Lucene search
K

4 matches found

Patchstack
Patchstack
added 2023/10/18 12:0 a.m.8 views

WordPress Freesoul Deactivate Plugins – Plugin manager and cleanup Plugin <= 2.1.3 is vulnerable to Broken Access Control

Software Freesoul Deactivate Plugins – Plugin manager and cleanup Type Plugin Vulnerable versions = 2.1.3 Fixed in 2.1.4 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2023-46188 Patch priority Low CVSS severity Low 4.3 Developer Jose Mortellaro PSID...

6.6AI score0.00411EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2023/10/16 12:0 a.m.7 views

WordPress EG-Attachments Plugin <= 2.1.3 is vulnerable to Cross Site Scripting (XSS)

Software EG-Attachments Type Plugin Vulnerable versions = 2.1.3 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-46070 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 04006798b0e0 Credits Le Ngoc Anh Required...

7.1CVSS5.6AI score0.00437EPSS
Exploits0References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2018/03/22 5:29 a.m.2 views

CVE-2018-8899

IdentityServer IdentityServer4 1.x before 1.5.3 and 2.x before 2.1.3 does not encode the redirect URI on the authorization response page, which might lead to XSS in some configurations...

6.1CVSS5.4AI score0.01258EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2016/10/25 12:0 a.m.3 views

PT-2016-6573 · Mysql Server · Mysql Connectors

Name of the Vulnerable Software and Affected Versions: MySQL Connector versions 2.1.3 and earlier MySQL Connector versions 2.0.4 and earlier Description: The issue affects confidentiality, integrity, and availability. It can be exploited by remote attackers via vectors related to Connector/Python...

8.1CVSS6.5AI score0.02518EPSS
Exploits0References12
Rows per page
Query Builder