Lucene search
K

15 matches found

RedhatCVE
RedhatCVE
added 2026/03/26 5:2 p.m.3 views

CVE-2026-27054

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in PenciDesign Penci Soledad Data Migrator penci-data-migrator allows Reflected XSS.This issue affects Penci Soledad Data Migrator: from n/a through = 1.3.1...

7.1CVSS5.8AI score0.00175EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/25 6:31 p.m.4 views

EUVD-2026-15771

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in PenciDesign Penci Soledad Data Migrator penci-data-migrator allows Reflected XSS.This issue affects Penci Soledad Data Migrator: from n/a through = 1.3.1...

7.1CVSS5.8AI score0.00175EPSS
Exploits0References2
CVE
CVE
added 2026/03/25 4:14 p.m.7 views

CVE-2026-27054

CVE-2026-27054 refers to a Reflected Cross-Site Scripting (XSS) vulnerability in the Penci Soledad Data Migrator (penci-data-migrator) WordPress plugin. Description states an Improper Neutralization of Input During Web Page Generation enables Reflected XSS, affecting Penci Soledad Data Migrator v...

7.1CVSS5.8AI score0.00175EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/03/25 4:14 p.m.2 views

CVE-2026-27054 WordPress Penci Soledad Data Migrator plugin <= 1.3.1 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in PenciDesign Penci Soledad Data Migrator penci-data-migrator allows Reflected XSS.This issue affects Penci Soledad Data Migrator: from n/a through = 1.3.1...

7.1CVSS5.8AI score0.00175EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/03/25 4:14 p.m.25 views

CVE-2026-27054 WordPress Penci Soledad Data Migrator plugin <= 1.3.1 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in PenciDesign Penci Soledad Data Migrator penci-data-migrator allows Reflected XSS.This issue affects Penci Soledad Data Migrator: from n/a through = 1.3.1...

7.1CVSS0.00175EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/03/25 12:0 a.m.7 views

PT-2026-27971

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in PenciDesign Penci Soledad Data Migrator penci-data-migrator allows Reflected XSS.This issue affects Penci Soledad Data Migrator: from n/a through = 1.3.1...

5.8AI score0.00175EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/03/25 12:0 a.m.8 views

WordPress plugin Penci Soledad Data Migrator 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

7.1CVSS5.7AI score0.00175EPSS
Exploits0References1
Patchstack
Patchstack
added 2026/03/12 11:52 a.m.11 views

WordPress Penci Soledad Data Migrator plugin <= 1.3.1 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Plugin Penci Soledad Data Migrator versions = 1.3.1...

7.1CVSS5.8AI score0.00175EPSS
Exploits0Affected Software1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-32137

Malicious code in bioql PyPI...

9.8CVSS6.4AI score0.00689EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/05/17 2:3 a.m.13 views

CVE-2024-3551 Penci Soledad Data Migrator <= 1.3.0 - Unauthenticated Local File Inclusion

The Penci Soledad Data Migrator plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 1.3.0 via the 'data' parameter. This makes it possible for unauthenticated attackers to include and execute arbitrary files on the server, allowing the execution of any...

9.8CVSS7.9AI score0.00689EPSS
Exploits0References2
CVE
CVE
added 2024/05/17 2:3 a.m.40 views

CVE-2024-3551

CVE-2024-3551 affects the Penci Soledad Data Migrator plugin for WordPress. It allows Local File Inclusion via the data parameter in all versions up to 1.3.0, enabling unauthenticated attackers to include and execute PHP files on the server, bypassing access controls and potentially leading to co...

9.8CVSS7.9AI score0.00689EPSS
Exploits0References2
Patchstack
Patchstack
added 2024/05/17 12:57 a.m.3 views

WordPress Penci Soledad Data Migrator plugin <= 1.3.0 - Unauthenticated Local File Inclusion vulnerability

Unauthenticated Local File Inclusion vulnerability discovered by M.Awad in WordPress Plugin Penci Soledad Data Migrator versions = 1.3.0...

9.8CVSS7AI score0.00689EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2024/05/17 12:0 a.m.2 views

WordPress Plugin Penci Soledad Data Migrator 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

9.8CVSS6.8AI score0.00689EPSS
Exploits0References3
Patchstack
Patchstack
added 2024/05/17 12:0 a.m.15 views

WordPress Penci Soledad Data Migrator Plugin <= 1.3.0 is vulnerable to Local File Inclusion

Software Penci Soledad Data Migrator Type Plugin Vulnerable versions = 1.3.0 Fixed in 1.3.1 OWASP Top 10 A1: Injection Classification Local File Inclusion CVE CVE-2024-3551 Patch priority High CVSS severity High 9 Developer Claim ownership PSID 00732af89875 Credits M.Awad Required privilege...

9.8CVSS6.8AI score0.00689EPSS
Exploits0References2Affected Software1
WPVulnDB
WPVulnDB
added 2024/05/16 12:0 a.m.12 views

Penci Soledad Data Migrator < 1.3.1 - Unauthenticated Local File Inclusion

Description The Penci Soledad Data Migrator plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 1.3.0 via the 'data' parameter. This makes it possible for unauthenticated attackers to include and execute arbitrary files on the server, allowing the...

9.8CVSS8.2AI score0.00689EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder