Lucene search
+L

115 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2010-0987

Malware in sbrugna...

5CVSS6.4AI score0.01246EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-37610

Malicious code in bioql PyPI...

9.8CVSS6.5AI score0.00535EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.9 views

EUVD-2024-43540

Malicious code in bioql PyPI...

7.2CVSS6.5AI score0.00516EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2024-42892

Malicious code in bioql PyPI...

8.5CVSS6.5AI score0.00473EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-17516

Malicious code in bioql PyPI...

7.1CVSS6.9AI score0.00235EPSS
Exploits0References2
CNVD
CNVD
added 2025/06/17 12:0 a.m.14 views

WordPress Backup and Staging by WP Time Capsule plugin cross-site scripting vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists in the WordPress Backup and Staging by WP Time Capsule plugin that stems from improper input neutralization and can be exploited by a...

7.1CVSS6.6AI score0.00235EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/06/11 4:3 p.m.7 views

CVE-2025-47477

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in revmakx Backup and Staging by WP Time Capsule wp-time-capsule allows Reflected XSS.This issue affects Backup and Staging by WP Time Capsule: from n/a through = 1.22.23...

7.1CVSS5.9AI score0.00235EPSS
Exploits0References1
NVD
NVD
added 2025/06/09 4:15 p.m.17 views

CVE-2025-47477

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in revmakx Backup and Staging by WP Time Capsule wp-time-capsule allows Reflected XSS.This issue affects Backup and Staging by WP Time Capsule: from n/a through = 1.22.23...

7.1CVSS0.00235EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/06/09 3:54 p.m.22 views

CVE-2025-47477 WordPress Backup and Staging by WP Time Capsule plugin <= 1.22.23 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in revmakx Backup and Staging by WP Time Capsule wp-time-capsule allows Reflected XSS.This issue affects Backup and Staging by WP Time Capsule: from n/a through = 1.22.23...

7.1CVSS0.00235EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/06/09 3:54 p.m.5 views

CVE-2025-47477 WordPress Backup and Staging by WP Time Capsule plugin <= 1.22.23 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in revmakx Backup and Staging by WP Time Capsule allows Reflected XSS. This issue affects Backup and Staging by WP Time Capsule: from n/a through 1.22.23...

7.1CVSS7.2AI score0.00235EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/06/09 12:0 a.m.12 views

PT-2025-24503 · WordPress · Backup/Staging By Wp Time Capsule

Name of the Vulnerable Software and Affected Versions: Backup and Staging by WP Time Capsule versions 1.22.23 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, allowing Reflected XSS. This means an...

7.1CVSS6.7AI score0.00235EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/22 7:24 p.m.7 views

CVE-2021-24877

The MainWP Child WordPress plugin before 4.1.8 does not validate the orderby and order parameter before using them in a SQL statement, leading to an SQL injection exploitable by high privilege users such as admin when the Backup and Staging by WP Time Capsule plugin is installed...

7.2CVSS7.8AI score0.01238EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:25 p.m.5 views

CVE-2021-25035

The Backup and Staging by WP Time Capsule WordPress plugin before 1.22.7 does not sanitise and escape the error parameter before outputting it back in an admin page, leading to a Reflected Cross-Site Scripting...

6.1CVSS6.5AI score0.00887EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/05/22 4:52 p.m.16 views

CVE-2020-8771

The Time Capsule plugin before 1.21.16 for WordPress has an authentication bypass. Any request containing IWPJSONPREFIX causes the client to be logged in as the first account on the list of administrator accounts...

9.8CVSS7.1AI score0.46454EPSS
Exploits2References1
VulnCheck KEV
VulnCheck KEV
added 2025/03/19 12:0 a.m.3 views

VulnCheck KEV: CVE-2024-8856

The Backup and Staging by WP Time Capsule plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the the UploadHandler.php file and no direct file access prevention in all versions up to, and including, 1.22.21. This makes it possible for...

9.8CVSS5.9AI score0.93709EPSS
Exploits7References1
Packet Storm
Packet Storm
added 2025/03/11 12:0 a.m.275 views

WP Time Capsule 1.22.21 Shell Upload

WordPress WP Time Capsule plugin version 1.22.21 remote shell upload proof of concept exploit that takes advantage of a flaw discovered in 2024 by Rein Daelman...

9.8CVSS7.1AI score0.93709EPSS
Exploits7
RedhatCVE
RedhatCVE
added 2025/02/05 8:55 a.m.8 views

CVE-2024-38770

Improper Privilege Management vulnerability in Revmakx Backup and Staging by WP Time Capsule allows Privilege Escalation, Authentication Bypass.This issue affects Backup and Staging by WP Time Capsule: from n/a through 1.22.20...

9.8CVSS7AI score0.00535EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 6:9 a.m.14 views

CVE-2024-49684

Deserialization of Untrusted Data vulnerability in revmakx Backup and Staging by WP Time Capsule wp-time-capsule allows Object Injection.This issue affects Backup and Staging by WP Time Capsule: from n/a through = 1.22.21...

7.2CVSS5.9AI score0.00516EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/04 11:33 p.m.7 views

CVE-2024-48020

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in revmakx Backup and Staging by WP Time Capsule wp-time-capsule allows SQL Injection.This issue affects Backup and Staging by WP Time Capsule: from n/a through = 1.22.21...

8.5CVSS5.9AI score0.00473EPSS
Exploits0References1
Rapid7 Blog
Rapid7 Blog
added 2025/01/10 7:46 p.m.20 views

Metasploit Wrap-Up 01/10/2025

New module content 5 OneDev Unauthenticated Arbitrary File Read Authors: Siebene and vultza Type: Auxiliary Pull request: 19614 contributed by vultza Path: gather/onedevarbitraryfileread AttackerKB reference: CVE-2024-45309 Description: This adds an exploit module for an unauthenticated arbitrary...

8.7CVSS9.7AI score0.24822EPSS
Exploits8
Rows per page
Query Builder