Lucene search
K

2840 matches found

Cvelist
Cvelist
added 2026/03/21 3:26 a.m.28 views

CVE-2026-3996 WP Games Embed <= 0.1beta - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode Attributes

The WP Games Embed plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the game shortcode in all versions up to and including 0.1beta. This is due to insufficient input sanitization and output escaping on user-supplied shortcode attributes such as 'width', 'height', 'src',...

6.4CVSS0.00235EPSS
Exploits0References9
Vulnrichment
Vulnrichment
added 2026/03/21 3:26 a.m.2 views

CVE-2026-3996 WP Games Embed <= 0.1beta - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode Attributes

The WP Games Embed plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the game shortcode in all versions up to and including 0.1beta. This is due to insufficient input sanitization and output escaping on user-supplied shortcode attributes such as 'width', 'height', 'src',...

6.4CVSS6AI score0.00235EPSS
Exploits0References9
Positive Technologies
Positive Technologies
added 2026/03/21 12:0 a.m.8 views

PT-2026-26866

The WP Games Embed plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the game shortcode in all versions up to and including 0.1beta. This is due to insufficient input sanitization and output escaping on user-supplied shortcode attributes such as 'width', 'height', 'src',...

6.4CVSS6AI score0.00235EPSS
Exploits0References10
EUVD
EUVD
added 2026/03/20 7:34 a.m.4 views

EUVD-2026-13622

exactyl is a customisable game management panel and billing system. Commits after 025e8dbb0daaa04054276bda814d922cf4af58da and before e28edb204e80efab628d1241198ea4f079779cfd inject server-side objects into client-side JavaScript through resources/views/templates/wrapper.blade.php. Using unescape...

5.8CVSS5.9AI score0.00165EPSS
Exploits1References2
EUVD
EUVD
added 2026/03/16 6:32 p.m.3 views

EUVD-2025-208755

Doom Launcher 3.8.1.0 is vulnerable to Directory Traversal due to missing file path validation during the extraction of game files...

5.8AI score0.00651EPSS
Exploits0References3
NVD
NVD
added 2026/03/16 6:16 p.m.7 views

CVE-2025-66687

Doom Launcher 3.8.1.0 is vulnerable to Directory Traversal due to missing file path validation during the extraction of game files...

7.5CVSS0.00651EPSS
Exploits0References2
CVE
CVE
added 2026/03/16 12:0 a.m.5 views

CVE-2025-66687

Doom Launcher 3.8.1.0 is vulnerable to a Directory Traversal flaw caused by missing file path validation during extraction of game files. The issue is described across multiple sources (RH, NVD, EUVD, CVE listings) with a CVSSv3.1 base score of 7.5 (High) and an attack vector of Network, requirin...

7.5CVSS5.8AI score0.00651EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/03/16 12:0 a.m.3 views

CVE-2025-66687

Doom Launcher 3.8.1.0 is vulnerable to Directory Traversal due to missing file path validation during the extraction of game files...

5.8AI score0.00651EPSS
Exploits0References2
Fedora
Fedora
added 2026/03/13 1:19 a.m.7 views

[SECURITY] Fedora 43 Update: easyrpg-player-0.8.1.1-4.fc43

EasyRPG Player is a game interpreter for RPG Maker 2000/2003 and EasyRPG game s. To play a game, run the "easyrpg-player" executable inside a RPG Maker 2000/2003 game project folder same place as RPGRT.exe...

7.8CVSS5.8AI score0.00207EPSS
Exploits1
Fedora
Fedora
added 2026/03/13 1:0 a.m.5 views

[SECURITY] Fedora 42 Update: easyrpg-player-0.8.1.1-2.fc42

EasyRPG Player is a game interpreter for RPG Maker 2000/2003 and EasyRPG game s. To play a game, run the "easyrpg-player" executable inside a RPG Maker 2000/2003 game project folder same place as RPGRT.exe...

7.8CVSS5.8AI score0.00207EPSS
Exploits1
Fedora
Fedora
added 2026/03/13 12:18 a.m.6 views

[SECURITY] Fedora 44 Update: easyrpg-player-0.8.1.1-5.fc44

EasyRPG Player is a game interpreter for RPG Maker 2000/2003 and EasyRPG game s. To play a game, run the "easyrpg-player" executable inside a RPG Maker 2000/2003 game project folder same place as RPGRT.exe...

7.8CVSS5.8AI score0.00207EPSS
Exploits1
EUVD
EUVD
added 2026/03/12 6:31 a.m.5 views

EUVD-2026-11532

A security flaw has been discovered in Campcodes Division Regional Athletic Meet Game Result Matrix System 2.1. This affects an unknown part of the file save-games.php. The manipulation of the argument gamename results in cross site scripting. The attack may be performed from remote. The exploit...

5.1CVSS4.3AI score0.00195EPSS
Exploits0References6
EUVD
EUVD
added 2026/03/12 6:31 a.m.4 views

EUVD-2026-11533

A weakness has been identified in Campcodes Division Regional Athletic Meet Game Result Matrix System 2.1. This vulnerability affects unknown code of the file saveupathlete.php. This manipulation of the argument aname causes cross site scripting. It is possible to initiate the attack remotely. Th...

5.1CVSS4.3AI score0.00195EPSS
Exploits0References6
NVD
NVD
added 2026/03/12 6:16 a.m.6 views

CVE-2026-3983

A security flaw has been discovered in Campcodes Division Regional Athletic Meet Game Result Matrix System 2.1. This affects an unknown part of the file save-games.php. The manipulation of the argument gamename results in cross site scripting. The attack may be performed from remote. The exploit...

5.1CVSS0.00195EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/03/12 5:2 a.m.31 views

CVE-2026-3983 Campcodes Division Regional Athletic Meet Game Result Matrix System save-games.php cross site scripting

A security flaw has been discovered in Campcodes Division Regional Athletic Meet Game Result Matrix System 2.1. This affects an unknown part of the file save-games.php. The manipulation of the argument gamename results in cross site scripting. The attack may be performed from remote. The exploit...

5.1CVSS0.00195EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/03/12 5:2 a.m.4 views

CVE-2026-3983 Campcodes Division Regional Athletic Meet Game Result Matrix System save-games.php cross site scripting

A security flaw has been discovered in Campcodes Division Regional Athletic Meet Game Result Matrix System 2.1. This affects an unknown part of the file save-games.php. The manipulation of the argument gamename results in cross site scripting. The attack may be performed from remote. The exploit...

5.1CVSS4.3AI score0.00195EPSS
Exploits0References5
CVE
CVE
added 2026/03/12 5:2 a.m.12 views

CVE-2026-3983

CVE-2026-3983 affects Campcodes Division Regional Athletic Meet Game Result Matrix System 2.1. The issue resides in an unknown part of save-games.php where manipulation of the game_name argument triggers cross-site scripting. The vulnerability is exploitable remotely and, per the description, the...

5.1CVSS4.3AI score0.00195EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/03/12 12:0 a.m.6 views

PT-2026-24922

A security flaw has been discovered in Campcodes Division Regional Athletic Meet Game Result Matrix System 2.1. This affects an unknown part of the file save-games.php. The manipulation of the argument game name results in cross site scripting. The attack may be performed from remote. The exploit...

5.1CVSS4.3AI score0.00195EPSS
Exploits0References6
CNNVD
CNNVD
added 2026/03/12 12:0 a.m.6 views

CampCodes Division Regional Athletic Meet Game 代码注入漏洞

CampCodes Division Regional Athletic Meet Game is a sports competition system developed by the Philippines-based company CampCodes. Version 2.1 of CampCodes Division Regional Athletic Meet Game has a code injection vulnerability. This vulnerability stems from incorrect handling of the gamename...

5.1CVSS5.7AI score0.00195EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/03/12 12:0 a.m.6 views

PT-2026-24923

A weakness has been identified in Campcodes Division Regional Athletic Meet Game Result Matrix System 2.1. This vulnerability affects unknown code of the file save up athlete.php. This manipulation of the argument a name causes cross site scripting. It is possible to initiate the attack remotely...

5.1CVSS4.3AI score0.00195EPSS
Exploits0References6
Rows per page
Query Builder