Lucene search
K

557 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 8:46 a.m.5 views

CVE-2025-23497

Cross-Site Request Forgery CSRF vulnerability in albdesign Simple Project Manager simple-project-managment allows Stored XSS.This issue affects Simple Project Manager: from n/a through = 1.2.2...

7.1CVSS7.2AI score0.00195EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/12/31 12:2 a.m.8 views

CVE-2025-68040

Insertion of Sensitive Information Into Sent Data vulnerability in weDevs WP Project Manager wedevs-project-manager allows Retrieve Embedded Sensitive Data.This issue affects WP Project Manager: from n/a through = 3.0.1...

6.5CVSS5.9AI score0.00223EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/30 12:32 a.m.5 views

EUVD-2025-205670

Insertion of Sensitive Information Into Sent Data vulnerability in weDevs WP Project Manager wedevs-project-manager allows Retrieve Embedded Sensitive Data.This issue affects WP Project Manager: from n/a through 3.0.1...

6.5CVSS6.4AI score0.00223EPSS
Exploits0References2
NVD
NVD
added 2025/12/30 12:15 a.m.4 views

CVE-2025-68040

Insertion of Sensitive Information Into Sent Data vulnerability in weDevs WP Project Manager wedevs-project-manager allows Retrieve Embedded Sensitive Data.This issue affects WP Project Manager: from n/a through = 3.0.1...

6.5CVSS0.00223EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/12/30 12:0 a.m.3 views

WordPress plugin WP Project Manager 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security vulnerabili...

6.5CVSS5.8AI score0.00223EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/12/29 11:25 p.m.6 views

CVE-2025-68040 WordPress WP Project Manager plugin <= 3.0.1 - Sensitive Data Exposure vulnerability

Insertion of Sensitive Information Into Sent Data vulnerability in weDevs WP Project Manager wedevs-project-manager allows Retrieve Embedded Sensitive Data.This issue affects WP Project Manager: from n/a through 3.0.1...

6.5CVSS6.5AI score0.00223EPSS
Exploits0References1
CVE
CVE
added 2025/12/29 11:25 p.m.14 views

CVE-2025-68040

Technical details for CVE-2025-68040 are not provided in the given materials. Public information about affected versions, exploitability, and fixes is unavailable here; please monitor for official advisories and vendor updates.

6.5CVSS5.9AI score0.00223EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/12/29 11:25 p.m.27 views

CVE-2025-68040 WordPress WP Project Manager plugin <= 3.0.1 - Sensitive Data Exposure vulnerability

Insertion of Sensitive Information Into Sent Data vulnerability in weDevs WP Project Manager wedevs-project-manager allows Retrieve Embedded Sensitive Data.This issue affects WP Project Manager: from n/a through = 3.0.1...

6.5CVSS0.00223EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/12/29 12:0 a.m.5 views

PT-2025-53814

Name of the Vulnerable Software and Affected Versions weDevs WP Project Manager versions through 3.0.1 Description A flaw exists in weDevs WP Project Manager that allows for the retrieval of embedded sensitive data. The issue involves the insertion of sensitive information into sent data...

6.5CVSS6.2AI score0.00223EPSS
Exploits0References3
Patchstack
Patchstack
added 2025/12/26 6:36 a.m.5 views

WordPress WP Project Manager plugin <= 3.0.1 - Sensitive Data Exposure vulnerability

Sensitive Data Exposure vulnerability discovered by MD ISMAIL in WordPress Plugin WP Project Manager versions = 3.0.1...

6.5CVSS6.7AI score0.00223EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVE
added 2025/12/18 7:36 a.m.5 views

CVE-2025-12496

The Zephyr Project Manager plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 3.3.203 via the file parameter. This makes it possible for authenticated attackers, with Custom-level access and above, to read the contents of arbitrary files on the server,...

4.9CVSS5.9AI score0.00589EPSS
Exploits0References1
NVD
NVD
added 2025/12/17 8:15 a.m.6 views

CVE-2025-12496

The Zephyr Project Manager plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 3.3.203 via the file parameter. This makes it possible for authenticated attackers, with Custom-level access and above, to read the contents of arbitrary files on the server,...

4.9CVSS0.00589EPSS
Exploits0References3
Patchstack
Patchstack
added 2025/12/17 7:25 a.m.8 views

WordPress Zephyr Project Manager plugin <= 3.3.203 - Authenticated (Custom+) Arbitrary File Read And Server-Side Request Forgery vulnerability

Authenticated Custom+ Arbitrary File Read And Server-Side Request Forgery vulnerability discovered by type5afe in WordPress Plugin Zephyr Project Manager versions = 3.3.203...

4.9CVSS6.8AI score0.00589EPSS
Exploits0References1Affected Software1
EUVD
EUVD
added 2025/12/17 7:21 a.m.8 views

EUVD-2025-203881

The Zephyr Project Manager plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 3.3.203 via the file parameter. This makes it possible for authenticated attackers, with Custom-level access and above, to read the contents of arbitrary files on the server,...

4.9CVSS5.4AI score0.00589EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/12/17 7:21 a.m.30 views

CVE-2025-12496 Zephyr Project Manager <= 3.3.203 - Authenticated (Custom+) Arbitrary File Read And Server-Side Request Forgery

The Zephyr Project Manager plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 3.3.203 via the file parameter. This makes it possible for authenticated attackers, with Custom-level access and above, to read the contents of arbitrary files on the server,...

4.9CVSS0.00589EPSS
Exploits0References3
CVE
CVE
added 2025/12/17 7:21 a.m.16 views

CVE-2025-12496

The CVE-2025-12496 entry concerns the Zephyr Project Manager WordPress plugin. It describes a Directory Traversal vulnerability across all versions up to 3.3.203 via the file parameter, enabling authenticated attackers with Custom-level access and above to read arbitrary server files (potentially...

4.9CVSS5.5AI score0.00589EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/12/17 7:21 a.m.4 views

CVE-2025-12496 Zephyr Project Manager <= 3.3.203 - Authenticated (Custom+) Arbitrary File Read And Server-Side Request Forgery

The Zephyr Project Manager plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 3.3.203 via the file parameter. This makes it possible for authenticated attackers, with Custom-level access and above, to read the contents of arbitrary files on the server,...

4.9CVSS5.5AI score0.00589EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/12/17 12:0 a.m.4 views

WordPress plugin Zephyr Project Manager 路径遍历漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to set up personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A path...

4.9CVSS6.6AI score0.00589EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/12/01 4:17 p.m.5 views

CVE-2025-13791

A vulnerability was identified in Scada-LTS up to 2.7.8.1. Affected is the function Common.getHomeDir of the file br/org/scadabr/vo/exporter/ZIPProjectManager.java of the component Project Import. Such manipulation leads to path traversal. The attack may be launched remotely. The exploit is...

6.5CVSS6.6AI score0.00414EPSS
Exploits1References1
EUVD
EUVD
added 2025/11/30 6:30 p.m.4 views

EUVD-2025-199936

A vulnerability was identified in Scada-LTS up to 2.7.8.1. Affected is the function Common.getHomeDir of the file br/org/scadabr/vo/exporter/ZIPProjectManager.java of the component Project Import. Such manipulation leads to path traversal. The attack may be launched remotely. The exploit is...

6.5CVSS6.3AI score0.00414EPSS
Exploits1References6
Rows per page
Query Builder