Lucene search
K

10 matches found

NVD
NVD
added 2 days ago8 views

CVE-2026-14894

The Super Forms – Drag & Drop Form Builder plugin for WordPress is vulnerable to Arbitrary File Upload in all versions up to, and including, 6.3.313 via the submitform function. This is due to missing file type validation and the absence of any capability check on the submitform nopriv AJAX...

9.8CVSS0.00523EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2026/01/09 9:28 a.m.22 views

CVE-2023-49849

Missing Authorization vulnerability in vaakash Shortcoder shortcoder allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Shortcoder: from n/a through = 6.3...

4.3CVSS7.3AI score0.00404EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/08 7:20 a.m.6 views

EUVD-2025-32912

Malicious code in v0-components npm...

6.6AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 6:2 a.m.5 views

CVE-2023-28125

An improper authentication vulnerability exists in Avalanche Premise versions 6.3.x and below that could allow an attacker to gain access to the server by registering to receive messages from the server and perform an authentication bypass...

5.9CVSS7.2AI score0.02252EPSS
Exploits0References1
OSV
OSV
added 2023/05/20 11:15 p.m.3 views

CVE-2023-22689

Cross-Site Request Forgery CSRF vulnerability in Lucian Apostol Auto Affiliate Links plugin = 6.3 versions...

8.8CVSS7.3AI score0.00257EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/05/09 12:0 a.m.7 views

Ivanti Avalanche 竞争条件问题漏洞

Ivanti Avalanche is an enterprise mobile device management system from Ivanti, USA. The system is primarily used to manage devices such as smartphones, tablets and barcode scanners. A security vulnerability exists in Ivanti Avalanche version 6.3.x and prior versions. An attacker could exploit the...

5.9CVSS6.1AI score0.66659EPSS
Exploits0References3
CNVD
CNVD
added 2020/05/12 12:0 a.m.5 views

JAL Information Technology PALLET CONTROL Access Control Error Vulnerability

JAL Information Technology PALLET CONTROL is a suite of IT asset management software from JAL Information Technology in Japan. An access control error vulnerability exists in JAL Information Technology PALLET CONTROL version 6.3 and earlier. An attacker can exploit this vulnerability to execute...

7.8CVSS7.7AI score0.00384EPSS
Exploits0References1
OSV
OSV
added 2018/05/19 5:29 p.m.2 views

CVE-2018-4930

Adobe Experience Manager versions 6.3 and earlier have an exploitable Cross-site scripting vulnerability. Successful exploitation could lead to sensitive information disclosure...

6.1CVSS5.8AI score0.01883EPSS
Exploits0References2
OSV
OSV
added 2017/04/24 7:59 p.m.4 views

CVE-2017-3469

Vulnerability in the MySQL Workbench component of Oracle MySQL subcomponent: Workbench: Security : Encryption. Supported versions that are affected are 6.3.8 and earlier. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise...

3.7CVSS5.8AI score0.00982EPSS
Exploits0References3
VulnCheck KEV
VulnCheck KEV
added 2015/12/23 12:0 a.m.3 views

VulnCheck KEV: CVE-2015-7756

The encryption implementation in Juniper ScreenOS 6.2.0r15 through 6.2.0r18, 6.3.0r12 before 6.3.0r12b, 6.3.0r13 before 6.3.0r13b, 6.3.0r14 before 6.3.0r14b, 6.3.0r15 before 6.3.0r15b, 6.3.0r16 before 6.3.0r16b, 6.3.0r17 before 6.3.0r17b, 6.3.0r18 before 6.3.0r18b, 6.3.0r19 before 6.3.0r19b,...

5CVSS5.8AI score0.02448EPSS
Exploits1References1
Rows per page
Query Builder