Lucene search
K

48 matches found

NVD
NVD
added 2018/05/31 8:29 p.m.25 views

CVE-2018-11633

An issue was discovered in the MULTIDOTS Woo Checkout for Digital Goods plugin 2.1 for WordPress. If an admin user can be tricked into visiting a crafted URL created by an attacker via spear phishing/social engineering, the attacker can change the plugin settings. The function...

6.5CVSS6.6AI score0.00537EPSS
Exploits1References2
Prion
Prion
added 2018/05/31 8:29 p.m.15 views

Cross site request forgery (csrf)

An issue was discovered in the MULTIDOTS Woo Checkout for Digital Goods plugin 2.1 for WordPress. If an admin user can be tricked into visiting a crafted URL created by an attacker via spear phishing/social engineering, the attacker can change the plugin settings. The function...

4.3CVSS6.6AI score0.00537EPSS
Exploits1References2Affected Software1
Mageia
Mageia
added 2013/07/01 7:19 p.m.52 views

Updated wordpress package fixes security vulnerabilities

A denial of service flaw was found in the way Wordpress, a blog tool and publishing platform, performed hash computation when checking password for password protected blog posts. A remote attacker could provide a specially- crafted input that, when processed by the password checking mechanism of...

4.3CVSS0.5AI score0.03373EPSS
Exploits3References5
OSV
OSV
added 2013/07/01 7:19 p.m.18 views

MGASA-2013-0198 Updated wordpress package fixes security vulnerabilities

A denial of service flaw was found in the way Wordpress, a blog tool and publishing platform, performed hash computation when checking password for password protected blog posts. A remote attacker could provide a specially- crafted input that, when processed by the password checking mechanism of...

4.3CVSS6.2AI score0.03373EPSS
Exploits3References6
exploitpack
exploitpack
added 2008/02/05 12:0 a.m.13 views

WordPress MU 1.3.2 - active_plugins option Code Execution

WordPress MU 1.3.2 - activeplugins option Code Execution Website : http://www.buayacorp.com/ Advisory: http://www.buayacorp.com/files/wordpress/wordpress-mu-options-overwrite.html This exploit uses activeplugins option to execute arbitrary PHP / includeonce './class-snoopy.php'; // Fix Snoopy cla...

Exploits0
0day.today
0day.today
added 2008/02/05 12:0 a.m.32 views

Wordpress MU < 1.3.2 active_plugins option Code Execution Exploit

Exploit for unknown platform in category web applications ================================================================= Wordpress MU Website : http://www.buayacorp.com/ Advisory: http://www.buayacorp.com/files/wordpress/wordpress-mu-options-overwrite.html This exploit uses activeplugins optio...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2008/02/05 12:0 a.m.55 views

Wordpress MU &lt; 1.3.2 active_plugins option Code Execution Exploit

No description provided by source. ?php / WordPress MU blog's options overwrite Credits : Alexander Concha alex at buayacorp dot com Website : http://www.buayacorp.com/ Advisory: http://www.buayacorp.com/files/wordpress/wordpress-mu-options-overwrite.html This exploit uses activeplugins option to...

7.1AI score
Exploits0
Cvelist
Cvelist
added 2007/06/26 11:0 p.m.25 views

CVE-2007-3421

The 1 login, 2 admin profile edit, 3 reminder, 4 edit profile, 5 profile view, 6 gallery view, 7 gallery comment, and 8 gallery feedback capabilities in web-app.org WebAPP before 0.9.9.7 do not verify presence of users in memberlist.dat, which has unknown impact and remote attack vectors...

6.7AI score0.01126EPSS
Exploits0References3
Rows per page
Query Builder