Lucene search
K

205 matches found

OSV
OSV
added 2024/06/05 8:15 a.m.8 views

CVE-2024-5453

The ProfileGrid – User Profiles, Groups and Communities plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the pmdismissiblenotice and pmwizardupdategroupicon functions in all versions up to, and including, 5.8.6. This makes it possible fo...

4.3CVSS5.9AI score0.00351EPSS
Exploits0References4
CNNVD
CNNVD
added 2024/05/24 12:0 a.m.4 views

WordPress plugin Schema App Structured Data 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

4.3CVSS6.3AI score0.00343EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/05/14 12:0 a.m.3 views

WordPress plugin YITH WooCommerce Gift Cards 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

5.3CVSS6.3AI score0.00504EPSS
Exploits0References4
Amazon
Amazon
added 2024/05/03 12:0 a.m.4 views

Low: java-21-amazon-corretto

Issue Overview: Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Hotspot. Supported versions that are affected are Oracle Java SE: 8u401, 8u401-perf, 11.0.22, 17.0.10, 21.0.2, 22; Oracle GraalVM for JDK: 17.0.10,...

3.7CVSS5.3AI score0.01361EPSS
Exploits0
CNNVD
CNNVD
added 2024/03/29 12:0 a.m.3 views

WordPress Plugin Responsive 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed in the PHP language that supports personal blogs on PHP and MySQL servers.WordPress plugin is an application...

7.5CVSS7.8AI score0.00657EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/03/29 12:0 a.m.5 views

WordPress Plugin Easy Appointments 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exists in...

4.3CVSS8.2AI score0.00435EPSS
Exploits0References4
CNNVD
CNNVD
added 2024/03/12 12:0 a.m.5 views

WordPress Plugin LadiApp Security Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed using the PHP language, which supports personal blogs on PHP and MySQL servers.WordPress plugin is an...

5.4CVSS6.5AI score0.00317EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2024/02/20 12:0 a.m.4 views

PT-2024-17955

Name of the Vulnerable Software and Affected Versions SKT Page Builder plugin for WordPress versions up to, and including, 4.1 Microsoft Outlook client affected versions not specified Description The issue allows for unauthorized modification of data due to a missing capability check on the...

4.3CVSS6.8AI score0.00343EPSS
Exploits0References10
BDU FSTEC
BDU FSTEC
added 2024/02/07 12:0 a.m.6 views

The vulnerability of the Web Server component of the Oracle BI Publisher software, which allows a hacker to gain access to read, modify, add, or delete data.

The vulnerability of the Web Server component of the Oracle BI Publisher software for report creation is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to gain read, modify, add, or delete access to data...

5.5CVSS6.6AI score0.00308EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
added 2024/01/17 12:0 a.m.4 views

Oracle Java SE and Oracle GraalVM Security Vulnerabilities

Oracle Java SE and Oracle GraalVM are both products of Oracle Corporation.Oracle Java SE is a product for developing and deploying Java applications for desktops, servers, and embedded devices and real-time environments.Oracle GraalVM is a set of on-the-fly compilers written in the Java language...

3.1CVSS6.7AI score0.00553EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/01/16 12:0 a.m.5 views

Security Vulnerabilities in Selected Oracle Products

Oracle Java SE and Oracle GraalVM are both products of Oracle Corporation.Oracle Java SE is a product for developing and deploying Java applications for desktops, servers, and embedded devices and real-time environments.Oracle GraalVM is a set of on-the-fly compilers written in the Java language...

7.5CVSS6.6AI score0.00775EPSS
Exploits0References7
CNNVD
CNNVD
added 2024/01/16 12:0 a.m.3 views

Oracle MySQL 安全漏洞

Oracle MySQL is an open source relational database management system from Oracle Corporation, of which MySQL Server is a database server component. A security vulnerability exists in Oracle MySQL for MySQL Server version 8.0.35 and earlier, version 8.2.0 and earlier. An attacker can exploit this...

5.5CVSS7.6AI score0.0081EPSS
Exploits0References4
CNNVD
CNNVD
added 2024/01/11 12:0 a.m.5 views

WordPress Plugin CAOS | Host Google Analytics Locally Security Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. WordPress Plugin CAOS | Host Google Analyti...

6.5CVSS6.6AI score0.00542EPSS
Exploits0References5
CNNVD
CNNVD
added 2023/12/21 12:0 a.m.4 views

Apache Airflow 访问控制错误漏洞

Apache Airflow is the United States Apache Apache Foundation's set of open source platform for creating, managing and monitoring workflow. The platform is scalable and dynamic monitoring and other characteristics. A security bypass vulnerability exists in Apache Airflow versions prior to 2.8.0,...

6.5CVSS6.4AI score0.0139EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2023/12/07 12:0 a.m.4 views

PT-2023-9316 · Oracle · Oracle Enterprise Asset Management

Name of the Vulnerable Software and Affected Versions: Oracle Enterprise Asset Management versions 12.2.11 through 12.2.13 Description: The issue is related to insufficient input validation in the Work Definition Issues component of Oracle Enterprise Asset Management. This allows a low-privileged...

8.5CVSS7.7AI score0.00388EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2023/12/07 12:0 a.m.5 views

PT-2023-9322 · Oracle · Oracle E-Business Suite

Name of the Vulnerable Software and Affected Versions: Oracle E-Business Suite versions 12.2.13 Description: The issue is related to a component of Oracle E-Business Suite, specifically the Quality Management Specs in the Oracle Process Manufacturing Product Development product. It allows a...

8.5CVSS7.7AI score0.00388EPSS
Exploits0References5
CNNVD
CNNVD
added 2023/11/22 12:0 a.m.3 views

WordPress Plugin Funnelforms Free Security Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in WordPres...

4.3CVSS8.6AI score0.00395EPSS
Exploits0References3
CNNVD
CNNVD
added 2023/11/22 12:0 a.m.4 views

WordPress Plugin Funnelforms Free Security Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in WordPres...

4.3CVSS8.6AI score0.00403EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2023/07/21 2:35 p.m.3 views

OpenJDK: HTTP client insufficient file name validation (8302475)

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK product of Oracle Java SE component: Networking. Supported versions that are affected are Oracle Java SE: 11.0.19, 17.0.7, 20.0.1; Oracle GraalVM Enterprise Edition: 20.3.10, 21.3.6, 22.3.2; Oracle...

3.1CVSS7.3AI score0.00866EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2023/07/20 12:11 p.m.5 views

OpenJDK: HTTP client insufficient file name validation (8302475)

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK product of Oracle Java SE component: Networking. Supported versions that are affected are Oracle Java SE: 11.0.19, 17.0.7, 20.0.1; Oracle GraalVM Enterprise Edition: 20.3.10, 21.3.6, 22.3.2; Oracle...

3.1CVSS7.3AI score0.00866EPSS
Exploits0References4
Rows per page
Query Builder