Lucene search
K

6279 matches found

Patchstack
Patchstack
added 2025/01/16 6:42 p.m.5 views

WordPress Random Posts, Mp3 Player + ShareButton plugin <= 1.4.1 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by SOPROBRO in WordPress Plugin Random Posts, Mp3 Player + ShareButton versions = 1.4.1...

7.1CVSS6.1AI score0.00211EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/01/16 6:41 p.m.4 views

WordPress my-related-posts plugin <= 1.1 - CSRF to Stored XSS vulnerability

CSRF to Stored XSS vulnerability discovered by SOPROBRO in WordPress Plugin my-related-posts versions = 1.1...

7.1CVSS6.2AI score0.00197EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/01/16 6:41 p.m.3 views

WordPress Attach Gallery Posts plugin <= 1.6 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by Le Ngoc Anh in WordPress Plugin Attach Gallery Posts versions = 1.6...

7.1CVSS6.1AI score0.00276EPSS
Exploits0Affected Software1
Circl
Circl
added 2025/01/16 6:1 p.m.9 views

CVE-2024-37181

creationtimestamp| type| source ---|---|--- 2025-01-16 18:01:12+00:00| seen| https://infosec.exchange/users/cve/statuses/113839339708358437 2025-01-16 18:15:43+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lfuv65cevp2j 2025-01-16 18:44:12+00:00| seen|...

2.6CVSS5.8AI score0.00132EPSS
Exploits0References4
Circl
Circl
added 2025/01/16 3:8 a.m.17 views

CVE-2025-22907

creationtimestamp| type| source ---|---|--- 2025-01-16 03:08:07+00:00| seen| https://infosec.exchange/users/cve/statuses/113835827961264343 2025-01-16 03:15:37+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lftcuo6mte2t 2025-01-16 03:48:45+00:00| seen|...

9.8CVSS5.8AI score0.00894EPSS
Exploits1References6
Circl
Circl
added 2025/01/16 12:59 a.m.8 views

CVE-2024-9042

creationtimestamp| type| source ---|---|--- 2025-01-16 00:59:42+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3lft3bma4gs2t 2025-01-16 03:04:51+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3lftcbec3qa24 2025-01-16 11:25:08+00:00| seen|...

5.9CVSS6.6AI score0.01394EPSS
Exploits0References24
Positive Technologies
Positive Technologies
added 2025/01/16 12:0 a.m.3 views

PT-2025-4898 · Isnowfy · My-Related-Posts

Name of the Vulnerable Software and Affected Versions: isnowfy my-related-posts versions n/a through 1.1 Description: The issue is a Cross-Site Request Forgery CSRF vulnerability that allows Stored XSS. This means an attacker can trick a user into performing unintended actions on a web applicatio...

7.1CVSS9AI score0.00197EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/01/16 12:0 a.m.3 views

PT-2025-5073 · Unknown · Copy Move Posts

Name of the Vulnerable Software and Affected Versions: Copy Move Posts versions n/a through 1.6 Description: The issue is related to a lack of authorization in Copy Move Posts, allowing the exploitation of incorrectly configured access control security levels. Recommendations: For versions n/a...

5.3CVSS9.3AI score0.00439EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/01/16 12:0 a.m.3 views

WordPress plugin Copy Move Posts 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exist...

5.3CVSS8.2AI score0.00439EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/01/16 12:0 a.m.4 views

WordPress plugin Mark Posts 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

5.4CVSS8.3AI score0.00305EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/01/16 12:0 a.m.4 views

WordPress plugin my-related-posts 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site request forgery vulnerability...

7.1CVSS8.2AI score0.00197EPSS
Exploits0References1
Circl
Circl
added 2025/01/15 5:15 p.m.5 views

CVE-2024-57013

creationtimestamp| type| source ---|---|--- 2025-01-15 17:15:54+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lfsbeb53ed2c 2025-01-15 18:24:35+00:00| seen| https://infosec.exchange/users/cR0w/statuses/113833769317315493 2025-01-15 19:18:55+00:00| seen|...

8.8CVSS8.9AI score0.01573EPSS
Exploits1References4
Circl
Circl
added 2025/01/15 4:18 p.m.18 views

CVE-2025-22797

creationtimestamp| type| source ---|---|--- 2025-01-15 16:18:04+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lfs64ua2562p 2025-01-15 16:58:04+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lfsaeaxymu2r 2025-01-15 17:38:04+00:00| seen|...

6.5CVSS7.3AI score0.00218EPSS
Exploits0References5
NVD
NVD
added 2025/01/15 4:15 p.m.33 views

CVE-2025-22734

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Data443 Risk Mitigation, Inc. Posts Footer Manager intelly-posts-footer-manager allows Stored XSS.This issue affects Posts Footer Manager: from n/a through = 2.1.0...

5.9CVSS0.00275EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/01/15 4:10 p.m.9 views

CVE-2025-21083 Insufficient Input Validation on Post Props

Mattermost Mobile Apps versions =2.22.0 fail to properly validate post props which allows a malicious authenticated user to cause a crash via a malicious post...

6.5CVSS6.8AI score0.00502EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/01/15 3:23 p.m.11 views

CVE-2025-22734 WordPress Posts Footer Manager Plugin <= 2.1.0 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Data443 Risk Mitigation, Inc. Posts Footer Manager intelly-posts-footer-manager allows Stored XSS.This issue affects Posts Footer Manager: from n/a through = 2.1.0...

5.9CVSS8.6AI score0.00275EPSS
Exploits0References1
Circl
Circl
added 2025/01/15 3:4 p.m.17 views

CVE-2024-47002

creationtimestamp| type| source ---|---|--- 2025-01-15 15:04:53+00:00| seen| https://infosec.exchange/users/cve/statuses/113832984101239506 2025-01-15 15:10:33+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/1763 2025-01-15 15:15:50+00:00| seen|...

8.7CVSS8.1AI score0.14439EPSS
Exploits1References7
Circl
Circl
added 2025/01/15 12:16 p.m.4 views

CVE-2024-11848

creationtimestamp| type| source ---|---|--- 2025-01-15 12:16:27+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lfrqmsfhfn2s 2025-01-15 12:22:07+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/1736 2025-01-15 12:47:44+00:00| seen|...

8.1CVSS8.7AI score0.00646EPSS
Exploits0References8
Vulnrichment
Vulnrichment
added 2025/01/15 9:25 a.m.3 views

CVE-2024-10775 Piotnet Addons For Elementor <= 2.4.32 - Authenticated (Contributor+) Post Disclosure

The Piotnet Addons For Elementor plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 2.4.32 via the 'pafe-template' shortcode due to insufficient restrictions on which posts can be included. This makes it possible for authenticated attackers, with...

4.3CVSS5.5AI score0.00289EPSS
Exploits0References2
Circl
Circl
added 2025/01/15 7:52 a.m.12 views

CVE-2024-7595

creationtimestamp| type| source ---|---|--- 2025-01-15 07:52:57+00:00| seen| https://vulnerability.circl.lu/bundle/1589f952-6079-4a2c-b742-e8d947b50a39 2025-01-15 07:57:45+00:00| seen| https://social.circl.lu/users/circl/statuses/113831304477406737 2025-01-16 19:02:10+00:00|...

6.5CVSS5.8AI score0.01488EPSS
Exploits0References15
Rows per page
Query Builder