Lucene search
K

7 matches found

Patchstack
Patchstack
added 2026/04/17 2:3 a.m.9 views

WordPress Kubio AI Page Builder plugin <= 2.7.2 - Missing Authorization to Authenticated (Contributor+) Limited File Upload via Kubio Block Attributes vulnerability

Missing Authorization to Authenticated Contributor+ Limited File Upload via Kubio Block Attributes vulnerability discovered by oolongeya - Dreamhack in WordPress Plugin Kubio AI Page Builder versions = 2.7.2...

5.3CVSS5.8AI score0.00536EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2025/04/11 12:0 a.m.11 views

PT-2025-16074 · Softclever Limited · Sync Posts

Name of the Vulnerable Software and Affected Versions: SoftClever Limited Sync Posts versions n/d through 1.0 SoftClever Limited Sync Posts versions n/a through 1.0 Since both descriptions refer to the same range of affected versions, we can consolidate them into one line. However, given the...

9.9CVSS9.4AI score0.00634EPSS
Exploits1References6
Patchstack
Patchstack
added 2025/01/15 9:42 p.m.3 views

WordPress OrderConvo plugin <= 13.2 - Authenticated (Subscriber+) Limited File Upload to Cross-Site Scripting vulnerability

Authenticated Subscriber+ Limited File Upload to Cross-Site Scripting vulnerability discovered by 1337Wannabe in WordPress Plugin OrderConvo versions = 13.2...

5.4CVSS6.3AI score0.00357EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2024/11/06 5:15 p.m.3 views

CVE-2024-20476

A vulnerability in the web-based management interface of Cisco ISE could allow an authenticated, remote attacker to bypass the authorization mechanisms for specific file management functions. This vulnerability is due to lack of server-side validation of Administrator permissions. An attacker cou...

4.9CVSS5.8AI score0.00344EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/10/05 12:0 a.m.6 views

WordPress plugin Hash Form 代码问题漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A code issue vulnerability exists i...

6.1CVSS7.2AI score0.00338EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2024/03/26 7:49 p.m.13 views

CVE-2023-6091 WordPress Theme Editor plugin <= 2.7.1 - Arbitrary File Upload vulnerability

Unrestricted Upload of File with Dangerous Type vulnerability in mndpsingh287 Theme Editor.This issue affects Theme Editor: from n/a through 2.7.1...

7.2CVSS6.9AI score0.00603EPSS
Exploits0References1
CNVD
CNVD
added 2020/05/14 12:0 a.m.3 views

Microsoft Windows and Windows Server Privilege Mobilization Vulnerability (CNVD-2020-33422)

Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation.Microsoft Windows is an operating system for personal devices.Microsoft Windows Server is a server operating system. A privilege extraction vulnerability exists in Microsoft Windows and Windows Server, which...

9.9CVSS6.9AI score0.03679EPSS
Exploits0References1
Rows per page
Query Builder