Lucene search
K

182 matches found

Prion
Prion
added 2019/08/27 1:15 p.m.14 views

Design/Logic Flaw

The gd-rating-system plugin before 2.1 for WordPress has XSS in log.php...

4.3CVSS6AI score0.00905EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2019/08/27 12:3 p.m.92 views

CVE-2017-18591

Summary: CVE-2017-18591 affects the WordPress gd-rating-system plugin prior to 2.1, with an XSS in log.php. The issue stems from insufficient validation in the log.php handling, enabling possible client-side script execution. Affected software: WordPress site using the gd-rating-system plugin (ve...

6.1CVSS6AI score0.00905EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2019/08/27 12:3 p.m.27 views

CVE-2017-18591

The gd-rating-system plugin before 2.1 for WordPress has XSS in log.php...

6.1AI score0.00905EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2019/08/27 12:0 a.m.6 views

PT-2019-8522 · Unknown · Gd Rating System

Name of the Vulnerable Software and Affected Versions: gd-rating-system plugin versions prior to 2.1 Description: The issue concerns a problem with the log.php file, where there is XSS. Recommendations: For versions prior to 2.1, update to version 2.1 or later to resolve the issue...

6.1CVSS7.2AI score0.00905EPSS
Exploits0References4
FireEye
FireEye
added 2018/10/11 10:30 a.m.31 views

ICS Tactical Security Trends: Analysis of the Most Frequent Security Risks Observed in the Field

Introduction FireEye iSIGHT Intelligence compiled extensive data from dozens of ICS security health assessment engagements ICS Healthcheck performed by Mandiant, FireEye's consulting team, to identify the most pervasive and highest priority security risks in industrial facilities. The information...

0.8AI score
Exploits0
CNVD
CNVD
added 2018/01/10 12:0 a.m.5 views

WordPress GD Rating System Directory Traversal Vulnerability

WordPress is the WordPress Software Foundation's set of blogging platform developed using the PHP language, the platform supports personal blog sites set up on PHP and MySQL servers.GD Rating System plugin is used in one of the rating plugin. A directory traversal vulnerability exists in WordPres...

7.5CVSS6.7AI score0.03699EPSS
Exploits1References1
CNVD
CNVD
added 2018/01/10 12:0 a.m.6 views

WordPress GD Rating System plugin directory traversal vulnerability (CNVD-2018-00914)

WordPress is the WordPress Software Foundation's set of blogging platform developed using the PHP language, the platform supports personal blog sites set up on PHP and MySQL servers.GD Rating System plugin is used in one of the rating plugin. A directory traversal vulnerability exists in WordPres...

7.5CVSS6.7AI score0.03699EPSS
Exploits1References1
CNVD
CNVD
added 2018/01/10 12:0 a.m.9 views

WordPress GD Rating System plugin directory traversal vulnerability (CNVD-2018-00915)

WordPress is the WordPress Software Foundation's set of blogging platform developed using the PHP language, the platform supports personal blog sites set up on PHP and MySQL servers.GD Rating System plugin is used in one of the rating plugin. A directory traversal vulnerability exists in version...

7.5CVSS6.7AI score0.03699EPSS
Exploits1References1
CNVD
CNVD
added 2018/01/10 12:0 a.m.5 views

WordPress GD Rating System plugin directory traversal vulnerability (CNVD-2018-00913)

WordPress is the WordPress Software Foundation's set of blogging platform developed using the PHP language, the platform supports personal blog sites set up on PHP and MySQL servers.GD Rating System plugin is used in one of the rating plugin. A directory traversal vulnerability exists in WordPres...

7.5CVSS6.7AI score0.03699EPSS
Exploits1References1
CNVD
CNVD
added 2018/01/10 12:0 a.m.6 views

WordPress GD Rating System plugin cross-site scripting vulnerability (CNVD-2018-00917)

WordPress is the WordPress Software Foundation's set of blogging platform developed using the PHP language, the platform supports personal blog sites set up on PHP and MySQL servers.GD Rating System plugin is used in one of the rating plugin. A cross-site scripting vulnerability exists in version...

6.1CVSS6AI score0.01265EPSS
Exploits1References1
CNVD
CNVD
added 2018/01/10 12:0 a.m.20 views

WordPress GD Rating System plugin cross-site scripting vulnerability (CNVD-2018-00916)

WordPress is the WordPress Software Foundation's set of blogging platform developed using the PHP language, the platform supports personal blog sites set up on PHP and MySQL servers.GD Rating System plugin is used in one of the rating plugin. A cross-site scripting vulnerability exists in version...

6.1CVSS6AI score0.01265EPSS
Exploits1References1
CNVD
CNVD
added 2018/01/10 12:0 a.m.6 views

WordPress GD Rating System Plugin Cross-Site Scripting Vulnerability

WordPress is the WordPress Software Foundation's set of blogging platform developed using the PHP language, the platform supports personal blog sites set up on PHP and MySQL servers.GD Rating System plugin is used in one of the rating plugin. A cross-site scripting vulnerability exists in version...

6.1CVSS6AI score0.01432EPSS
Exploits1References1
Patchstack
Patchstack
added 2018/01/09 12:0 a.m.15 views

WordPress GD Rating System plugin 2.3 - Directory Traversal vulnerability (4)

A fourth Directory Traversal vulnerability found by d4wner in WordPress GD Rating System plugin version 2.3. Directory Traversal in the wp-admin/admin.php panel parameter for the gd-rating-system-tools page. Solution 1/9/2018 - we were unable to find a patched version of this plugin...

7.5CVSS2.8AI score0.03699EPSS
Exploits1References1Affected Software1
Patchstack
Patchstack
added 2018/01/09 12:0 a.m.23 views

WordPress GD Rating System plugin 2.3 - Cross-Site Scripting (XSS) vulnerability (2)

A second Cross-Site Scripting XSS vulnerability found by d4wner in WordPress GD Rating System plugin version 2.3 Solution 1/9/2018 - we were unable to find a patched version of this plugin...

6.1CVSS1.9AI score0.01432EPSS
Exploits1References1Affected Software1
Patchstack
Patchstack
added 2018/01/09 12:0 a.m.21 views

WordPress GD Rating System plugin 2.3 - Cross-Site Scripting (XSS) vulnerability (3)

A third Cross-Site Scripting XSS vulnerability found by d4wner in WordPress GD Rating System plugin version 2.3. XSS via the wp-admin/admin.php panel parameter for the gd-rating-system-information page. Solution 1/9/2018 - we were unable to find a patched version of this plugin...

6.1CVSS2.5AI score0.01265EPSS
Exploits1References1Affected Software1
Patchstack
Patchstack
added 2018/01/09 12:0 a.m.23 views

WordPress GD Rating System plugin 2.3 - Directory Traversal vulnerability (2)

A second Directory Traversal vulnerability found by d4wner in WordPress GD Rating System plugin version 2.3. Directory Traversal in the wp-admin/admin.php panel parameter for the gd-rating-system-information page. Solution 1/9/2018 - we were unable to find a patched version of this plugin...

7.5CVSS2.9AI score0.03699EPSS
Exploits1References1Affected Software1
Patchstack
Patchstack
added 2018/01/09 12:0 a.m.18 views

WordPress GD Rating System plugin 2.3 - Directory Traversal vulnerability (3)

A third Directory Traversal vulnerability found by d4wner in WordPress GD Rating System plugin version 2.3. Directory Traversal in the wp-admin/admin.php panel parameter for the gd-rating-system-transfer page. Solution 1/9/2018 - we were unable to find a patched version of this plugin...

7.5CVSS2.8AI score0.03699EPSS
Exploits1References1Affected Software1
Patchstack
Patchstack
added 2018/01/09 12:0 a.m.20 views

WordPress GD Rating System plugin 2.3 - Cross-Site Scripting (XSS) vulnerability

A Cross-Site Scripting XSS vulnerability found by d4wner in WordPress GD Rating System plugin version 2.3. Vulnerable via the wp-admin/admin.php panel parameter for the gd-rating-system-about page. Solution 1/9/2018 - we were unable to find a patched version of this plugin...

6.1CVSS2.8AI score0.01265EPSS
Exploits1References1Affected Software1
Patchstack
Patchstack
added 2018/01/09 12:0 a.m.27 views

WordPress GD Rating System plugin 2.3 - Cross-Site Scripting (XSS) vulnerability (4)

A fourth Cross-Site Scripting XSS vulnerability found by d4wner in WordPress GD Rating System plugin version 2.3. XSS via the wp-admin/admin.php panel parameter for the gd-rating-system-tools page. Solution 1/9/2018 - we were unable to find a patched version of this plugin...

6.1CVSS2.5AI score0.01265EPSS
Exploits1References1Affected Software1
Patchstack
Patchstack
added 2018/01/09 12:0 a.m.14 views

WordPress GD Rating System plugin 2.3 - Directory Traversal vulnerability

Directory Traversal vulnerability found by d4wner in WordPress GD Rating System plugin version 2.3. Directory Traversal in the wp-admin/admin.php panel parameter for the gd-rating-system-about page. Solution 1/9/2018 - we were unable to find a patched version of this plugin...

7.5CVSS3AI score0.03699EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder