Lucene search
K

4 matches found

Patchstack
Patchstack
added 2024/10/31 12:0 a.m.12 views

WordPress Quran Shortcode Plugin <= 1.5 is vulnerable to SQL Injection

Software Quran Shortcode Type Plugin Vulnerable versions = 1.5 Fixed in N/A OWASP Top 10 A3: Injection Classification SQL Injection CVE CVE-2024-51625 Patch priority Low CVSS severity Low 8.5 Developer Claim ownership PSID c3f04d230d13 Credits LVT-tholv2k Required privilege Contributor Published ...

8.5CVSS6.8AI score0.00384EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/01/16 12:0 a.m.17 views

WordPress Image Tag Manager Plugin <= 1.5 is vulnerable to Cross Site Scripting (XSS)

Software Image Tag Manager Type Plugin Vulnerable versions = 1.5 Fixed in N/A OWASP Top 10 A4: Insecure Design Classification Cross Site Scripting XSS CVE CVE-2024-22160 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 21a3315fa407 Credits Dimas Maulana Required...

7.1CVSS6.2AI score0.00331EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2023/07/07 12:0 a.m.6 views

PT-2023-25214 · Thinutech · Thinucms

Name of the Vulnerable Software and Affected Versions: ThinuTech ThinuCMS version 1.5 Description: A vulnerability has been found in an unknown functionality of the file /author posts.php. The manipulation of the argument author with the input g6g12alert1o8sdm leads to cross site scripting. The...

6.1CVSS6.4AI score0.00312EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2020/07/15 12:0 a.m.6 views

PT-2020-15449 · Jenkins · Jenkins Gitlab Authentication Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins Gitlab Authentication Plugin versions 1.5 and earlier Description: The issue arises from the plugin not performing proper group authorization checks, leading to a privilege escalation. Specifically, it does not differentiate between...

8.8CVSS8.5AI score0.01433EPSS
Exploits0References7
Rows per page
Query Builder