7 matches found
WordPress plugin wpDiscuz 跨站请求伪造漏洞
WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. The...
DSpace 路径遍历漏洞
DSpace is an open source turnkey repository application from the DuraSpace community. A path traversal vulnerability exists in DSpace versions prior to 7.6.4, prior to 8.2, and prior to 9.1, which stems from a path traversal vulnerability that could lead to the disclosure of sensitive information...
Couchbase Server 安全漏洞
Couchbase Server is a distributed open source NoSQL non-relational database from Couchbase, Inc. in the United States. It supports features such as data querying, full-text search and active global replication. A security vulnerability exists in Couchbase Server versions prior to 7.6.4, which ste...
WordPress Visual CSS Style Editor plugin <= 7.6.4 - Reflected Cross Site Scripting (XSS) vulnerability
Reflected Cross Site Scripting XSS vulnerability discovered by Dimas Maulana Patchstack Alliance in WordPress Plugin YellowPencil Visual CSS Style Editor versions = 7.6.4...
VulnCheck KEV: CVE-2023-2982
The WordPress Social Login and Register Discord, Google, Twitter, LinkedIn plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 7.6.4. This is due to insufficient encryption on the user being supplied during a login validated through the plugin. This...
PT-2025-6281 · Atlassian · Jira
Name of the Vulnerable Software and Affected Versions: Atlassian Jira versions 7.6.4 through 8.1.0 Description: A CSRF issue exists due to the login form not requiring a CSRF token. This allows an attacker to log a user into the system under an unexpected account. Recommendations: For Atlassian...
CVE-2017-10798
In ObjectPlanet Opinio before 7.6.4, there is XSS...