Lucene search
+L

56 matches found

Cvelist
Cvelist
added 2024/11/14 5:26 p.m.25 views

CVE-2024-52396 WordPress WOLF plugin <= 1.0.8.3 - CSV Limited Path Traversal vulnerability

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in RealMag777 WOLF bulk-editor allows Path Traversal.This issue affects WOLF: from n/a through = 1.0.8.3...

4.9CVSS0.00608EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/11/14 12:0 a.m.5 views

WordPress plugin WOLF 路径遍历漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A path traversal...

8.8CVSS8.2AI score0.00608EPSS
Exploits0References2
Patchstack
Patchstack
added 2024/11/11 12:29 p.m.6 views

WordPress WOLF plugin <= 1.0.8.3 - CSV Limited Path Traversal vulnerability

CSV Limited Path Traversal vulnerability discovered by Trương Hữu Phúc Patchstack Alliance in WordPress Plugin WOLF versions = 1.0.8.3...

8.8CVSS7AI score0.00608EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/11/11 12:0 a.m.14 views

WordPress WOLF Plugin <= 1.0.8.3 is vulnerable to Path Traversal

Software WOLF Type Plugin Vulnerable versions = 1.0.8.3 Fixed in 1.0.8.4 OWASP Top 10 A1: Broken Access Control Classification Path Traversal CVE CVE-2024-52396 Patch priority Medium CVSS severity Medium 4.9 Developer Claim ownership PSID 1a1949b4101b Credits Trương Hữu Phúc truonghuuphuc Require...

8.8CVSS6.5AI score0.00608EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2024/05/08 11:13 a.m.24 views

CVE-2024-34558 WordPress WOLF plugin <= 1.0.8.2 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in realmag777 WOLF allows Stored XSS.This issue affects WOLF: from n/a through 1.0.8.2...

5.9CVSS6.8AI score0.00278EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/05/08 11:13 a.m.11 views

CVE-2024-34558 WordPress WOLF plugin <= 1.0.8.2 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in realmag777 WOLF allows Stored XSS.This issue affects WOLF: from n/a through 1.0.8.2...

5.9CVSS6.7AI score0.00278EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/05/08 12:0 a.m.4 views

WordPress plugin WOLF 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripti...

5.9CVSS6AI score0.00278EPSS
Exploits0References2
Patchstack
Patchstack
added 2024/05/07 9:41 a.m.7 views

WordPress WOLF plugin <=1.0.8.2 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Elmini Patchstack Alliance in WordPress Plugin WOLF versions = 1.0.8.2...

5.9CVSS6.1AI score0.00278EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/05/07 12:0 a.m.16 views

WordPress WOLF Plugin <=1.0.8.2 is vulnerable to Cross Site Scripting (XSS)

Software WOLF Type Plugin Vulnerable versions =1.0.8.2 Fixed in 1.0.8.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-34558 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 75bcc909e11e Credits Elmini Required privilege Administrator...

5.9CVSS6.6AI score0.00278EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2024/04/10 9:35 a.m.6 views

WordPress WOLF – WordPress Posts Bulk Editor and Manager Professional plugin <= 1.0.8.1 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Dhabaleshwar Das Patchstack Alliance in WordPress Plugin WOLF versions = 1.0.8.1...

8.8CVSS7AI score0.00224EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/04/10 12:0 a.m.23 views

WordPress WOLF Plugin <= 1.0.8.1 is vulnerable to Cross Site Request Forgery (CSRF)

Software WOLF Type Plugin Vulnerable versions = 1.0.8.1 Fixed in 1.0.8.2 OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-31430 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID de601e918847 Credits Dhabaleshwar Das Required...

8.8CVSS4.6AI score0.00224EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2024/04/10 12:0 a.m.5 views

WordPress Plugin WOLF 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platform developed using the PHP language. WordPress is a blogging platform developed using the PHP language, which supports personal blogs on PHP and MySQL servers.WordPress plugin is an...

8.8CVSS6.4AI score0.00224EPSS
Exploits0References3
OSV
OSV
added 2024/02/05 10:16 p.m.4 views

CVE-2024-0791

The WOLF – WordPress Posts Bulk Editor and Manager Professional plugin for WordPress is vulnerable to unauthorized access, modification or loss of data due to a missing capability check on the wpbecreatenewterm, wpbeupdatetaxterm, and wpbedeletetaxterm functions in all versions up to, and...

4.3CVSS5.8AI score0.00533EPSS
Exploits0References3
Prion
Prion
added 2024/02/05 10:16 p.m.18 views

Design/Logic Flaw

The WOLF – WordPress Posts Bulk Editor and Manager Professional plugin for WordPress is vulnerable to unauthorized access, modification or loss of data due to a missing capability check on the wpbecreatenewterm, wpbeupdatetaxterm, and wpbedeletetaxterm functions in all versions up to, and...

4CVSS6.7AI score0.00533EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
added 2024/02/05 12:0 a.m.6 views

WordPress plugin WOLF security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in WordPres...

4.3CVSS6.6AI score0.00533EPSS
Exploits0References4
CNNVD
CNNVD
added 2024/02/05 12:0 a.m.7 views

WordPress plugin WOLF security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in WordPres...

5.4CVSS6.7AI score0.00312EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2024/01/31 6:12 p.m.14 views

CVE-2024-22159 WordPress WOLF Plugin <= 1.0.8 is vulnerable to Cross Site Scripting (XSS)

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in realmag777 WOLF – WordPress Posts Bulk Editor and Manager Professional allows Reflected XSS.This issue affects WOLF – WordPress Posts Bulk Editor and Manager Professional: from n/a through 1.0.8...

7.1CVSS7AI score0.00331EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/01/31 6:12 p.m.38 views

CVE-2024-22159 WordPress WOLF Plugin <= 1.0.8 is vulnerable to Cross Site Scripting (XSS)

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in realmag777 WOLF – WordPress Posts Bulk Editor and Manager Professional allows Reflected XSS.This issue affects WOLF – WordPress Posts Bulk Editor and Manager Professional: from n/a through 1.0.8...

7.1CVSS7.2AI score0.00331EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/01/31 12:0 a.m.19 views

WordPress WOLF Plugin <= 1.0.8.1 is vulnerable to Broken Access Control

Software WOLF Type Plugin Vulnerable versions = 1.0.8.1 Fixed in 1.0.8.2 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-0791 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 9624a396772c Credits Francesco Carlucci Required privilege...

4.3CVSS6.5AI score0.00533EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
added 2024/01/31 12:0 a.m.6 views

WordPress plugin WOLF 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...

7.1CVSS6.8AI score0.00331EPSS
Exploits0References2
Rows per page
Query Builder