Lucene search
K

67 matches found

Positive Technologies
Positive Technologies
added 2024/03/22 12:0 a.m.9 views

PT-2024-19158 · Siteorigin · The Page Builder By Siteorigin

Name of the Vulnerable Software and Affected Versions: The Page Builder by SiteOrigin plugin for WordPress versions up to, and including, 2.29.6 Description: The issue is related to Stored Cross-Site Scripting via the legacy Image widget due to insufficient input sanitization and output escaping...

6.4CVSS7.8AI score0.0043EPSS
Exploits0References8
CNVD
CNVD
added 2021/08/18 12:0 a.m.16 views

Django has an unspecified vulnerability (CNVD-2021-68758)

Django is the Django Foundation's set of Python-based language open source Web application framework . Django-Widgy version 0.8.4 contains a security vulnerability that can be exploited by remote attackers to execute arbitrary code via the "image" widget in the component "Change Widgy Page"...

9.8CVSS6.8AI score0.0289EPSS
Exploits1References1
PyPA
PyPA
added 2021/08/16 6:15 p.m.6 views

PYSEC-2021-336

Unrestricted Upload of File with Dangerous Type in Django-Widgy v0.8.4 allows remote attackers to execute arbitrary code via the 'image' widget in the component 'Change Widgy Page'...

9.8CVSS8AI score0.0289EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2021/08/16 5:56 p.m.14 views

CVE-2020-18704

Unrestricted Upload of File with Dangerous Type in Django-Widgy v0.8.4 allows remote attackers to execute arbitrary code via the 'image' widget in the component 'Change Widgy Page'...

9.8AI score0.0289EPSS
Exploits1References1
CNNVD
CNNVD
added 2021/08/16 12:0 a.m.4 views

Django 代码问题漏洞

Django is the Django Foundation's set of Python-based language open source Web application framework . Django-Widgy version 0.8.4 contains a security vulnerability that can be exploited by remote attackers to execute arbitrary code via the "image" widget in the component "Change Widgy Page"...

9.8CVSS6.1AI score0.0289EPSS
Exploits1References1
WPVulnDB
WPVulnDB
added 2014/08/01 10:58 a.m.29 views

grou-r&om-image-widget - Full Path Disclosure

The grou-random-image-widget WordPress plugin was affected by a Full Path Disclosure security vulnerability...

1.4AI score
Exploits0References1Affected Software1
0day.today
0day.today
added 2012/12/24 12:0 a.m.31 views

Wordpress Themes grou-random-image-widget Full Path Disclosure

Exploit for php platform in category web applications ------------------------------------------------------------------------------- Wordpress Themes- grou-random-image-widget Full Path Disclosure vulnerability ------------------------------------------------------------------------------- Autho...

7.1AI score
Exploits0
Rows per page
Query Builder