Lucene search
K

429 matches found

Veracode
Veracode
added 2025/11/05 8:11 a.m.6 views

Cross-site Scripting (XSS)

s-cart/core and gp247/core are vulnerable to Cross-site Scripting XSS. The vulnerability is due to improper sanitization of the User-Agent header in the Admin Log Viewer, which allows an attacker to inject malicious scripts that execute in an administrator’s browser when viewing the security log...

5.4CVSS6.7AI score0.00201EPSS
Exploits0References4Affected Software2
Patchstack
Patchstack
added 2025/10/29 5:43 p.m.7 views

WordPress Debug Log Viewer plugin <= 2.0.3 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Legion Hunter in WordPress Plugin Debug Log Viewer versions = 2.0.3...

5.4CVSS7AI score0.00174EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/10/13 6:49 a.m.7 views

WordPress Error Log Viewer by BestWebSoft plugin <= 1.1.6 - Authenticated (Administrator+) Arbitrary File Read vulnerability

Authenticated Administrator+ Arbitrary File Read vulnerability discovered by Duc Manh in WordPress Plugin Error Log Viewer by BestWebSoft versions = 1.1.6...

4.9CVSS6.8AI score0.00671EPSS
Exploits0References1Affected Software1
RedhatCVE
RedhatCVE
added 2025/10/12 10:5 a.m.14 views

CVE-2025-9950

The Error Log Viewer by BestWebSoft plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 1.1.6 via the rrrlgvwrgetfile function. This makes it possible for authenticated attackers, with Administrator-level access and above, to read the contents of...

4.9CVSS5.9AI score0.00671EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/11 12:30 p.m.8 views

EUVD-2025-33846

The Error Log Viewer by BestWebSoft plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 1.1.6 via the rrrlgvwrgetfile function. This makes it possible for authenticated attackers, with Administrator-level access and above, to read the contents of...

4.9CVSS5.4AI score0.00671EPSS
Exploits0References3
NVD
NVD
added 2025/10/11 10:15 a.m.8 views

CVE-2025-9950

The Error Log Viewer by BestWebSoft plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 1.1.6 via the rrrlgvwrgetfile function. This makes it possible for authenticated attackers, with Administrator-level access and above, to read the contents of...

4.9CVSS0.00671EPSS
Exploits0References3
CVE
CVE
added 2025/10/11 9:28 a.m.24 views

CVE-2025-9950

The CVE-2025-9950 issue affects the Error Log Viewer by BestWebSoft for WordPress. It is a directory traversal vulnerability exploitable by authenticated administrators (and above) to read arbitrary files via the rrrlgvwr_get_file function. The vulnerability affects versions up to 1.1.6. The issu...

4.9CVSS5.5AI score0.00671EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/10/11 9:28 a.m.4 views

CVE-2025-9950 Error Log Viewer by BestWebSoft <= 1.1.6 - Authenticated (Administrator+) Arbitrary File Read

The Error Log Viewer by BestWebSoft plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 1.1.6 via the rrrlgvwrgetfile function. This makes it possible for authenticated attackers, with Administrator-level access and above, to read the contents of...

4.9CVSS5.5AI score0.00671EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/10/11 9:28 a.m.10 views

CVE-2025-9950 Error Log Viewer by BestWebSoft <= 1.1.6 - Authenticated (Administrator+) Arbitrary File Read

The Error Log Viewer by BestWebSoft plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 1.1.6 via the rrrlgvwrgetfile function. This makes it possible for authenticated attackers, with Administrator-level access and above, to read the contents of...

4.9CVSS0.00671EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/10/11 12:0 a.m.8 views

PT-2025-41683

Name of the Vulnerable Software and Affected Versions Error Log Viewer by BestWebSoft plugin for WordPress versions up to and including 1.1.6 Description The Error Log Viewer by BestWebSoft plugin for WordPress is susceptible to Directory Traversal. This allows authenticated attackers with...

4.9CVSS6AI score0.00671EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/10/11 12:0 a.m.4 views

WordPress plugin Error Log Viewer by BestWebSoft 路径遍历漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed using the PHP language, with the ability to host personal blog sites on PHP and MySQL based servers.WordPress...

4.9CVSS6.5AI score0.00671EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2021-11878

Malware in sbrugna...

4.9CVSS5AI score0.05188EPSS
Exploits5References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-4951

Malware in sbrugna...

9.8CVSS9.2AI score0.0185EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2005-0292

Malware in sbrugna...

4.3CVSS6.4AI score0.01406EPSS
Exploits0References9
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2003-1487

Malware in sbrugna...

6.3CVSS6.4AI score0.01404EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2005-0516

Malware in sbrugna...

2.1CVSS6.4AI score0.00333EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.10 views

EUVD-2021-11673

Malware in sbrugna...

6.5CVSS6.4AI score0.00599EPSS
Exploits2References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2017-7950

Malware in sbrugna...

6.1CVSS6.3AI score0.01305EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2006-7171

Malware in sbrugna...

4.3CVSS6.4AI score0.00845EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2015-2166

Malware in sbrugna...

4.3CVSS6.3AI score0.0146EPSS
Exploits0References4
Rows per page
Query Builder