Lucene search
K

9 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2025-28307

Malicious code in bioql PyPI...

5.9CVSS6.4AI score0.00469EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/08/22 8:31 a.m.9 views

CVE-2025-49434

Deserialization of Untrusted Data vulnerability in axiomthemes Cars4Rent cars4rent allows Object Injection.This issue affects Cars4Rent: from n/a through = 1.4.2...

9.8CVSS5.9AI score0.00469EPSS
Exploits0References1
NVD
NVD
added 2025/08/20 8:15 a.m.4 views

CVE-2025-49434

Deserialization of Untrusted Data vulnerability in axiomthemes Cars4Rent cars4rent allows Object Injection.This issue affects Cars4Rent: from n/a through = 1.4.2...

9.8CVSS0.00469EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/08/20 8:3 a.m.2 views

CVE-2025-49434 WordPress Laposta WooCommerce plugin <= 1.9.1 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in stijnvanderree Laposta WooCommerce allows Stored XSS. This issue affects Laposta WooCommerce: from n/a through 1.9.1...

5.9CVSS6.9AI score0.00469EPSS
Exploits0References1
CVE
CVE
added 2025/08/20 8:3 a.m.13 views

CVE-2025-49434

Deserialization of Untrusted Data vulnerability in WordPress Cars4Rent Theme/Cars4Rent plugin (CVE-2025-49434) affects Cars4Rent: from n/a through &lt;= 1.4.2. Root cause: PHP object deserialization leading to Object Injection. Impact is rated Critical (CVSS 3.1 base 9.8) with potential HIGH impa...

9.8CVSS5.9AI score0.00469EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/08/20 8:3 a.m.11 views

CVE-2025-49434 WordPress Cars4Rent Theme <= 1.4.2 - PHP Object Injection Vulnerability

Deserialization of Untrusted Data vulnerability in axiomthemes Cars4Rent cars4rent allows Object Injection.This issue affects Cars4Rent: from n/a through = 1.4.2...

9.8CVSS0.00469EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/08/20 12:0 a.m.3 views

WordPress plugin Laposta WooCommerce 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

9.8CVSS5.7AI score0.00469EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/08/20 12:0 a.m.5 views

PT-2025-33954 · WordPress · Laposta Woocommerce

Name of the Vulnerable Software and Affected Versions: Laposta WooCommerce versions through 1.9.1 Description: This issue involves improper neutralization of input during web page generation, leading to a Stored Cross-Site Scripting XSS condition. Successful exploitation could allow an attacker t...

5.9CVSS5.3AI score0.00469EPSS
Exploits0References3
Patchstack
Patchstack
added 2025/08/17 2:48 a.m.6 views

WordPress Laposta WooCommerce plugin <= 1.9.1 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Nabil Irawan Patchstack Alliance in WordPress Plugin Laposta WooCommerce versions = 1.9.1...

5.9CVSS5.8AI score0.00469EPSS
Exploits0Affected Software1
Rows per page
Query Builder