6 matches found
EUVD-2025-202073
Missing Authorization vulnerability in ThimPress Sailing sailing allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Sailing: from n/a through 4.4.6...
CVE-2024-11024
The AppPresser – Mobile App Framework plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 4.4.6. This is due to the plugin not properly validating a user's password reset code prior to updating their password. This makes it possibl...
WordPress AppPresser plugin <= 4.4.6 - Unauthenticated Privilege Escalation via Password Reset vulnerability
Unauthenticated Privilege Escalation via Password Reset vulnerability discovered by shaman0x01 in WordPress Plugin AppPresser versions = 4.4.6...
WordPress plugin Online Booking & Scheduling Calendar for WordPress by vcita 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists in...
PT-2023-6733 · Best Practical +2 · Request Tracker +2
Name of the Vulnerable Software and Affected Versions: Best Practical Request Tracker RT versions 4.4.6 and earlier Best Practical Request Tracker RT versions 5.0.4 and earlier Description: The issue allows Information Disclosure via fake or spoofed RT email headers in an email message or a...
UBUNTU-CVE-2022-25802
Best Practical Request Tracker RT before 4.4.6 and 5.x before 5.0.3 allows XSS via a crafted content type for an attachment...