Pro allows Reflected XSS.This issue affects RH Frontend Publishing Pro: from n/a before 4.3.4...

7.1CVSS5.8AI score0.00146EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/01/23 2:28 p.m.35 views

CVE-2026-24570 WordPress Edwiser Bridge plugin <= 4.3.2 - Broken Access Control vulnerability

Missing Authorization vulnerability in WisdmLabs Edwiser Bridge edwiser-bridge allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Edwiser Bridge: from n/a through = 4.3.2...

5.4CVSS0.00209EPSS
Exploits0References1
NVD
NVD
added 2025/12/16 9:15 a.m.4 views

CVE-2025-66125

Insertion of Sensitive Information Into Sent Data vulnerability in Nitesh Ultimate Auction ultimate-auction allows Retrieve Embedded Sensitive Data.This issue affects Ultimate Auction : from n/a through = 4.3.3...

5.3CVSS0.0024EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/12/16 8:13 a.m.2 views

CVE-2025-68084 WordPress Ultimate Auction plugin <= 4.3.3 - Broken Access Control vulnerability

Missing Authorization vulnerability in Nitesh Ultimate Auction ultimate-auction allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Ultimate Auction : from n/a through = 4.3.3...

5.4CVSS5.1AI score0.00173EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/12/16 8:12 a.m.28 views

CVE-2025-66125 WordPress Ultimate Auction plugin <= 4.3.3 - Sensitive Data Exposure vulnerability

Insertion of Sensitive Information Into Sent Data vulnerability in Nitesh Ultimate Auction ultimate-auction allows Retrieve Embedded Sensitive Data.This issue affects Ultimate Auction : from n/a through = 4.3.3...

5.3CVSS0.0024EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/11/25 8:50 p.m.7 views

WordPress Spam protection, Anti-Spam, FireWall by CleanTalk plugin <= 6.43.2 - Authorization Bypass via Reverse DNS Spoofing vulnerability

Authorization Bypass via Reverse DNS Spoofing vulnerability discovered by mikemyers in WordPress Plugin Spam protection, AntiSpam, FireWall by CleanTalk versions = 6.43.2...

9.8CVSS7AI score0.15236EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2024/06/28 2:15 p.m.4 views

AZL-43018 CVE-2024-29038 affecting package tpm2-tools for versions less than 4.3.2-2

tpm2-tools is the source repository for the Trusted Platform Module TPM2.0 tools. A malicious attacker can generate arbitrary quote data which is not detected by tpm2 checkquote. This issue was patched in version 5.7...

4.3CVSS5.9AI score0.0037EPSS
Exploits1References1
CNNVD
CNNVD
added 2024/06/16 12:0 a.m.7 views

iRODS Security Vulnerabilities

iRODS is an open source data management software from iRODS Open Source. A security vulnerability exists in iRODS versions prior to 4.3.2, which stems from the fact that irodsServerMonPerf attempts to use a path that is not a directory...

7.5CVSS6.7AI score0.00435EPSS
Exploits0References4
CNNVD
CNNVD
added 2024/06/16 12:0 a.m.4 views

iRODS Security Vulnerabilities

iRODS is an open source data management software from iRODS Open Source. A security vulnerability exists in iRODS versions prior to 4.3.2, which stems from a questionable dependency of the msiSendMail function on the mail binary...

9.8CVSS6.7AI score0.00608EPSS
Exploits0References5
Circl
Circl
added 2023/08/15 10:31 p.m.6 views

CVE-2023-4326

creationtimestamp| type| source ---|---|--- 2023-08-15 22:31:05+00:00| seen| https://t.me/cibsecurity/68585 2023-10-16 14:42:04+00:00| exploited| https://t.me/informationsecuritychannel/50842...

7.5CVSS7.3AI score0.00334EPSS
Exploits0References2
OSV
OSV
added 2021/08/25 4:15 p.m.2 views

UBUNTU-CVE-2020-18976

Buffer Overflow in Tcpreplay v4.3.2 allows attackers to cause a Denial of Service via the 'dochecksum' function in 'checksum.c'. It can be triggered by sending a crafted pcap file to the 'tcpreplay-edit' binary. This issue is different than CVE-2019-8381...

5.5CVSS7.3AI score0.0066EPSS
Exploits1References3
OSV
OSV
added 2020/02/28 5:15 p.m.2 views

DEBIAN-CVE-2020-5247

In Puma RubyGem before 4.3.2 and before 3.12.3, if an application using Puma allows untrusted input in a response header, an attacker can use newline characters i.e. CR, LF or/r, /n to end the header and inject malicious content, such as additional headers or an entirely new response body. This...

7.5CVSS6.2AI score0.02487EPSS
Exploits0References1
OSV
OSV
added 2019/12/13 6:15 p.m.4 views

CVE-2019-19793

In Cyxtera AppGate SDP Client 4.1.x through 4.3.x before 4.3.2 on Windows, a local or remote user from the same domain can gain privileges...

8.8CVSS5.8AI score0.00964EPSS
Exploits0References2
Rows per page
Query Builder