Lucene search
K

472 matches found

CNNVD
CNNVD
added 2026/03/31 12:0 a.m.10 views

NVIDIA Jetson for JetPack 安全漏洞

NVIDIA Jetson for JetPack is a software suite provided by NVIDIA Corporation in the United States, which offers development tools and operating environments for embedded AI computing platforms. NVIDIA Jetson for JetPack has a security vulnerability, which stems from issues with the system...

9.4CVSS5.8AI score0.00349EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/03/31 12:0 a.m.5 views

PT-2026-29291

NVIDIA Jetson for JetPack contains a vulnerability in the system initialization logic, where an unprivileged attacker could cause the initialization of a resource with an insecure default. A successful exploit of this vulnerability might lead to information disclosure of encrypted data, data...

8.3CVSS5.9AI score0.00349EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/02/21 7:29 p.m.6 views

CVE-2026-22356

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Automattic Jetpack CRM zero-bs-crm allows PHP Local File Inclusion.This issue affects Jetpack CRM: from n/a through = 6.7.0...

7.5CVSS5.5AI score0.00423EPSS
Exploits1References1
NVD
NVD
added 2026/02/20 4:22 p.m.5 views

CVE-2026-22356

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Automattic Jetpack CRM zero-bs-crm allows PHP Local File Inclusion.This issue affects Jetpack CRM: from n/a through = 6.7.0...

7.5CVSS0.00423EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2026/02/20 3:47 p.m.6 views

CVE-2026-22356

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Automattic Jetpack CRM zero-bs-crm allows PHP Local File Inclusion.This issue affects Jetpack CRM: from n/a through = 6.7.0...

5.5AI score0.00423EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2026/02/20 3:47 p.m.3 views

CVE-2026-22356 WordPress Jetpack CRM plugin <= 6.7.0 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Automattic Jetpack CRM zero-bs-crm allows PHP Local File Inclusion.This issue affects Jetpack CRM: from n/a through = 6.7.0...

5.5AI score0.00423EPSS
Exploits1References1
CVE
CVE
added 2026/02/20 3:47 p.m.26 views

CVE-2026-22356

CVE-2026-22356 applies to WordPress Jetpack CRM (zero-bs-crm)

7.5CVSS5.6AI score0.00423EPSS
Exploits1References1
Cvelist
Cvelist
added 2026/02/20 3:47 p.m.24 views

CVE-2026-22356 WordPress Jetpack CRM plugin <= 6.7.0 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Automattic Jetpack CRM zero-bs-crm allows PHP Local File Inclusion.This issue affects Jetpack CRM: from n/a through = 6.7.0...

7.5CVSS0.00423EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2026/02/20 12:0 a.m.4 views

PT-2026-21202

Name of the Vulnerable Software and Affected Versions Jetpack CRM versions through 6.7.0 Description A flaw exists in Automattic Jetpack CRM that allows for PHP Local File Inclusion due to improper control of filename for include/require statements. This issue impacts the software when handling...

5.4AI score0.00423EPSS
Exploits1References4
CNNVD
CNNVD
added 2026/02/20 12:0 a.m.9 views

WordPress plugin Jetpack CRM 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. There is...

7.5CVSS5.8AI score0.00423EPSS
Exploits1References1
Patchstack
Patchstack
added 2026/02/16 7:16 a.m.5 views

WordPress Jetpack CRM plugin <= 6.7.0 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Skalucy in WordPress Plugin Jetpack CRM versions = 6.7.0...

7.5CVSS5.5AI score0.00423EPSS
Exploits1Affected Software1
OSV
OSV
added 2026/01/13 11:16 p.m.3 views

CVE-2023-54332

Jetpack 11.4 contains a cross-site scripting vulnerability in the contact form module that allows attackers to inject malicious scripts through the postid parameter. Attackers can craft malicious URLs with script payloads to execute arbitrary JavaScript in victims' browsers when they interact wit...

6.1CVSS5.9AI score0.0024EPSS
Exploits1References3
NVD
NVD
added 2026/01/13 11:16 p.m.12 views

CVE-2023-54332

Jetpack 11.4 contains a cross-site scripting vulnerability in the contact form module that allows attackers to inject malicious scripts through the postid parameter. Attackers can craft malicious URLs with script payloads to execute arbitrary JavaScript in victims' browsers when they interact wit...

6.1CVSS0.0024EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2026/01/13 10:56 p.m.4 views

CVE-2023-54332 Jetpack 11.4 - Cross Site Scripting (XSS)

Jetpack 11.4 contains a cross-site scripting vulnerability in the contact form module that allows attackers to inject malicious scripts through the postid parameter. Attackers can craft malicious URLs with script payloads to execute arbitrary JavaScript in victims' browsers when they interact wit...

6.1CVSS6.2AI score0.0024EPSS
Exploits1References3
Cvelist
Cvelist
added 2026/01/13 10:56 p.m.22 views

CVE-2023-54332 Jetpack 11.4 - Cross Site Scripting (XSS)

Jetpack 11.4 contains a cross-site scripting vulnerability in the contact form module that allows attackers to inject malicious scripts through the postid parameter. Attackers can craft malicious URLs with script payloads to execute arbitrary JavaScript in victims' browsers when they interact wit...

6.1CVSS0.0024EPSS
Exploits1References3
CVE
CVE
added 2026/01/13 10:56 p.m.18 views

CVE-2023-54332

CVE-2023-54332 affects Jetpack 11.4. The vulnerability is a cross-site scripting flaw in the contact form module that allows attackers to inject scripts via the post_id parameter. Exploitation involves crafting malicious URLs to execute arbitrary JavaScript in victims’ browsers when they interact...

6.1CVSS6.2AI score0.0024EPSS
Exploits1References3Affected Software1
CNNVD
CNNVD
added 2026/01/13 12:0 a.m.4 views

WordPress plugin Jetpack 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to set up a personal blog site on a PHP and MySQL based server.WordPress plugin is an application plugin. A cross-site...

6.1CVSS5.5AI score0.0024EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2026/01/13 12:0 a.m.6 views

PT-2026-2422

Name of the Vulnerable Software and Affected Versions Jetpack version 11.4 Description The software contains a cross-site scripting issue within the contact form module. An attacker can inject malicious scripts through the post id parameter. By crafting malicious URLs with script payloads, an...

6.1CVSS6.2AI score0.0024EPSS
Exploits1References7
RedhatCVE
RedhatCVE
added 2026/01/09 11:12 a.m.11 views

CVE-2016-10705

The Jetpack plugin before 4.0.4 for WordPress has XSS via the Likes module...

6.1CVSS6AI score0.00952EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:27 a.m.7 views

CVE-2023-45050

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Automattic Jetpack – WP Security, Backup, Speed, & Growth allows Stored XSS.This issue affects Jetpack – WP Security, Backup, Speed, & Growth: from n/a through 12.8-a.1...

6.5CVSS6.7AI score0.00521EPSS
Exploits1References1
Rows per page
Query Builder