Lucene search
K

19 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.2 views

EUVD-2025-15313

Malicious code in bioql PyPI...

6.5CVSS7.3AI score0.00192EPSS
Exploits1References3
Patchstack
Patchstack
added 2025/05/18 11:15 p.m.5 views

WordPress JSP Store Locator plugin <= 1.0 - Deletion via Missing CSRF vulnerability

Deletion via Missing CSRF vulnerability discovered by Bob Matyas in WordPress Plugin JSP Store Locator versions = 1.0...

6.5CVSS8.4AI score0.00192EPSS
Exploits1References1Affected Software1
RedhatCVE
RedhatCVE
added 2025/05/17 9:4 p.m.3 views

CVE-2024-12301

The JSP Store Locator WordPress plugin through 1.0 does not have CSRF checks in some places, which could allow attackers to make logged in users perform unwanted actions via CSRF attacks...

6.5CVSS6.9AI score0.00192EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/17 9:2 p.m.6 views

CVE-2024-11267

The JSP Store Locator WordPress plugin through 1.0 does not sanitize and escape a parameter before using it in a SQL statement, allowing user with Contributor to perform SQL injection attacks...

8.8CVSS7.6AI score0.00467EPSS
Exploits1References1
NVD
NVD
added 2025/05/15 8:15 p.m.2 views

CVE-2024-12301

The JSP Store Locator WordPress plugin through 1.0 does not have CSRF checks in some places, which could allow attackers to make logged in users perform unwanted actions via CSRF attacks...

6.5CVSS0.00192EPSS
Exploits1References1
OSV
OSV
added 2025/05/15 8:15 p.m.1 views

CVE-2024-12301

The JSP Store Locator WordPress plugin through 1.0 does not have CSRF checks in some places, which could allow attackers to make logged in users perform unwanted actions via CSRF attacks...

6.5CVSS5.8AI score0.00192EPSS
Exploits1References1
CVE
CVE
added 2025/05/15 8:6 p.m.27 views

CVE-2024-12301

CVE-2024-12301 involves the JSP Store Locator WordPress plugin (

6.5CVSS6.8AI score0.00192EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2025/05/15 8:6 p.m.10 views

CVE-2024-12301 JSP Store Locator <= 1.0 - Deletion via Missing CSRF

The JSP Store Locator WordPress plugin through 1.0 does not have CSRF checks in some places, which could allow attackers to make logged in users perform unwanted actions via CSRF attacks...

0.00192EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/05/15 8:6 p.m.5 views

CVE-2024-12301 JSP Store Locator <= 1.0 - Deletion via Missing CSRF

The JSP Store Locator WordPress plugin through 1.0 does not have CSRF checks in some places, which could allow attackers to make logged in users perform unwanted actions via CSRF attacks...

6.5AI score0.00192EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/05/15 8:6 p.m.5 views

CVE-2024-11267 JSP Store Locator <= 1.0 - Contributor+ SQL Injection

The JSP Store Locator WordPress plugin through 1.0 does not sanitize and escape a parameter before using it in a SQL statement, allowing user with Contributor to perform SQL injection attacks...

9AI score0.00467EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/05/15 8:6 p.m.10 views

CVE-2024-11267 JSP Store Locator <= 1.0 - Contributor+ SQL Injection

The JSP Store Locator WordPress plugin through 1.0 does not sanitize and escape a parameter before using it in a SQL statement, allowing user with Contributor to perform SQL injection attacks...

0.00467EPSS
Exploits1References1
CVE
CVE
added 2025/05/15 8:6 p.m.34 views

CVE-2024-11267

CVE-2024-11267 concerns the JSP Store Locator WordPress plugin (versions up to 1.0) where an input parameter is not sanitized/escaped before being used in a SQL statement, enabling a user with Contributor privileges to perform SQL injection. The vulnerability is documented across multiple sources...

8.8CVSS7.2AI score0.00467EPSS
Exploits1References1Affected Software1
Positive Technologies
Positive Technologies
added 2025/05/15 12:0 a.m.5 views

PT-2025-21418

Name of the Vulnerable Software and Affected Versions: JSP Store Locator WordPress plugin versions 1.0 and earlier Description: The issue allows users with Contributor access to perform SQL injection attacks due to the lack of sanitization and escaping of a parameter before its use in a SQL...

8.8CVSS7.4AI score0.00467EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2025/05/15 12:0 a.m.3 views

PT-2025-21427 · WordPress · Jsp Store Locator

Name of the Vulnerable Software and Affected Versions: JSP Store Locator WordPress plugin versions 1.0 and earlier Description: The issue is related to the lack of CSRF checks in some areas of the plugin, which could allow attackers to make logged-in users perform unwanted actions via CSRF attack...

6.5CVSS6.9AI score0.00192EPSS
Exploits1References3
CNNVD
CNNVD
added 2025/05/15 12:0 a.m.3 views

WordPress plugin JSP Store Locator 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

8.8CVSS9.1AI score0.00467EPSS
Exploits1References1
0day.today
0day.today
added 2017/02/16 12:0 a.m.32 views

Joomla JSP Store Locator 2.2 Component - id Parameter SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: Joomla! Component JSP Store Locator v2.2 - SQL Injection Google Dork: inurl:index.php?option=comjsplocation Date: 15.02.2017 Vendor Homepage: http://joomlaserviceprovider.com Software Buy:...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2017/02/16 12:0 a.m.28 views

Joomla JSP Store Locator 2.2 SQL Injection

Exploit Title: Joomla! Component JSP Store Locator v2.2 - SQL Injection Google Dork: inurl:index.php?option=comjsplocation Date: 15.02.2017 Vendor Homepage: http://joomlaserviceprovider.com Software Buy: https://extensions.joomla.org/extensions/extension/maps-a-weather/maps-a-locations/jsplocatio...

0.3AI score
Exploits0
exploitpack
exploitpack
added 2017/02/15 12:0 a.m.16 views

Joomla! Component JSP Store Locator 2.2 - id SQL Injection

Joomla! Component JSP Store Locator 2.2 - id SQL Injection Exploit Title: Joomla! Component JSP Store Locator v2.2 - SQL Injection Google Dork: inurl:index.php?option=comjsplocation Date: 15.02.2017 Vendor Homepage: http://joomlaserviceprovider.com Software Buy:...

0.2AI score
Exploits0
Exploit DB
Exploit DB
added 2017/02/15 12:0 a.m.38 views

Joomla! Component JSP Store Locator 2.2 - &#039;id&#039; SQL Injection

Exploit Title: Joomla! Component JSP Store Locator v2.2 - SQL Injection Google Dork: inurl:index.php?option=comjsplocation Date: 15.02.2017 Vendor Homepage: http://joomlaserviceprovider.com Software Buy: https://extensions.joomla.org/extensions/extension/maps-a-weather/maps-a-locations/jsplocatio...

7.4AI score
Exploits0
Rows per page
Query Builder