Lucene search
K

190 matches found

Patchstack
Patchstack
added 2024/08/01 3:13 p.m.7 views

WordPress Filter & Grids plugin <= 2.9.2 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by RE-ALTER Patchstack Alliance in WordPress Plugin Filter & Grids versions = 2.9.2...

6.5CVSS6.1AI score0.00289EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/08/01 3:12 p.m.15 views

WordPress Filter & Grids plugin <= 2.8.32 - Broken Authentication vulnerability

Broken Authentication vulnerability discovered by RE-ALTER Patchstack Alliance in WordPress Plugin Filter & Grids versions = 2.8.33...

7.3CVSS7AI score0.00399EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/08/01 12:0 a.m.19 views

WordPress Filter & Grids Plugin <= 2.8.33 is vulnerable to Broken Authentication

Software Filter & Grids Type Plugin Vulnerable versions = 2.8.33 Fixed in 2.8.34 OWASP Top 10 A1: Broken Access Control Classification Broken Authentication CVE CVE-2024-39664 Patch priority High CVSS severity High 7.3 Developer Claim ownership PSID bac0e0da8bce Credits RE-ALTER Required privileg...

7.3CVSS6.3AI score0.00399EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2024/08/01 12:0 a.m.9 views

WordPress Filter & Grids Plugin <= 2.9.2 is vulnerable to Cross Site Scripting (XSS)

Software Filter & Grids Type Plugin Vulnerable versions = 2.9.2 Fixed in 2.9.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-39665 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 4cff851eecee Credits RE-ALTER Required privilege Contributor...

6.5CVSS6.6AI score0.00289EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2024/08/01 12:0 a.m.5 views

WordPress plugin Filter & Grids 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin ... A cross-site scripting...

6.5CVSS6.1AI score0.00289EPSS
Exploits0References2
Patchstack
Patchstack
added 2024/07/18 6:36 a.m.4 views

WordPress Filter & Grids plugin < 2.8.33 - Unauthenticated LFI vulnerability

Unauthenticated LFI vulnerability discovered by Project Black in WordPress Plugin Filter & Grids versions 2.8.33...

9.8CVSS7AI score0.01093EPSS
Exploits1References1Affected Software1
NVD
NVD
added 2024/07/18 6:15 a.m.16 views

CVE-2024-6164

The Filter & Grids WordPress plugin before 2.8.33 is vulnerable to Local File Inclusion via the postlayout parameter. This makes it possible for an unauthenticated attacker to include and execute PHP files on the server, allowing the execution of any PHP code in those files...

9.8CVSS0.01093EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2024/07/18 6:0 a.m.14 views

CVE-2024-6164 Filter & Grids < 2.8.33 - Unauthenticated LFI

The Filter & Grids WordPress plugin before 2.8.33 is vulnerable to Local File Inclusion via the postlayout parameter. This makes it possible for an unauthenticated attacker to include and execute PHP files on the server, allowing the execution of any PHP code in those files...

7.3AI score0.01093EPSS
Exploits1References1
CVE
CVE
added 2024/07/18 6:0 a.m.40 views

CVE-2024-6164

CVE-2024-6164 affects the WordPress plugin “Filter & Grids” (ymc-smart-filter). The vulnerability is a Local File Inclusion via the post_layout parameter, allowing an unauthenticated attacker to include and execute PHP code on the server. This directly enables arbitrary PHP execution through the ...

9.8CVSS9.7AI score0.01093EPSS
Exploits1References1Affected Software1
Patchstack
Patchstack
added 2024/07/18 12:0 a.m.12 views

WordPress Filter & Grids Plugin < 2.8.33 is vulnerable to Local File Inclusion

Software Filter & Grids Type Plugin Vulnerable versions 2.8.33 Fixed in 2.8.33 OWASP Top 10 A1: Injection Classification Local File Inclusion CVE CVE-2024-6164 Patch priority High CVSS severity High 8.1 Developer Claim ownership PSID fa64410035b5 Credits Project Black Required privilege...

9.8CVSS6.8AI score0.01093EPSS
Exploits1References4Affected Software1
Positive Technologies
Positive Technologies
added 2024/07/18 12:0 a.m.9 views

PT-2024-37424 · WordPress · Filter & Grids

Name of the Vulnerable Software and Affected Versions: The Filter & Grids WordPress plugin versions prior to 2.8.33 Description: The issue allows an unauthenticated attacker to include and execute PHP files on the server via the post layout parameter, enabling the execution of any PHP code in tho...

9.8CVSS7.7AI score0.01093EPSS
Exploits1References5
OSV
OSV
added 2023/11/08 7:15 p.m.4 views

CVE-2023-47226

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in I Thirteen Web Solution Post Sliders & Post Grids plugin = 1.0.20 versions...

4.8CVSS7.3AI score
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2023/11/08 7:15 p.m.5 views

CVE-2023-47226

A vulnerability in Nks Post Sliders & Post Grids post-slider-carousel.This issue affects Post Sliders & Post Grids: from n/a through = 1.0.20...

5.9CVSS6.5AI score0.00397EPSS
Exploits0References3
Cvelist
Cvelist
added 2023/11/08 6:33 p.m.39 views

CVE-2023-47226 WordPress Post Sliders & Post Grids Plugin <= 1.0.20 is vulnerable to Cross Site Scripting (XSS)

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in I Thirteen Web Solution Post Sliders & Post Grids plugin = 1.0.20 versions...

5.9CVSS5.1AI score0.00397EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/11/08 6:33 p.m.24 views

CVE-2023-47226 WordPress Post Sliders & Post Grids Plugin <= 1.0.20 is vulnerable to Cross Site Scripting (XSS)

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in I Thirteen Web Solution Post Sliders & Post Grids plugin = 1.0.20 versions...

5.9CVSS5.6AI score0.00397EPSS
Exploits0References1
CVE
CVE
added 2023/11/08 6:33 p.m.95 views

CVE-2023-47226

CVE-2023-47226 affects the WordPress plugin Post Sliders & Post Grids (I Thirteen Web Solution) up to version 1.0.20. Root cause is an authenticated (admin+) Stored Cross-Site Scripting (XSS) vulnerability, enabling an administrator to inject scripts that could be executed in other users’ context...

5.9CVSS4.9AI score0.00397EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2023/11/08 12:0 a.m.5 views

WordPress Plugin Post Sliders & Post Grids Cross-Site Scripting Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting vulnerability...

4.8CVSS6AI score0.00397EPSS
Exploits0References3
Patchstack
Patchstack
added 2023/11/03 12:0 a.m.17 views

WordPress Post Sliders & Post Grids Plugin <= 1.0.20 is vulnerable to Cross Site Scripting (XSS)

Software Post Sliders & Post Grids Type Plugin Vulnerable versions = 1.0.20 Fixed in 1.0.21 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-47226 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID d376148f362b Credits yuyudhn...

4.8CVSS5.7AI score0.00397EPSS
Exploits0References2Affected Software1
HackRead
HackRead
added 2023/07/24 11:10 p.m.17 views

From Power Grids to Airports: TETRA Radio Hacking Risks Global Infrastructure

By Waqas These vulnerabilities have been dubbed TETRA:BURST by researchers. This is a post from HackRead.com Read the original post: From Power Grids to Airports: TETRA Radio Hacking Risks Global Infrastructure...

7.2AI score
Exploits0
Talos Blog
Talos Blog
added 2023/06/05 11:0 a.m.18 views

How Joe Marshall helps defend everything from electrical grids to grain co-ops across multiple continents

Joe Marshall was a security practitioner before he even knew it. Marshall started his career in information technology as a systems administrator. On the surface, he jokes that he was a "white-collar plumber" -- fixing IT issues as they arose, handing out new credentials and asking users if they...

7.1AI score
Exploits0
Rows per page
Query Builder