Lucene search
K

7 matches found

CNNVD
CNNVD
added 2026/05/09 12:0 a.m.15 views

Plainpad 安全漏洞

Plainpad is a self-hosted note-taking application by the individual developer Alex Tselegidis. A security vulnerability exists in Plainpad versions prior to 1.1.1, which stems from allowing a low-privileged user to self-elevate to administrator via the admin parameter in a PUT request, potentiall...

8.3CVSS5.8AI score0.00261EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/03/07 12:0 a.m.4 views

Backdrop CMS 跨站脚本漏洞

Backdrop CMS is a content management system CMS from Backdrop CMS open source. A cross-site scripting vulnerability exists in Backdrop CMS versions prior to 1.x-1.1.1, which stems from insufficient input cleanup and could lead to cross-site scripting attacks...

6.4CVSS6AI score0.00213EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/02/03 12:0 a.m.5 views

PT-2024-40157 · Github · Github-Slug-Action

Name of the Vulnerable Software and Affected Versions: github-slug-action versions prior to 1.1.1 github-slug-action versions prior to 2.1.1 Description: The issue is related to the use of set-env runner commands processed via stdout. It is recommended to upgrade to a version that uses the...

7.3AI score
Exploits0References3
Positive Technologies
Positive Technologies
added 2023/08/03 12:0 a.m.4 views

PT-2023-27863 · Answer +3 · Answer +2

Name of the Vulnerable Software and Affected Versions: answer versions prior to 1.1.1 Description: The issue concerns a Missing Authorization vulnerability. Recommendations: For versions prior to 1.1.1, update to version 1.1.1 or later to resolve the issue...

8.1CVSS8.2AI score0.00538EPSS
Exploits1References8
Positive Technologies
Positive Technologies
added 2022/11/14 12:0 a.m.5 views

PT-2022-23305 · Digitialpixies · Oauth Client

Name of the Vulnerable Software and Affected Versions: OAuth Client by DigitialPixies WordPress plugin versions prior to 1.1.1 Description: The issue allows high-privilege users, such as admins, to perform Stored Cross-Site Scripting attacks. This can occur even when the unfiltered html capabilit...

4.8CVSS6.2AI score0.00501EPSS
Exploits2References4
CNVD
CNVD
added 2021/07/01 12:0 a.m.6 views

Unspecified Vulnerability in PowerMux

PowerMux is an application software. http. ServeMux has all the missing features of Go's replacement. Versions of PowerMux prior to 1.1.1 contain a security vulnerability that allows attackers to craft phishing links and other open redirects by exploiting the trailing slash redirection feature...

6.1CVSS6.7AI score0.00606EPSS
Exploits0References1
Prion
Prion
added 2020/12/09 4:15 a.m.23 views

Code injection

Aptdaemon performed policykit checks after interacting with potentially untrusted files with elevated privileges. This affected versions prior to 1.1.1+bzr982-0ubuntu34.1, 1.1.1+bzr982-0ubuntu32.3, 1.1.1+bzr982-0ubuntu19.5, 1.1.1+bzr982-0ubuntu14.5...

2.1CVSS5.4AI score0.00288EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder