Lucene search
K

2118 matches found

CVE
CVE
added 2024/08/07 3:14 p.m.140 views

CVE-2024-42250

Technical details about CVE-2024-42250 (affected component, root cause, impact, and remediation) are not provided in the connected documents. Monitor vendor advisories for updates.

5.5CVSS6.2AI score0.00165EPSS
Exploits0References5Affected Software1
Vulnrichment
Vulnrichment
added 2024/08/07 3:14 p.m.11 views

CVE-2024-42250 cachefiles: add missing lock protection when polling

In the Linux kernel, the following vulnerability has been resolved: cachefiles: add missing lock protection when polling Add missing lock protection in poll routine when iterating xarray, otherwise: Even with RCU read lock held, only the slot of the radix tree is ensured to be pinned there, while...

6.5AI score0.00165EPSS
Exploits0References4
NVD
NVD
added 2024/08/06 4:15 p.m.18 views

CVE-2024-6720

The Light Poll WordPress plugin through 1.0.0 does not have CSRF checks in some places, which could allow attackers to make logged in users perform unwanted actions via CSRF attacks...

8.8CVSS0.00213EPSS
Exploits0References1
OSV
OSV
added 2024/08/06 4:15 p.m.2 views

CVE-2024-6720

The Light Poll WordPress plugin through 1.0.0 does not have CSRF checks in some places, which could allow attackers to make logged in users perform unwanted actions via CSRF attacks...

8.8CVSS5.8AI score0.00213EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/08/06 3:28 p.m.12 views

CVE-2024-6720 Light Poll <= 1.0.0 - Poll Answers Deletion via CSRF

The Light Poll WordPress plugin through 1.0.0 does not have CSRF checks in some places, which could allow attackers to make logged in users perform unwanted actions via CSRF attacks...

6.8AI score0.00213EPSS
Exploits0References1
CVE
CVE
added 2024/08/06 3:28 p.m.27 views

CVE-2024-6720

CVE-2024-6720 affects Light Poll WordPress plugin (

8.8CVSS7AI score0.00213EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/08/06 3:28 p.m.32 views

CVE-2024-6720 Light Poll <= 1.0.0 - Poll Answers Deletion via CSRF

The Light Poll WordPress plugin through 1.0.0 does not have CSRF checks in some places, which could allow attackers to make logged in users perform unwanted actions via CSRF attacks...

0.00213EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2024/08/06 1:59 a.m.1 views

SUSE CVE-2024-42108

In the Linux kernel, the following vulnerability has been resolved: net: rswitch: Avoid use-after-free in rswitchpoll The use-after-free is actually in rswitchtxfree, which is inlined in rswitchpoll. Since skb and gq-skbsgq-dirty are in fact the same pointer, the skb is first freed using...

5.5CVSS7.8AI score0.00232EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/08/06 12:0 a.m.2 views

WordPress plugin Light Poll 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

8.8CVSS6.6AI score0.00213EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/08/06 12:0 a.m.3 views

PT-2024-37820 · WordPress · The Light Poll

Name of the Vulnerable Software and Affected Versions: The Light Poll WordPress plugin version 1.0.0 Description: The issue concerns the lack of CSRF checks in certain areas, potentially allowing attackers to trick logged-in users into performing unintended actions through CSRF attacks...

8.8CVSS6.7AI score0.00213EPSS
Exploits0References4
OSV
OSV
added 2024/08/01 6:15 a.m.3 views

CVE-2024-6496

The Light Poll WordPress plugin through 1.0.0 does not have CSRF checks when deleting polls, which could allow attackers to make logged in users perform such action via a CSRF attack...

6.5CVSS5.8AI score0.00255EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2024/08/01 6:0 a.m.12 views

CVE-2024-6496 Light Poll <= 1.0.0 - Polls Deletion via CSRF

The Light Poll WordPress plugin through 1.0.0 does not have CSRF checks when deleting polls, which could allow attackers to make logged in users perform such action via a CSRF attack...

6.8AI score0.00255EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/08/01 6:0 a.m.29 views

CVE-2024-6496 Light Poll <= 1.0.0 - Polls Deletion via CSRF

The Light Poll WordPress plugin through 1.0.0 does not have CSRF checks when deleting polls, which could allow attackers to make logged in users perform such action via a CSRF attack...

0.00255EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2024/08/01 12:0 a.m.6 views

PT-2024-37670 · WordPress · Light Poll Wordpress Plugin

Name of the Vulnerable Software and Affected Versions: The Light Poll WordPress plugin versions through 1.0.0 Description: The issue concerns a lack of CSRF checks when deleting polls, which could allow attackers to make logged-in users perform such actions via a CSRF attack. Recommendations: For...

6.5CVSS6.2AI score0.00255EPSS
Exploits1References6
CNNVD
CNNVD
added 2024/08/01 12:0 a.m.3 views

WordPress plugin Light Poll 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

6.5CVSS6.7AI score0.00255EPSS
Exploits1References2
Patchstack
Patchstack
added 2024/07/16 2:20 a.m.3 views

WordPress Light Poll plugin <= 1.0.0 - Poll Answers Deletion via CSRF vulnerability

Poll Answers Deletion via CSRF vulnerability discovered by Vuln Seeker Cybersecurity Team in WordPress Plugin Light Poll versions = 1.0.0...

8.8CVSS7AI score0.00213EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/07/16 12:0 a.m.7 views

WordPress Light Poll Plugin <= 1.0.0 is vulnerable to Cross Site Request Forgery (CSRF)

Software Light Poll Type Plugin Vulnerable versions = 1.0.0 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-6720 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 167c407c922d Credits Vuln Seeker Cybersecurity...

8.8CVSS6.7AI score0.00213EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2024/07/12 1:15 p.m.1 views

DEBIAN-CVE-2024-41005

In the Linux kernel, the following vulnerability has been resolved: netpoll: Fix race condition in netpollowneractive KCSAN detected a race condition in netpoll: BUG: KCSAN: data-race in netrxaction / netpollsendskb write marked to 0xffff8881164168b0 of 4 bytes by interrupt on cpu 10: netrxaction...

4.7CVSS5.5AI score0.0019EPSS
Exploits0References1
OSV
OSV
added 2024/07/12 1:15 p.m.0 views

UBUNTU-CVE-2024-41005

In the Linux kernel, the following vulnerability has been resolved: netpoll: Fix race condition in netpollowneractive KCSAN detected a race condition in netpoll: BUG: KCSAN: data-race in netrxaction / netpollsendskb write marked to 0xffff8881164168b0 of 4 bytes by interrupt on cpu 10: netrxaction...

4.7CVSS6.2AI score0.0019EPSS
Exploits0References22
Packet Storm
Packet Storm
added 2024/07/11 12:0 a.m.423 views

WordPress Poll Maker 5.3.2 SQL Injection

Exploit Title: WordPress Poll Maker Plugin SQL Injection Date: 2024-07-11 Exploit Author: tmrswrr Category : Webapps Vendor: https://ays-pro.com/wordpress/poll-maker Version 5.3.2 1. Access the Admin Panel: - Navigate to the admin panel of your WordPress site. - Go to Poll Maker Results...

7.4AI score
Exploits0
Rows per page
Query Builder