Lucene search
K

281 matches found

Cvelist
Cvelist
added 2025/01/09 3:38 p.m.21 views

CVE-2025-22824 WordPress Live Flight Radar Plugin <= 1.0 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in lucia.intelisano Live Flight Radar live-flight-radar allows Stored XSS.This issue affects Live Flight Radar: from n/a through = 1.0...

6.5CVSS0.00206EPSS
Exploits0References1
CVE
CVE
added 2025/01/09 3:38 p.m.49 views

CVE-2025-22824

CVE-2025-22824 is documented as a Stored XSS in the Live Flight Radar WordPress plugin. The vulnerability affects Live Flight Radar versions up to 1.0, with the issue described as improper neutralization of input during web page generation. The provided sources do not include version-specific pat...

6.5CVSS7.2AI score0.00206EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/01/09 12:0 a.m.3 views

PT-2025-4732 · Unknown · Lucia Intelisano Live Flight Radar

Name of the Vulnerable Software and Affected Versions: Lucia Intelisano Live Flight Radar versions prior to 1.0 Description: The issue is related to improper neutralization of input during web page generation, which allows for stored Cross-site Scripting XSS. This enables attackers to inject...

6.5CVSS6.7AI score0.00206EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/01/09 12:0 a.m.4 views

WordPress plugin Live Flight Radar 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

6.5CVSS7.6AI score0.00206EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/01/07 9:34 p.m.3 views

WordPress Live Flight Radar Plugin <= 1.0 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by 0xd4rk5id3 Patchstack Alliance in WordPress Plugin Live Flight Radar versions = 1.0...

6.5CVSS6.1AI score0.00206EPSS
Exploits0Affected Software1
Qualys Blog
Qualys Blog
added 2024/11/05 7:59 p.m.7 views

Qualys Web Application Scanning (WAS) Recognized as a Leader in 2024 GigaOm Radar Report for Application Security Testing (AST)

In the ever-evolving cybersecurity landscape, securing web applications and APIs is no longer an option—it’s a necessity. As organizations face increasingly complex threats, ensuring the integrity of these digital assets has become paramount. However, it’s easy to feel overwhelmed by the sheer...

7.4AI score
Exploits0
OSV
OSV
added 2024/10/18 7:15 p.m.3 views

CVE-2024-10121

A vulnerability was found in wfh45678 Radar up to 1.0.8 and classified as critical. This issue affects some unknown processing of the component Interface Handler. The manipulation with the input /../ leads to authorization bypass. The attack may be initiated remotely. The exploit has been disclos...

9.8CVSS5.3AI score0.00673EPSS
Exploits1References4
NVD
NVD
added 2024/10/18 7:15 p.m.12 views

CVE-2024-10121

A vulnerability was found in wfh45678 Radar up to 1.0.8 and classified as critical. This issue affects some unknown processing of the component Interface Handler. The manipulation with the input /../ leads to authorization bypass. The attack may be initiated remotely. The exploit has been disclos...

9.8CVSS0.00673EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2024/10/18 6:31 p.m.14 views

CVE-2024-10121 wfh45678 Radar Interface authorization

A vulnerability was found in wfh45678 Radar up to 1.0.8 and classified as critical. This issue affects some unknown processing of the component Interface Handler. The manipulation with the input /../ leads to authorization bypass. The attack may be initiated remotely. The exploit has been disclos...

7.5CVSS6.7AI score0.00673EPSS
Exploits1References4
Cvelist
Cvelist
added 2024/10/18 6:31 p.m.26 views

CVE-2024-10121 wfh45678 Radar Interface authorization

A vulnerability was found in wfh45678 Radar up to 1.0.8 and classified as critical. This issue affects some unknown processing of the component Interface Handler. The manipulation with the input /../ leads to authorization bypass. The attack may be initiated remotely. The exploit has been disclos...

7.5CVSS0.00673EPSS
Exploits1References4
CVE
CVE
added 2024/10/18 6:31 p.m.44 views

CVE-2024-10121

CVE-2024-10121 affects wfh45678 Radar up to version 1.0.8, targeting the Interface Handler. The issue allows remote authorization bypass via manipulation of the input /../, with the vulnerability not classified as path traversal. Multiple sources confirm the impact as an authorization bypass affe...

9.8CVSS7.4AI score0.00673EPSS
Exploits1References4Affected Software1
OSV
OSV
added 2024/10/18 5:15 p.m.2 views

CVE-2024-10120

A vulnerability has been found in wfh45678 Radar up to 1.0.8 and classified as critical. This vulnerability affects unknown code of the file /services/v1/common/upload. The manipulation of the argument file leads to unrestricted upload. The attack can be initiated remotely. The exploit has been...

9.8CVSS6.7AI score0.00691EPSS
Exploits1References4
NVD
NVD
added 2024/10/18 5:15 p.m.11 views

CVE-2024-10120

A vulnerability has been found in wfh45678 Radar up to 1.0.8 and classified as critical. This vulnerability affects unknown code of the file /services/v1/common/upload. The manipulation of the argument file leads to unrestricted upload. The attack can be initiated remotely. The exploit has been...

9.8CVSS0.00691EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2024/10/18 5:0 p.m.11 views

CVE-2024-10120 wfh45678 Radar upload unrestricted upload

A vulnerability has been found in wfh45678 Radar up to 1.0.8 and classified as critical. This vulnerability affects unknown code of the file /services/v1/common/upload. The manipulation of the argument file leads to unrestricted upload. The attack can be initiated remotely. The exploit has been...

7.5CVSS6.9AI score0.00691EPSS
Exploits1References4
Cvelist
Cvelist
added 2024/10/18 5:0 p.m.18 views

CVE-2024-10120 wfh45678 Radar upload unrestricted upload

A vulnerability has been found in wfh45678 Radar up to 1.0.8 and classified as critical. This vulnerability affects unknown code of the file /services/v1/common/upload. The manipulation of the argument file leads to unrestricted upload. The attack can be initiated remotely. The exploit has been...

7.5CVSS0.00691EPSS
Exploits1References4
CVE
CVE
added 2024/10/18 5:0 p.m.37 views

CVE-2024-10120

CVE-2024-10120 (Radar) affects wfh45678 Radar versions up to 1.0.8. A vulnerability exists in the endpoint /services/v1/common/upload where the manipulation of the file argument enables unrestricted file upload. Exploitation can be performed remotely and has been disclosed publicly. Practical imp...

9.8CVSS7.5AI score0.00691EPSS
Exploits1References4Affected Software1
CNNVD
CNNVD
added 2024/10/18 12:0 a.m.5 views

Radar 代码问题漏洞

Radar wind control engine is a lightweight real-time wind control engine by feihu.wang individual developers. A code issue vulnerability exists in Radar 1.0.8 and earlier versions, which stems from the parameter file in the file /services/v1/common/upload. which can lead to unlimited uploads...

9.8CVSS7.5AI score0.00691EPSS
Exploits1References5
CNNVD
CNNVD
added 2024/10/18 12:0 a.m.2 views

Radar 安全漏洞

Radar wind control engine is a lightweight real-time wind control engine by feihu.wang individual developers. wfh45678 A security vulnerability exists in Radar version 1.0.8 and earlier, which stems from the component Interface Handler's manipulation of the input /.../ can lead to authorization...

9.8CVSS7.3AI score0.00673EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2024/10/18 12:0 a.m.3 views

PT-2024-16044 · Unknown · Wfh45678 Radar

Name of the Vulnerable Software and Affected Versions: wfh45678 Radar versions up to 1.0.8 Description: A critical issue affects the Interface Handler component, allowing for authorization bypass through manipulation of the input /../. This can be initiated remotely and is not considered a path...

9.8CVSS7.1AI score0.00673EPSS
Exploits1References8
Positive Technologies
Positive Technologies
added 2024/10/18 12:0 a.m.6 views

PT-2024-16043 · Unknown · Wfh45678 Radar

Name of the Vulnerable Software and Affected Versions: wfh45678 Radar versions up to 1.0.8 Description: A critical issue has been found in the software, affecting unknown code in the file /services/v1/common/upload. The manipulation of the file argument leads to unrestricted upload. This can be...

9.8CVSS7.5AI score0.00691EPSS
Exploits1References9
Rows per page
Query Builder