Lucene search
K

224 matches found

CNNVD
CNNVD
added 2022/05/26 12:0 a.m.3 views

CSCMS Music Portal System SQL注入漏洞

CSCMS Music Portal System is a diversified content management system of China Chong Sheng Network Technology CSCMS Company. CSCMS Music Portal System suffers from a SQL injection vulnerability that originates from the lack of validation of the id parameter in /admin.php/vod/admin/topic/del for...

7.2CVSS6.1AI score0.00896EPSS
Exploits1References2
OSV
OSV
added 2022/05/16 3:15 p.m.2 views

CVE-2022-1560

The Amministrazione Aperta WordPress plugin before 3.8 does not validate the open parameter before using it in an include statement, leading to a Local File Inclusion issue. The original advisory mentions that unauthenticated users can exploit this, however the affected file generates a fatal err...

6.5CVSS5.8AI score
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/05/16 3:15 p.m.5 views

CVE-2022-1560

The Amministrazione Aperta WordPress plugin before 3.8 does not validate the open parameter before using it in an include statement, leading to a Local File Inclusion issue. The original advisory mentions that unauthenticated users can exploit this, however the affected file generates a fatal err...

6.5CVSS6.6AI score0.02179EPSS
Exploits2References2
CNNVD
CNNVD
added 2022/05/11 12:0 a.m.3 views

Survey Sparrow Enterprise Survey Software 跨站脚本漏洞

A cross-site scripting vulnerability exists in Survey Sparrow Enterprise Survey Software version 2022, which originates in the test parameter The vulnerability is caused by a lack of data validation filtering of user-supplied data and output. An attacker could use this vulnerability to execute...

6.1CVSS6.2AI score0.00519EPSS
Exploits0References3
CNNVD
CNNVD
added 2022/05/10 12:0 a.m.14 views

TOTOLINK N600R 缓冲区错误漏洞

TOTOLINK N600R is a wireless router from Taiwan, China-based Gion Electronics TOTOLINK.A buffer overflow vulnerability exists in TOTOLINK N600R V4.3.0cu.7647B20210106, which stems from a lack of length validation of the File parameter in the FUN0041309c function. An attacker could exploit this...

10CVSS8.9AI score0.01605EPSS
Exploits1References2
CNNVD
CNNVD
added 2022/04/25 12:0 a.m.3 views

WordPress plugin Videos sync PDF路径遍历漏洞

WordPress is a set of blogging platform developed using the PHP language. WordPress plugin Videos sync PDF version 1.7.4 and before there is a file inclusion vulnerability, the vulnerability stems from the plugin in the inclusion statement using the p parameter before failing to validate, an...

7.5CVSS5.7AI score0.11088EPSS
Exploits2References4
OSV
OSV
added 2022/03/21 7:15 p.m.2 views

CVE-2022-0591

The FormCraft WordPress plugin before 3.8.28 does not validate the URL parameter in the formcraft3get AJAX action, leading to SSRF issues exploitable by unauthenticated users...

9.1CVSS5.8AI score0.20249EPSS
Exploits2References1
CNNVD
CNNVD
added 2022/03/07 12:0 a.m.5 views

WordPress plugin 跨站脚本漏洞

WordPress is a set of blogging platforms developed using the PHP language by the Wordpress Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. A cross-site scripting vulnerability exists in WordPress White Label CMS Plugin versions prior to 2.2.9, which...

6.1CVSS5.7AI score0.0812EPSS
Exploits2References3
CNNVD
CNNVD
added 2022/01/24 12:0 a.m.5 views

WordPress plugin 跨站脚本漏洞

WordPress is a set of blogging platforms developed using the PHP language by the WordPress Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. A cross-site scripting vulnerability exists in the Wordpress Plugin Sendinblue prior to version 3.1.25, which...

6.1CVSS5.5AI score0.0081EPSS
Exploits2References2
CNNVD
CNNVD
added 2021/12/13 12:0 a.m.2 views

WordPress和WordPress 插件 SQL注入漏洞

WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language . The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress Plugin is an open source application plugin for WordPress. The WordPress plugin suffers from a SQL...

9.8CVSS8.5AI score0.01575EPSS
Exploits2References2
WPVulnDB
WPVulnDB
added 2021/12/13 12:0 a.m.23 views

The Plus Addons for Elementor Pro < 5.0.7 - Sensitive Data Disclosure

The plugin does not validate the qvquery parameter of the tpgetdlpostinfoajax AJAX action, which could allow unauthenticated users to retrieve sensitive information, such as private and draft posts PoC The following request allow an unauthenticated user to get the draft posts the nonce can be...

7.5CVSS1.8AI score0.01815EPSS
Exploits2References1Affected Software1
CNNVD
CNNVD
added 2021/11/23 12:0 a.m.4 views

WordPress 路径遍历漏洞

WordPress is a set of blogging platforms developed using the PHP language by the WordPress Wordpress Foundation. The platform supports personal blog sites on PHP and MySQL servers. A path traversal vulnerability exists in the WordPress plugin that stems from The Images to WebP not validating or...

7.5CVSS7.2AI score0.05028EPSS
Exploits2References2
Prion
Prion
added 2021/10/25 2:15 p.m.17 views

Sql injection

The Permalink Manager Lite WordPress plugin before 2.2.13.1 does not validate and escape the orderby parameter before using it in a SQL statement in the Permalink Manager page, leading to a SQL Injection...

6.5CVSS7.3AI score0.01336EPSS
Exploits2References1Affected Software1
Positive Technologies
Positive Technologies
added 2021/09/06 12:0 a.m.3 views

PT-2021-15923 · WordPress · Wordpress

Name of the Vulnerable Software and Affected Versions: WordPress plugin versions through 3.7.2 Description: The issue arises from the proid GET parameter not being properly sanitized, escaped, or validated before being inserted into a SQL statement. This leads to SQL injection. Recommendations: F...

7.2CVSS7.2AI score0.01547EPSS
Exploits2References5
NVD
NVD
added 2021/06/14 2:15 p.m.11 views

CVE-2021-24346

The Stock in & out WordPress plugin through 1.0.4 has a search functionality, the lowest accessible level to it being contributor. The srch POST parameter is not validated, sanitised or escaped before using it in the echo statement, leading to a reflected XSS issue...

5.4CVSS0.00675EPSS
Exploits2References2
CNNVD
CNNVD
added 2021/06/14 12:0 a.m.4 views

WordPress SQL注入漏洞

WordPress is a set of blogging platforms developed using the PHP language by the WordPress Wordpress Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. A SQL injection vulnerability exists in WordPress Xllentech English Islamic Calendar plugin prior to...

8.8CVSS6.1AI score0.01586EPSS
Exploits2References2
Veracode
Veracode
added 2021/02/03 5:11 a.m.12 views

OS Command Injection

total.js is vulnerable to OS command injection. The type parameter is not properly sanitized and validated, and is used to build the command which is subsequently executed using childprocess.spawn...

8.6CVSS3.1AI score0.01702EPSS
Exploits1References1Affected Software1
CNNVD
CNNVD
added 2020/12/31 12:0 a.m.5 views

NHIServiSignAdapter Buffer Error Vulnerability

Panorama NHIServiSignAdapter is a security control component for panoramic surveillance devices from China Panorama. A security vulnerability exists in NHIServiSignAdapter that stems from a summary generation function that does not validate the length of a parameter, which results in a stack...

9.8CVSS6AI score0.01895EPSS
Exploits0References2
NVD
NVD
added 2020/12/30 8:15 p.m.12 views

CVE-2020-35737

In Correspondence Management System corms in Newgen eGov 12.0, an attacker can modify other users' profile information by manipulating the unvalidated UserIndex parameter, aka Insecure Direct Object Reference...

7.5CVSS7.4AI score0.10313EPSS
Exploits3References3
CVE
CVE
added 2020/12/30 7:39 p.m.104 views

CVE-2020-35737

CVE-2020-35737 affects Newgen eGov 12.0, specifically the Correspondence Management System (corms). The vulnerability is an Insecure Direct Object Reference caused by an unvalidated UserIndex parameter in the personal settings page, allowing an attacker to modify other users’ profile information....

7.5CVSS7.3AI score0.10313EPSS
Exploits3References3Affected Software1
Rows per page
Query Builder