Lucene search
K

8 matches found

EUVD
EUVD
added 2026/03/05 6:30 a.m.7 views

EUVD-2026-9591

Deserialization of Untrusted Data vulnerability in AncoraThemes Jardi jardi allows Object Injection.This issue affects Jardi: from n/a through = 1.7.2...

5.9AI score0.0051EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/12/30 10:47 a.m.43 views

CVE-2025-69015 WordPress Crowdsignal Forms plugin <= 1.7.2 - Broken Access Control vulnerability

Missing Authorization vulnerability in Automattic Crowdsignal Forms crowdsignal-forms allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Crowdsignal Forms: from n/a through = 1.7.2...

3.8CVSS0.00323EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/12/30 12:0 a.m.12 views

PT-2025-53896

Name of the Vulnerable Software and Affected Versions Crowdsignal Forms versions through 1.7.2 Description A missing authorization issue exists in Automattic Crowdsignal Forms. The issue involves incorrectly configured access control security levels, potentially allowing unauthorized access...

3.8CVSS6.5AI score0.00323EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2025-30530

Malicious code in bioql PyPI...

5.3CVSS6.5AI score0.0027EPSS
Exploits0References2
Patchstack
Patchstack
added 2025/09/12 12:0 a.m.4 views

WordPress Cloriato Lite Theme <= 1.7.2 is vulnerable to Sensitive Data Exposure

Software Cloriato Lite Type Theme Vulnerable versions = 1.7.2 Fixed in N/A OWASP Top 10 A3: Sensitive Data Exposure Classification Sensitive Data Exposure CVE CVE-2025-59003 Patch priority Low CVSS severity Low 5.8 Developer Claim ownership PSID 1e01903a0792 Credits Legion Hunter Required privile...

5.9AI score0.00192EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2025/09/09 12:0 a.m.4 views

Apache HertzBeat 注入漏洞

Apache HertzBeat is a tool from Apache USA that monitors various components. An injection vulnerability exists in Apache HertzBeat 1.7.2 and earlier versions, which stems from improper neutralization of special elements in an LDAP query, and could lead to an LDAP injection attack...

8.8CVSS6.9AI score0.00589EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2024/08/01 7:15 a.m.4 views

CVE-2024-5331

The Breakdance plugin for WordPress is vulnerable to unauthorized access of data in all versions up to, and including, 1.7.2. This makes it possible for authenticated attackers, with Contributor-level access and above, to export form submissions...

4.3CVSS5.9AI score0.00235EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/03/20 12:0 a.m.4 views

PrestaShop Best-Kit Pop-up Security Vulnerability

PrestaShop is an open source e-commerce solution from PrestaShop, Inc. in the United States. The solution provides multiple payment methods, short message alerts and product image scaling. A security vulnerability exists in PrestaShop Best-Kit Pop-up v.1.7.2 and earlier versions, which stems from...

9.8CVSS8.3AI score0.00685EPSS
Exploits0References3
Rows per page
Query Builder