Lucene search
K

17 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-52338

Malicious code in bioql PyPI...

5.3CVSS9.2AI score0.0035EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/09/09 11:6 p.m.10 views

WordPress Maspik plugin <= 2.5.6 - Cross-Site Request Forgery vulnerability

Cross-Site Request Forgery vulnerability discovered by Dmitrii Ignatyev in WordPress Plugin Maspik – Spam blacklist versions = 2.5.6...

4.3CVSS6.7AI score0.00156EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2025/09/09 11:5 p.m.8 views

WordPress Maspik plugin <= 2.5.6 - Authenticated (Subscriber+) Missing Authorization to Spam Log Export vulnerability

Authenticated Subscriber+ Missing Authorization to Spam Log Export vulnerability discovered by Dmitrii Ignatyev in WordPress Plugin Maspik – Spam blacklist versions = 2.5.6...

4.3CVSS6.7AI score0.0023EPSS
Exploits0References1Affected Software1
RedhatCVE
RedhatCVE
added 2025/05/23 7:14 a.m.6 views

CVE-2024-53806

Missing Authorization vulnerability in yonifre Maspik – Spam blacklist contact-forms-anti-spam allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Maspik – Spam blacklist: from n/a through = 2.2.7...

5.4CVSS7.2AI score0.00394EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 5:46 a.m.8 views

CVE-2023-48272

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in yonifre Maspik – Spam Blacklist allows Stored XSS.This issue affects Maspik – Spam Blacklist: from n/a through 0.9.2...

7.1CVSS7AI score0.00412EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/05/19 3:47 a.m.4 views

WordPress Maspik - Advanced Spam protection plugin < 2.1.3 - Admin+ Stored XSS vulnerability

WordPress Maspik - Advanced Spam protection plugin 2.1.3 - Admin+ Stored XSS vulnerability discovered by Krugov Artyom in WordPress Plugin Maspik – Spam blacklist versions 2.1.3...

4.8CVSS6.1AI score0.00266EPSS
Exploits1References1Affected Software1
CNNVD
CNNVD
added 2024/12/06 12:0 a.m.3 views

WordPress plugin Maspik – Spam blacklist 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exists in...

5.4CVSS8.2AI score0.00394EPSS
Exploits0References1
NVD
NVD
added 2024/03/13 4:15 p.m.20 views

CVE-2024-25101

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in yonifre Maspik – Spam Blacklist allows Stored XSS.This issue affects Maspik – Spam Blacklist: from n/a through 0.10.6...

5.9CVSS5.7AI score0.00418EPSS
Exploits0References1
Prion
Prion
added 2024/03/13 4:15 p.m.25 views

Cross site scripting

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in yonifre Maspik – Spam Blacklist allows Stored XSS.This issue affects Maspik – Spam Blacklist: from n/a through 0.10.6...

5.4CVSS6.9AI score0.00418EPSS
Exploits0References1
WPVulnDB
WPVulnDB
added 2023/12/12 12:0 a.m.20 views

Maspik – Spam blacklist < 0.10.4 - IP Validation Bypass

Description The plugin does not properly validates IP addresses, allowing unauthenticated attackers to bypass IP-based restrictions...

7.2AI score0.0035EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2023/11/30 5:15 p.m.23 views

CVE-2023-48272

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in yonifre Maspik – Spam Blacklist allows Stored XSS.This issue affects Maspik – Spam Blacklist: from n/a through 0.9.2...

7.1CVSS0.00412EPSS
Exploits0References1
OSV
OSV
added 2023/11/30 5:15 p.m.3 views

CVE-2023-48272

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in yonifre Maspik – Spam Blacklist allows Stored XSS.This issue affects Maspik – Spam Blacklist: from n/a through 0.9.2...

6.1CVSS6.8AI score0.00412EPSS
Exploits0References1
Prion
Prion
added 2023/11/30 5:15 p.m.17 views

Cross site scripting

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in yonifre Maspik – Spam Blacklist allows Stored XSS.This issue affects Maspik – Spam Blacklist: from n/a through 0.9.2...

5.8CVSS6.9AI score0.00412EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/11/30 4:37 p.m.3 views

CVE-2023-48272 WordPress Maspik – Spam blacklist Plugin <= 0.9.2 is vulnerable to Cross Site Scripting (XSS)

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in yonifre Maspik – Spam Blacklist allows Stored XSS.This issue affects Maspik – Spam Blacklist: from n/a through 0.9.2...

7.1CVSS6.8AI score0.00412EPSS
Exploits0References1
CVE
CVE
added 2023/11/30 4:37 p.m.69 views

CVE-2023-48272

CVE-2023-48272 pertains to Maspik – Spam Blacklist (WordPress plugin) with an unauthenticated Stored XSS via efas_add_to_log. Affected versions are ≤ 0.9.2; Patchstack reports a fixed release in 0.9.3. Public documentation confirms the vulnerability is Cross-Site Scripting and affects Maspik – Sp...

7.1CVSS7.1AI score0.00412EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2023/11/30 12:0 a.m.3 views

PT-2023-30752 · Unknown · Maspik – Spam Blacklist

Name of the Vulnerable Software and Affected Versions: Maspik – Spam Blacklist versions 0.9.2 and earlier Description: The issue is related to improper neutralization of input during web page generation, which allows for stored cross-site scripting XSS. This means that an attacker can inject...

7.1CVSS6.5AI score0.00412EPSS
Exploits0References5
CNNVD
CNNVD
added 2023/05/26 12:0 a.m.3 views

WordPress plugin Maspik – Spam Blacklist 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forger...

8.8CVSS7.7AI score0.00256EPSS
Exploits0References2
Rows per page
Query Builder