Lucene search
K

26 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-12658

Malware in sbrugna...

5.4CVSS6.5AI score0.00726EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-12038

Malicious code in bioql PyPI...

7.1CVSS7.7AI score0.00127EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 5:1 a.m.9 views

CVE-2019-3019

Vulnerability in the Oracle Banking Digital Experience product of Oracle Financial Services Applications component: Loan Calculator. Supported versions that are affected are 18.1, 18.2, 18.3 and 19.1. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to...

5.4CVSS6AI score0.00726EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/04/26 5:21 p.m.21 views

CVE-2025-46442

Cross-Site Request Forgery CSRF vulnerability in Casey Johnson Loan Calculator repayment-calculator allows Stored XSS.This issue affects Loan Calculator: from n/a through = 1.3...

7.1CVSS7.2AI score0.00127EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/04/24 5:28 p.m.7 views

WordPress Loan Calculator plugin <= 1.3 - CSRF to Stored XSS vulnerability

CSRF to Stored XSS vulnerability discovered by Nabil Irawan in WordPress Plugin Loan Calculator versions = 1.3...

7.1CVSS7.5AI score0.00127EPSS
Exploits0Affected Software1
NVD
NVD
added 2025/04/24 4:15 p.m.14 views

CVE-2025-46442

Cross-Site Request Forgery CSRF vulnerability in Casey Johnson Loan Calculator repayment-calculator allows Stored XSS.This issue affects Loan Calculator: from n/a through = 1.3...

7.1CVSS0.00127EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/04/24 4:9 p.m.6 views

CVE-2025-46442 WordPress Loan Calculator plugin <= 1.3 - CSRF to Stored XSS vulnerability

Cross-Site Request Forgery CSRF vulnerability in Casey Johnson Loan Calculator repayment-calculator allows Stored XSS.This issue affects Loan Calculator: from n/a through = 1.3...

7.1CVSS7.2AI score0.00127EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/04/24 4:9 p.m.19 views

CVE-2025-46442 WordPress Loan Calculator plugin <= 1.3 - CSRF to Stored XSS vulnerability

Cross-Site Request Forgery CSRF vulnerability in Casey Johnson Loan Calculator repayment-calculator allows Stored XSS.This issue affects Loan Calculator: from n/a through = 1.3...

7.1CVSS0.00127EPSS
Exploits0References1
CVE
CVE
added 2025/04/24 4:9 p.m.44 views

CVE-2025-46442

CVE-2025-46442 is a CSRF to Stored XSS vulnerability affecting the WordPress Loan Calculator plugin for versions n/a through 1.3. The CVSS base score is 7.1 (HIGH). Exploitation details are not provided in the initial description beyond the CSRF/XSS combo; connected documents corroborate the CSRF...

7.1CVSS7.2AI score0.00127EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/04/24 12:0 a.m.5 views

WordPress plugin Loan Calculator 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forger...

7.1CVSS7.1AI score0.00127EPSS
Exploits0References2
Patchstack
Patchstack
added 2025/02/17 9:50 p.m.4 views

WordPress Mortgage Calculator / Loan Calculator plugin <= 1.5.20 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by yudha in WordPress Plugin Mortgage Calculator / Loan Calculator versions = 1.5.20...

6.4CVSS5.8AI score0.00278EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2023/12/21 12:0 a.m.9 views

PT-2023-31660 · Unknown · Aerin Loan Repayment Calculator/Application Form

Name of the Vulnerable Software and Affected Versions: Aerin Loan Repayment Calculator and Application Form versions n/a through 2.9.3 Description: The issue is related to improper neutralization of input during web page generation, which allows for stored cross-site scripting XSS. This means tha...

5.9CVSS5.9AI score0.00335EPSS
Exploits0References5
CNVD
CNVD
added 2022/01/06 12:0 a.m.17 views

WordPress Mortgage Calculator/Loan Calculator Cross-Site Scripting Vulnerability

WordPress is the WordPress Foundation's set of blogging platforms developed using the PHP language. The platform supports personal blogging sites on PHP and MySQL servers. WordPress Mortgage Calculator/Loan Calculator has a cross-site scripting vulnerability in versions prior to 1.5.17, which ste...

5.4CVSS2.5AI score0.00604EPSS
Exploits2References1
CVE
CVE
added 2022/01/03 12:49 p.m.116 views

CVE-2021-24828

Vulnerability summary (CVE-2021-24828) : The WordPress plugin “Mortgage Calculator / Loan Calculator” prior to version 1.5.17 does not escape certain attributes in the mlcalc shortcode output. This can enable Cross-Site Scripting (XSS) by users with as little as a Contributor role. The issue is t...

5.4CVSS5.3AI score0.00604EPSS
Exploits2References1Affected Software1
WPVulnDB
WPVulnDB
added 2021/11/16 12:0 a.m.9 views

Mortgage Calculator / Loan Calculator < 1.5.17 - Contributor+ Stored Cross-Site Scripting

The plugin does not escape the some of the attributes of its mlcalc shortcode before outputting them, which could allow users with a role as low as contributor to perform Cross-Site Scripting attacks PoC mlcalc schedule="month';alert/XSS///"...

5.4CVSS2.8AI score0.00604EPSS
Exploits2Affected Software1
wpexploit
wpexploit
added 2021/11/16 12:0 a.m.43 views

Mortgage Calculator / Loan Calculator < 1.5.17 - Contributor+ Stored Cross-Site Scripting

The plugin does not escape the some of the attributes of its mlcalc shortcode before outputting them, which could allow users with a role as low as contributor to perform Cross-Site Scripting attacks mlcalc schedule="month';alert/XSS///"...

5.4CVSS1.6AI score0.00604EPSS
Exploits2
BDU FSTEC
BDU FSTEC
added 2019/10/29 12:0 a.m.3 views

The vulnerability of the Loan Calculator sub-component of the Oracle Banking Digital Experience component in the bank analytics system’s simulation model, allowing a perpetrator to access the ability to modify, add, or delete data.

The vulnerability of the Loan Calculator sub-component of the Oracle Banking Digital Experience component of the banking analytics system’s simulation model, Oracle Financial Services Applications, is related to lack of access control. Exploiting this vulnerability could allow a malicious actor t...

5.4CVSS5.5AI score0.00726EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2019/10/16 6:15 p.m.3 views

CVE-2019-3019

Vulnerability in the Oracle Banking Digital Experience product of Oracle Financial Services Applications component: Loan Calculator. Supported versions that are affected are 18.1, 18.2, 18.3 and 19.1. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to...

5.4CVSS5.8AI score0.00726EPSS
Exploits0References1
Prion
Prion
added 2019/10/16 6:15 p.m.20 views

Buffer overflow

Vulnerability in the Oracle Banking Digital Experience product of Oracle Financial Services Applications component: Loan Calculator. Supported versions that are affected are 18.1, 18.2, 18.3 and 19.1. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to...

4.9CVSS5AI score0.00726EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2019/10/16 5:40 p.m.8 views

CVE-2019-3019

Vulnerability in the Oracle Banking Digital Experience product of Oracle Financial Services Applications component: Loan Calculator. Supported versions that are affected are 18.1, 18.2, 18.3 and 19.1. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to...

6AI score0.00726EPSS
Exploits0References1
Rows per page
Query Builder