Lucene search
K

9 matches found

Positive Technologies
Positive Technologies
added 2025/10/29 12:0 a.m.7 views

PT-2025-44237

Name of the Vulnerable Software and Affected Versions WooCommerce versions prior to 7.8.3 Description The WooCommerce plugin for WordPress exhibits a sensitive information exposure issue due to improper CORS Cross-Origin Resource Sharing handling on the Store API’s REST endpoints. This allows...

5.3CVSS6.4AI score0.00303EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/10/24 1:35 p.m.13 views

CVE-2025-60206

Improper Control of Generation of Code 'Code Injection' vulnerability in Beplusthemes Alone alone allows Code Injection.This issue affects Alone: from n/a through = 7.8.3...

10CVSS5.9AI score0.00482EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/22 3:31 p.m.4 views

EUVD-2025-35419

Improper Control of Generation of Code 'Code Injection' vulnerability in Bearsthemes Alone alone allows Code Injection.This issue affects Alone: from n/a through = 7.8.3...

8.2CVSS6.5AI score0.00482EPSS
Exploits0References2
CVE
CVE
added 2025/10/22 2:32 p.m.18 views

CVE-2025-60206

CVE-2025-60206 refers to a code injection vulnerability in Bearsthemes WordPress Alone theme (Alone) that enables remote code execution. Affected: Alone theme versions up to and including 7.8.3. Root cause: improper control of code generation leading to code injection. Impact: high severity with ...

10CVSS5.9AI score0.00482EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/07/16 2:43 p.m.9 views

WordPress Alone theme <= 7.8.3 - Remote Code Execution (RCE) vulnerability

Remote Code Execution RCE vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Alone versions = 7.8.3...

10CVSS7.5AI score0.00482EPSS
Exploits0Affected Software1
CNNVD
CNNVD
added 2025/07/15 12:0 a.m.11 views

WordPress plugin Alone 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

9.8CVSS6.8AI score0.47809EPSS
Exploits3References3
Circl
Circl
added 2022/12/06 12:40 a.m.5 views

CVE-2022-37783

creationtimestamp| type| source ---|---|--- 2022-12-06 00:40:11+00:00| seen| https://t.me/cibsecurity/54024...

7.5CVSS7.3AI score0.01035EPSS
Exploits1References1
CNVD
CNVD
added 2019/01/11 12:0 a.m.3 views

Open-Xchange OX App Suite backend component cross-site scripting vulnerability

Open-Xchange OX App Suite is a set of Web-based cloud desktop environments from Open-Xchange USA. The environment allows users to more intuitively manage email, tasks, files, etc. backend is one of the backend components. A cross-site scripting vulnerability exists in the backend component in...

6.1CVSS6.2AI score0.01209EPSS
Exploits2References1
Cvelist
Cvelist
added 1976/01/01 12:0 a.m.25 views

CVE-2026-1783

...

Exploits0
Rows per page
Query Builder