Lucene search
K

96 matches found

NVD
NVD
added 2023/12/29 9:15 a.m.24 views

CVE-2023-45751

Improper Control of Generation of Code 'Code Injection' vulnerability in POSIMYTH Nexter Extension.This issue affects Nexter Extension: from n/a through 2.0.3...

9.1CVSS0.00577EPSS
Exploits0References1
Prion
Prion
added 2023/12/29 9:15 a.m.19 views

Code injection

Improper Control of Generation of Code 'Code Injection' vulnerability in POSIMYTH Nexter Extension.This issue affects Nexter Extension: from n/a through 2.0.3...

5.8CVSS7.3AI score0.00577EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/12/29 9:2 a.m.29 views

CVE-2023-45751 WordPress Nexter Extension Plugin <= 2.0.3 is vulnerable to Remote Code Execution (RCE)

Improper Control of Generation of Code 'Code Injection' vulnerability in POSIMYTH Nexter Extension.This issue affects Nexter Extension: from n/a through 2.0.3...

9.1CVSS9.6AI score0.00577EPSS
Exploits0References1
CVE
CVE
added 2023/12/29 9:2 a.m.73 views

CVE-2023-45751

CVE-2023-45751 (Nexter Extension, POSIMYTH) : WordPress Nexter Extension versions up to 2.0.3 are vulnerable to remote code execution via a code-injection flaw in the Nexter metabox (authenticated, Editor+ required). Patch status: fixed in 2.0.4. The exploit path relies on issuing code through th...

9.1CVSS7.6AI score0.00577EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2023/11/06 9:15 a.m.3 views

CVE-2023-45657

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in POSIMYTH Nexter allows SQL Injection.This issue affects Nexter: from n/a through 2.0.3...

9.8CVSS5.8AI score0.01284EPSS
Exploits0References1
NVD
NVD
added 2023/11/06 9:15 a.m.26 views

CVE-2023-45657

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in POSIMYTH Nexter allows SQL Injection.This issue affects Nexter: from n/a through 2.0.3...

9.8CVSS9.8AI score0.01284EPSS
Exploits0References1
Prion
Prion
added 2023/11/06 9:15 a.m.17 views

Sql injection

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in POSIMYTH Nexter allows SQL Injection.This issue affects Nexter: from n/a through 2.0.3...

7.5CVSS7.8AI score0.01284EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/11/06 8:52 a.m.77 views

CVE-2023-45657

CVE-2023-45657 affects the Nexter WordPress theme up to version 2.0.3. Root cause is improper neutralization of special elements in SQL commands, enabling SQL Injection. Impact includes potential unauthorized data access; patch 2.0.4 fixes the issue. Authenticated/subscriber access is sufficient ...

9.8CVSS8.9AI score0.01284EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2023/10/25 6:17 p.m.4 views

CVE-2023-45750

Unauth. Reflected Cross-Site Scripting XSS vulnerability in POSIMYTH Nexter Extension plugin = 2.0.3 versions...

6.1CVSS7.3AI score0.00437EPSS
Exploits0References1
NVD
NVD
added 2023/10/25 6:17 p.m.10 views

CVE-2023-45750

Unauth. Reflected Cross-Site Scripting XSS vulnerability in POSIMYTH Nexter Extension plugin = 2.0.3 versions...

7.1CVSS6.2AI score0.00437EPSS
Exploits0References1
Prion
Prion
added 2023/10/25 6:17 p.m.15 views

Cross site scripting

Unauth. Reflected Cross-Site Scripting XSS vulnerability in POSIMYTH Nexter Extension plugin = 2.0.3 versions...

5.8CVSS6AI score0.00437EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/10/24 11:28 a.m.16 views

CVE-2023-45750 WordPress Nexter Extension Plugin <= 2.0.3 is vulnerable to Cross Site Scripting (XSS)

Unauth. Reflected Cross-Site Scripting XSS vulnerability in POSIMYTH Nexter Extension plugin = 2.0.3 versions...

7.1CVSS6AI score0.00437EPSS
Exploits0References1
CVE
CVE
added 2023/10/24 11:28 a.m.43 views

CVE-2023-45750

CVE-2023-45750 concerns the Nexter Extension plugin for WordPress (POSIMYTH Nexter Extension) with an unauthenticated reflected XSS vulnerability in versions

7.1CVSS6AI score0.00437EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/10/24 11:28 a.m.19 views

CVE-2023-45750 WordPress Nexter Extension Plugin <= 2.0.3 is vulnerable to Cross Site Scripting (XSS)

Unauth. Reflected Cross-Site Scripting XSS vulnerability in POSIMYTH Nexter Extension plugin = 2.0.3 versions...

7.1CVSS6.3AI score0.00437EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/10/24 12:0 a.m.5 views

PT-2023-29666 · Unknown · Posimyth Nexter Extension

Name of the Vulnerable Software and Affected Versions: POSIMYTH Nexter Extension plugin versions = 2.0.3 Description: The issue is related to an Unauth. Reflected Cross-Site Scripting XSS vulnerability. This allows for malicious scripts to be injected into a website, potentially leading to...

7.1CVSS6.2AI score0.00437EPSS
Exploits0References4
Patchstack
Patchstack
added 2023/10/12 12:0 a.m.13 views

WordPress Nexter Extension Plugin <= 2.0.3 is vulnerable to Remote Code Execution (RCE)

Software Nexter Extension Type Plugin Vulnerable versions = 2.0.3 Fixed in 2.0.4 OWASP Top 10 A1: Injection Classification Remote Code Execution RCE CVE CVE-2023-45751 Patch priority Medium CVSS severity Medium 9.1 Developer POSIMYTH Innovations PSID 69a3443fb3d9 Credits Rafie Muhammad Patchstack...

9.1CVSS7.2AI score0.00577EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder