281 matches found
CVE-2025-22824 WordPress Live Flight Radar Plugin <= 1.0 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in lucia.intelisano Live Flight Radar live-flight-radar allows Stored XSS.This issue affects Live Flight Radar: from n/a through = 1.0...
CVE-2025-22824
CVE-2025-22824 is documented as a Stored XSS in the Live Flight Radar WordPress plugin. The vulnerability affects Live Flight Radar versions up to 1.0, with the issue described as improper neutralization of input during web page generation. The provided sources do not include version-specific pat...
PT-2025-4732 · Unknown · Lucia Intelisano Live Flight Radar
Name of the Vulnerable Software and Affected Versions: Lucia Intelisano Live Flight Radar versions prior to 1.0 Description: The issue is related to improper neutralization of input during web page generation, which allows for stored Cross-site Scripting XSS. This enables attackers to inject...
WordPress plugin Live Flight Radar 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...
WordPress Live Flight Radar Plugin <= 1.0 - Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability discovered by 0xd4rk5id3 Patchstack Alliance in WordPress Plugin Live Flight Radar versions = 1.0...
Qualys Web Application Scanning (WAS) Recognized as a Leader in 2024 GigaOm Radar Report for Application Security Testing (AST)
In the ever-evolving cybersecurity landscape, securing web applications and APIs is no longer an option—it’s a necessity. As organizations face increasingly complex threats, ensuring the integrity of these digital assets has become paramount. However, it’s easy to feel overwhelmed by the sheer...
CVE-2024-10121
A vulnerability was found in wfh45678 Radar up to 1.0.8 and classified as critical. This issue affects some unknown processing of the component Interface Handler. The manipulation with the input /../ leads to authorization bypass. The attack may be initiated remotely. The exploit has been disclos...
CVE-2024-10121
A vulnerability was found in wfh45678 Radar up to 1.0.8 and classified as critical. This issue affects some unknown processing of the component Interface Handler. The manipulation with the input /../ leads to authorization bypass. The attack may be initiated remotely. The exploit has been disclos...
CVE-2024-10121 wfh45678 Radar Interface authorization
A vulnerability was found in wfh45678 Radar up to 1.0.8 and classified as critical. This issue affects some unknown processing of the component Interface Handler. The manipulation with the input /../ leads to authorization bypass. The attack may be initiated remotely. The exploit has been disclos...
CVE-2024-10121 wfh45678 Radar Interface authorization
A vulnerability was found in wfh45678 Radar up to 1.0.8 and classified as critical. This issue affects some unknown processing of the component Interface Handler. The manipulation with the input /../ leads to authorization bypass. The attack may be initiated remotely. The exploit has been disclos...
CVE-2024-10121
CVE-2024-10121 affects wfh45678 Radar up to version 1.0.8, targeting the Interface Handler. The issue allows remote authorization bypass via manipulation of the input /../, with the vulnerability not classified as path traversal. Multiple sources confirm the impact as an authorization bypass affe...
CVE-2024-10120
A vulnerability has been found in wfh45678 Radar up to 1.0.8 and classified as critical. This vulnerability affects unknown code of the file /services/v1/common/upload. The manipulation of the argument file leads to unrestricted upload. The attack can be initiated remotely. The exploit has been...
CVE-2024-10120
A vulnerability has been found in wfh45678 Radar up to 1.0.8 and classified as critical. This vulnerability affects unknown code of the file /services/v1/common/upload. The manipulation of the argument file leads to unrestricted upload. The attack can be initiated remotely. The exploit has been...
CVE-2024-10120 wfh45678 Radar upload unrestricted upload
A vulnerability has been found in wfh45678 Radar up to 1.0.8 and classified as critical. This vulnerability affects unknown code of the file /services/v1/common/upload. The manipulation of the argument file leads to unrestricted upload. The attack can be initiated remotely. The exploit has been...
CVE-2024-10120 wfh45678 Radar upload unrestricted upload
A vulnerability has been found in wfh45678 Radar up to 1.0.8 and classified as critical. This vulnerability affects unknown code of the file /services/v1/common/upload. The manipulation of the argument file leads to unrestricted upload. The attack can be initiated remotely. The exploit has been...
CVE-2024-10120
CVE-2024-10120 (Radar) affects wfh45678 Radar versions up to 1.0.8. A vulnerability exists in the endpoint /services/v1/common/upload where the manipulation of the file argument enables unrestricted file upload. Exploitation can be performed remotely and has been disclosed publicly. Practical imp...
Radar 代码问题漏洞
Radar wind control engine is a lightweight real-time wind control engine by feihu.wang individual developers. A code issue vulnerability exists in Radar 1.0.8 and earlier versions, which stems from the parameter file in the file /services/v1/common/upload. which can lead to unlimited uploads...
Radar 安全漏洞
Radar wind control engine is a lightweight real-time wind control engine by feihu.wang individual developers. wfh45678 A security vulnerability exists in Radar version 1.0.8 and earlier, which stems from the component Interface Handler's manipulation of the input /.../ can lead to authorization...
PT-2024-16044 · Unknown · Wfh45678 Radar
Name of the Vulnerable Software and Affected Versions: wfh45678 Radar versions up to 1.0.8 Description: A critical issue affects the Interface Handler component, allowing for authorization bypass through manipulation of the input /../. This can be initiated remotely and is not considered a path...
PT-2024-16043 · Unknown · Wfh45678 Radar
Name of the Vulnerable Software and Affected Versions: wfh45678 Radar versions up to 1.0.8 Description: A critical issue has been found in the software, affecting unknown code in the file /services/v1/common/upload. The manipulation of the file argument leads to unrestricted upload. This can be...