Lucene search
+L

30 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2017-11072

Malware in sbrugna...

4.3CVSS4.8AI score0.00685EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-29310

Malicious code in bioql PyPI...

4.3CVSS6.4AI score0.00365EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-46004

Malicious code in bioql PyPI...

9.1CVSS8.7AI score0.01105EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-43690

Malicious code in bioql PyPI...

9.8CVSS9.1AI score0.00544EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:1 p.m.8 views

CVE-2021-24275

The Popup by Supsystic WordPress plugin before 1.10.5 did not sanitise the tab parameter of its options page before outputting it in an attribute, leading to a reflected Cross-Site Scripting issue...

6.1CVSS6.1AI score0.18165EPSS
Exploits5References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:47 a.m.14 views

CVE-2017-20065

A vulnerability was found in Supsystic Popup Plugin 1.7.6 and classified as problematic. This issue affects some unknown processing. The manipulation leads to cross-site request forgery. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used...

4.3CVSS6.8AI score0.00685EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/02/05 12:12 p.m.16 views

CVE-2024-52434

Deserialization of Untrusted Data vulnerability in supsystic Popup by Supsystic popup-by-supsystic allows Command Injection.This issue affects Popup by Supsystic: from n/a through = 1.10.29...

9.1CVSS7.2AI score0.01105EPSS
Exploits0References1
OSV
OSV
added 2024/12/13 3:15 p.m.2 views

CVE-2023-39997

Missing Authorization vulnerability in supsystic.com Popup by Supsystic allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Popup by Supsystic: from n/a through 1.10.19...

9.8CVSS5.8AI score0.00544EPSS
Exploits0References1
OSV
OSV
added 2024/11/18 3:15 p.m.6 views

CVE-2024-52434

Improper Neutralization of Special Elements Used in a Template Engine vulnerability in Supsystic Popup by Supsystic allows Command Injection.This issue affects Popup by Supsystic: from n/a through 1.10.29...

9.1CVSS5.8AI score0.01105EPSS
Exploits0References1
NVD
NVD
added 2024/04/15 11:15 a.m.39 views

CVE-2024-31421

Missing Authorization vulnerability in supsystic Popup by Supsystic popup-by-supsystic.This issue affects Popup by Supsystic: from n/a through = 1.10.27...

4.3CVSS4.7AI score0.00365EPSS
Exploits0References2
OSV
OSV
added 2024/04/15 11:15 a.m.3 views

CVE-2024-31421

Missing Authorization vulnerability in Supsystic Popup by Supsystic.This issue affects Popup by Supsystic: from n/a through 1.10.27...

4.3CVSS5.8AI score0.00365EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/04/15 10:9 a.m.10 views

CVE-2024-31421 WordPress Popup by Supsystic plugin <= 1.10.27 - Broken Access Control vulnerability

Missing Authorization vulnerability in supsystic Popup by Supsystic popup-by-supsystic.This issue affects Popup by Supsystic: from n/a through = 1.10.27...

4.3CVSS5.1AI score0.00365EPSS
Exploits0References1
CVE
CVE
added 2024/04/15 10:9 a.m.80 views

CVE-2024-31421

CVE-2024-31421 concerns a Missing Authorization vulnerability in Supsystic Popup by Supsystic, affecting Popup by Supsystic versions up to 1.10.27 (no details on exposed actions). Root cause identified in connected Red Hat advisory as Missing Authorization. Public information in the provided docu...

4.3CVSS5.9AI score0.00365EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2024/04/15 12:0 a.m.5 views

PT-2024-24062 · Supsystic · Supsystic Popup

Name of the Vulnerable Software and Affected Versions: Supsystic Popup by Supsystic versions 1.10.27 and earlier Description: The issue is related to a Missing Authorization vulnerability. This vulnerability affects the Supsystic Popup by Supsystic plugin, allowing unauthorized access due to the...

4.3CVSS6.5AI score0.00365EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2023/10/23 12:0 a.m.10 views

PT-2023-29896 · Supsystic · Popup

Name of the Vulnerable Software and Affected Versions: Popup by Supsystic versions 1.10.19 and earlier Description: The issue is related to an Improper Limitation of a Pathname to a Restricted Directory, also known as a 'Path Traversal' vulnerability. This allows Relative Path Traversal, which ca...

8.8CVSS9.3AI score0.01267EPSS
Exploits1References7
Cvelist
Cvelist
added 2023/07/17 1:29 p.m.26 views

CVE-2023-3186 Supsystic Popup < 1.10.19 - Prototype Pollution

The Popup by Supsystic WordPress plugin before 1.10.19 has a prototype pollution vulnerability that could allow an attacker to inject arbitrary properties into Object.prototype...

9.5AI score0.01454EPSS
Exploits2References1
CNNVD
CNNVD
added 2023/07/17 12:0 a.m.5 views

WordPress plugin Supsystic Popup 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exists in...

9.8CVSS8.6AI score0.01454EPSS
Exploits2References2
Positive Technologies
Positive Technologies
added 2023/07/17 12:0 a.m.7 views

PT-2023-23493 · WordPress · The Popup By Supsystic

Name of the Vulnerable Software and Affected Versions: The Popup by Supsystic WordPress plugin versions prior to 1.10.19 Description: The issue allows an attacker to inject arbitrary properties into Object.prototype due to a prototype pollution vulnerability. Recommendations: For versions prior t...

9.8CVSS9.3AI score0.01454EPSS
Exploits2References4
wpexploit
wpexploit
added 2023/06/23 12:0 a.m.153 views

Supsystic Popup < 1.10.19 - Prototype Pollution

The plugin has a prototype pollution vulnerability that could allow an attacker to inject arbitrary properties into Object.prototype. 1 Create a pop-up that is set to load on any page 2 Go to http://example.com/?protopoc=polluted 3 Open browser console 4 Type poc and see polluted as the result...

9.8CVSS6.5AI score0.01454EPSS
Exploits2
WPVulnDB
WPVulnDB
added 2023/06/23 12:0 a.m.14 views

Supsystic Popup < 1.10.19 - Prototype Pollution

The plugin has a prototype pollution vulnerability that could allow an attacker to inject arbitrary properties into Object.prototype. PoC 1 Create a pop-up that is set to load on any page 2 Go to http://example.com/?protopoc=polluted 3 Open browser console 4 Type poc and see polluted as the resul...

9.8CVSS6.4AI score0.01454EPSS
Exploits2Affected Software1
Rows per page
Query Builder