Lucene search
K

7 matches found

CVE
CVE
added 2026/06/17 9:51 a.m.15 views

CVE-2026-40765

The CVE-2026-40765 entry details an unauthenticated Cross Site Scripting (XSS) vulnerability in the WordPress collectchat plugin versions

7.1CVSS5.1AI score0.0023EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/05/12 12:0 a.m.11 views

Adobe Commerce 安全漏洞

Adobe Commerce is a leading global digital business solution for businesses and brands offered by Adobe in the United States. There is a security vulnerability in Adobe Commerce, which stems from improper authorization. This vulnerability may allow security features to be bypassed, enabling...

7.5CVSS5.8AI score0.00561EPSS
Exploits0References1
CVE
CVE
added 2026/03/20 9:25 p.m.33 views

CVE-2026-3584

CVE-2026-3584 – WordPress Kali Forms

9.8CVSS6.1AI score0.07239EPSS
In wildExploits2References3
EUVD
EUVD
added 2026/03/16 3:30 p.m.5 views

EUVD-2026-12369

A security vulnerability has been detected in LB-LINK BL-WR9000 2.4.9. The impacted element is the function sub44D844 of the file /goform/gethidessidcfg. The manipulation leads to buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed publicly and may be...

9CVSS6AI score0.00664EPSS
Exploits1References5
Cvelist
Cvelist
added 2025/12/24 12:31 p.m.42 views

CVE-2025-68528 WordPress Free Shipping Bar: Amount Left for Free Shipping for WooCommerce plugin <= 2.4.9 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WPFactory Free Shipping Bar: Amount Left for Free Shipping for WooCommerce amount-left-free-shipping-woocommerce allows Stored XSS.This issue affects Free Shipping Bar: Amount Left for Free Shippin...

6.5CVSS0.00135EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/11/01 5:40 a.m.7 views

CVE-2025-11740 wpForo Forum <= 2.4.9 - Authenticated (Susbscriber+) SQL Injection

The wpForo Forum plugin for WordPress is vulnerable to SQL Injection via the Subscriptions Manager in all versions up to, and including, 2.4.9 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for...

6.5CVSS0.00252EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2023/02/15 5:48 a.m.1 views

SUSE CVE-2012-1144

FreeType before 2.4.9, as used in Mozilla Firefox Mobile before 10.0.4 and other products, allows remote attackers to cause a denial of service invalid heap write operation and memory corruption or possibly execute arbitrary code via a crafted TrueType font...

9.3CVSS7.8AI score0.04912EPSS
Exploits0References5
Rows per page
Query Builder