Lucene search
K

532 matches found

CVE
CVE
added 2015/04/21 4:0 p.m.45 views

CVE-2015-3348

CVE-2015-3348 concerns the Cloudwords for Multilingual Drupal module (Drupal 7.x) prior to 7.x-2.3. The vulnerability is an XSS flaw where remote authenticated users can inject arbitrary script/HTML via a node title due to insufficient sanitization. Affected software: Cloudwords for Multilingual ...

3.5CVSS5.4AI score0.00965EPSS
Exploits0References4Affected Software1
CNVD
CNVD
added 2015/03/31 12:0 a.m.4 views

Unspecified Vulnerability in WordPress Plugin WPML

WordPress is the WordPress Software Foundation's set of blogging platform developed using the PHP language, the platform supports PHP and MySQL servers to set up a personal blog site.WPML is one of the multi-language plug-ins. A security vulnerability exists in the WordPress WPML plugin prior to...

7.5CVSS7AI score0.038EPSS
Exploits1References1
Cvelist
Cvelist
added 2015/03/30 2:0 p.m.25 views

CVE-2015-2791

The "menu sync" function in the WPML plugin before 3.1.9 for WordPress allows remote attackers to delete arbitrary posts, pages, and menus via a crafted request to sitepress-multilingual-cms/menu/menus-sync.php...

6.7AI score0.13386EPSS
Exploits1References5
CVE
CVE
added 2015/03/30 2:0 p.m.60 views

CVE-2015-2791

CVE-2015-2791 affects the WordPress WPML plugin prior to 3.1.9. The vulnerability is in the plugin’s menu sync function and allows remote attackers to delete arbitrary posts, pages, and menus via a crafted request to sitepress-multilingual-cms/menu/menus-sync.php. The evidence base also notes bro...

6.4CVSS6.9AI score0.13386EPSS
Exploits1References5Affected Software1
Patchstack
Patchstack
added 2015/03/30 12:0 a.m.33 views

WordPress WPML Plugin <= 3.1.8 - Multiple Vulnerabilities

This WordPress Multilingual plugin is prone to SQL injection, missing authentication, page/post/menu deletion and reflected XSS vulnerabilities. Solution Update the plugin...

7.5CVSS2.6AI score0.038EPSS
Exploits1References1Affected Software1
WPVulnDB
WPVulnDB
added 2015/03/12 12:0 a.m.33 views

WPML <= 3.1.7.2 - Multiple Vulnerabilities (Including SQLi)

The sitepress-multilingual-cms WordPress plugin was affected by a Multiple Vulnerabilities Including SQLi security vulnerability...

7.5CVSS2.5AI score0.13386EPSS
Exploits3References5Affected Software1
Fedora
Fedora
added 2015/02/15 3:30 a.m.86 views

[SECURITY] Fedora 20 Update: roundcubemail-1.0.5-1.fc20

RoundCube Webmail is a browser-based multilingual IMAP client with an application-like user interface. It provides full functionality you expect from an e-mail client, including MIME support, address book, folder manipulation, message searching and spell checking. RoundCube Webmail is written in...

4.3CVSS0.2AI score0.03279EPSS
Exploits4
Drupal
Drupal
added 2015/01/07 12:0 a.m.19 views

SA-CONTRIB-2015-006 - Cloudwords for Multilingual Drupal - Multiple vulnerabilities

This module provides integration with the Cloudwords third-party service. The module was not sanitizing node titles on certain conditions, thereby leading to a Cross Site Scripting XSS vulnerability. Also, a menu callback was not protected against CSRF. The XSS vulnerability is mitigated by the...

6.8CVSS5.1AI score0.00965EPSS
Exploits0References10
Fedora
Fedora
added 2015/01/06 6:15 a.m.34 views

[SECURITY] Fedora 20 Update: roundcubemail-1.0.4-2.fc20

RoundCube Webmail is a browser-based multilingual IMAP client with an application-like user interface. It provides full functionality you expect from an e-mail client, including MIME support, address book, folder manipulation, message searching and spell checking. RoundCube Webmail is written in...

4.3CVSS7.5AI score0.01198EPSS
Exploits2
Kitploit
Kitploit
added 2014/08/11 11:53 p.m.20 views

PWGen - Generator of cryptographically-strong passwords

PWGen is a professional password generator capable of creating large amounts of cryptographically-secure passwords or passphrases consisting of words from a word list. It uses a “random pool ” technique to generate random data based on user inputs keystrokes, mouse handling and volatile system...

7.4AI score
Exploits0
WPVulnDB
WPVulnDB
added 2014/08/01 10:58 a.m.10 views

Knews 1.1.0 - wysiwyg/fontpicker/index.php ff Parameter XSS

The Knews Multilingual Newsletters WordPress plugin was affected by a wysiwyg/fontpicker/index.php ff Parameter XSS security vulnerability...

3.4AI score
Exploits0Affected Software1
WPVulnDB
WPVulnDB
added 2014/08/01 10:58 a.m.6 views

Knews 1.2.5 - Multilingual Newsletters Cross-Site Request Forgery

The Knews Multilingual Newsletters WordPress plugin was affected by a Multilingual Newsletters Cross-Site Request Forgery security vulnerability...

3AI score
Exploits0References2Affected Software1
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.22 views

Hotel / Resort Site Script with OnLine Reservation System

No description provided by source. Author: L0rd CrusAd3r aka VSN [email protected] Exploit Title:Hotel / Resort Site Script with OnLine Reservation System SQLi Vulnerable Published: 2010-06-08 Vendor url:http://www.mformula.com.br Greetz to:Sid3^effects, aaNumb, M4n0j and to all ICW members...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.15 views

Glossword <= 1.8.11 (index.php x) Local File Inclusion Vulnerability

No description provided by source. |--Glossword 1.8.11 LFI |--CMS INFORMATION: | |--WEB: http://code.google.com/p/glossword/ |--DOWNLOAD: http://code.google.com/p/glossword/downloads/list |--DESCRIPTION: Glossword is a system written in PHP to create and publish online multilingual dictionary,...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.27 views

Joomla com_autartimonial Sqli Vulnerability

No description provided by source. Name : Joomla comautartimonial Sqli Vulnerability Date : july 6,2010 Critical Level : HIGH vendor URL :http://www.autartica.be/ Author : Sid3^effects aKa HaRi special thanks to : r0073r inj3ct0r.com,L0rd CruSad3r,MaYur,MA1201,KeDar,Sonic,gunslinger greetz to...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.28 views

Allpc 2.5 osCommerce SQL/XSS Multiple Vulnerabilities

No description provided by source. +Title Allpc 2.5 osCommerce SQL-i/XSS Multiple Vulnerabilities +Author RoAdKiLlEr +Contact RoAdKiLlEratKhg-CrewdotWs +Tested on Win Xp Sp 2/3 --------------------------------------------------------------------------- Founded by RoAdKiLlEr Team: Albanian Hacking...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.19 views

B-Hind CMS (tiny_mce) Remote File Upload

No description provided by source. Title: B-Hind CMS tinymce Remote File Upload Vendor: http://www.b-hind.eu/ AUTHOR: innrwrld & h00die DESCRIPTION by vendor: B-interference Lite is a simple CMS for small websites. Ideal for local merchants or organizations. The content of page can be adjusted by...

7.1AI score
Exploits0
Kitploit
Kitploit
added 2014/06/09 8:52 p.m.14 views

OWASP Mantra Security Toolkit - Browser Based Security Framework

OWASP Mantra is a collection of free and open source tools integrated into a web browser, which can become handy for students, penetration testers, web application developers,security professionals etc. It is portable, ready-to-run, compact and follows the true spirit of free and open source...

7.2AI score
Exploits0
Fedora
Fedora
added 2013/11/10 7:15 a.m.26 views

[SECURITY] Fedora 20 Update: roundcubemail-0.9.5-1.fc20

RoundCube Webmail is a browser-based multilingual IMAP client with an application-like user interface. It provides full functionality you expect from an e-mail client, including MIME support, address book, folder manipulation, message searching and spell checking. RoundCube Webmail is written in...

7.5CVSS0.2AI score0.02873EPSS
Exploits0
OpenVAS
OpenVAS
added 2013/09/24 12:0 a.m.25 views

Fedora Update for roundcubemail FEDORA-2013-16192

Check for the Version of roundcubemail OpenVAS Vulnerability Test Fedora Update for roundcubemail FEDORA-2013-16192 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...

4.3CVSS0.1AI score0.02048EPSS
Exploits0References2
Rows per page
Query Builder