Lucene search
K

7 matches found

vulnersOsv
vulnersOsv
added 2026/05/18 9:0 p.m.7 views

@0xsequence/checkout (>=0.0.0-20250314205219 <=5.2.4), @0xsequence/kit-checkout (>=0.0.0-20250305153405 <=4.6.6-beta.0) +190 more potentially affected by unknown CVE via timeago-react (>=3.0.2 <=3.0.7)

timeago-react NPM version =3.0.2, =0.0.0-20250314205219, =0.0.0-20250305153405, =1.0.0, =1.0.0, =0.5.4, =1.0.1, =2.0.10, =0.25.0, =0.23.0, =0.0.1, =1.0.7, =1.1.6 and more Source cves: unknown CVE Source advisory: SNYK:JS-TIMEAGOREACT-16755037...

5.7AI score
Exploits0
Cvelist
Cvelist
added 2026/02/19 3:25 a.m.29 views

CVE-2025-11725 Aruba HiSpeed Cache <= 3.0.2 - Missing Authorization to Unauthenticated Plugin's Settings Modification

The Aruba HiSpeed Cache plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability checks on the multiple functions in all versions up to, and including, 3.0.2. This makes it possible for unauthenticated attackers to modify plugin's configuration settings,...

6.5CVSS0.00277EPSS
Exploits0References4
Patchstack
Patchstack
added 2025/12/30 9:36 p.m.7 views

WordPress Email Verification for WooCommerce plugin <= 3.0.2 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Muhammad Yudha - DJ in WordPress Plugin Email Verification for WooCommerce versions = 3.0.2...

6.5CVSS6.3AI score0.00209EPSS
Exploits0Affected Software1
Vulnrichment
Vulnrichment
added 2025/11/06 3:54 p.m.1 views

CVE-2025-54721 WordPress Resca theme <= 3.0.2 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ThimPress Resca resca allows Reflected XSS.This issue affects Resca: from n/a through = 3.0.2...

6AI score0.00214EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/11/22 12:0 a.m.5 views

PT-2024-35502 · Adobe · Substance3D - Stager

Name of the Vulnerable Software and Affected Versions: Substance3D - Stager versions 3.0.2 and earlier Description: The issue is an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR...

5.5CVSS6.4AI score0.00267EPSS
Exploits0References4
Patchstack
Patchstack
added 2024/04/05 7:26 a.m.5 views

WordPress Edwiser Bridge plugin <= 3.0.2 - SQL Injection vulnerability

SQL Injection vulnerability discovered by Muhammad Daffa Patchstack Alliance in WordPress Plugin Edwiser Bridge versions = 3.0.2...

7.6CVSS8.1AI score0.00541EPSS
Exploits0Affected Software1
CNNVD
CNNVD
added 2023/11/15 12:0 a.m.4 views

PrestaShop nkmgls Cross-Site Scripting Vulnerability

PrestaShop is an open source e-commerce solution from PrestaShop, Inc. in the United States. The solution provides multiple payment methods, short message alerts and product image scaling. A cross-site scripting vulnerability exists in PrestaShop nkmgls versions prior to 3.0.2, which stems from a...

5.4CVSS6.2AI score0.00419EPSS
Exploits1References2
Rows per page
Query Builder