Lucene search
K

10 matches found

EUVD
EUVD
added 2026/02/03 2:8 p.m.6 views

EUVD-2026-5254

Missing Authorization vulnerability in Wired Impact Wired Impact Volunteer Management wired-impact-volunteer-management allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Wired Impact Volunteer Management: from n/a through = 2.8...

5.3CVSS5.3AI score0.00176EPSS
Exploits0References1
OSV
OSV
added 2025/12/19 5:11 p.m.5 views

CVE-2025-68430 CVAT vulnerable to directory traversal via mounted share listing

CVAT is an open source interactive video and image annotation tool for computer vision. In versions 2.8.1 through 2.52.0, an attacker with an account on a CVAT instance is able to retrieve the contents of any file system directory accessible to the CVAT server. The exposed information is names of...

5.3CVSS6.5AI score0.0024EPSS
Exploits0References4
Patchstack
Patchstack
added 2025/06/09 10:28 a.m.5 views

WordPress Avaz theme <= 2.8 - Local File Inclusion Vulnerability

Local File Inclusion Vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Avaz versions = 2.8...

8.1CVSS7AI score0.00519EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVE
added 2025/05/23 8:20 a.m.3 views

CVE-2024-10112

The Simple News plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'news' shortcode in all versions up to, and including, 2.8 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers,...

6.4CVSS5AI score0.00327EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/05/21 10:37 a.m.4 views

WordPress Pet World theme <= 2.8 - PHP Object Injection Vulnerability

PHP Object Injection Vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Pet World versions = 2.8...

8.8CVSS7.2AI score0.00473EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/05/21 10:34 a.m.4 views

WordPress Finance Consultant theme <= 2.8 - PHP Object Injection Vulnerability

PHP Object Injection Vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Finance Consultant versions = 2.8...

8.8CVSS7.2AI score0.00473EPSS
Exploits0Affected Software1
CNNVD
CNNVD
added 2024/11/21 12:0 a.m.3 views

WordPress plugin Ultimate Member 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in WordPres...

4.3CVSS8AI score0.00564EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/08/29 12:59 a.m.5 views

WordPress Theme Editor plugin <= 2.8 - Authenticated (Admin+) PHAR Deserialization vulnerability

Authenticated Admin+ PHAR Deserialization vulnerability discovered by Rasoul Jahanshahi in WordPress Plugin Theme Editor versions = 2.8...

7.2CVSS7AI score0.0074EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2018/04/06 2:29 p.m.2 views

CVE-2018-7506

The private key of the web server in Moxa MXview versions 2.8 and prior is able to be read and accessed via an HTTP GET request, which may allow a remote attacker to decrypt encrypted information...

7.5CVSS5.8AI score0.01974EPSS
Exploits0References2
OSV
OSV
added 2017/10/19 5:29 p.m.5 views

CVE-2017-10344

Vulnerability in the Oracle Hospitality Simphony component of Oracle Hospitality Applications subcomponent: Import/Export. Supported versions that are affected are 2.8 and 2.9. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle...

6.5CVSS7.3AI score0.01198EPSS
Exploits0References2
Rows per page
Query Builder