Lucene search
K

16 matches found

Patchstack
Patchstack
added 2025/12/31 12:0 a.m.9 views

WordPress Directory Listings WordPress plugin - uListing plugin <= 2.2.0 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Post Meta Update and PHP Object Injection vulnerability

WordPress Directory Listings WordPress plugin - uListing plugin = 2.2.0 - Missing Authorization to Authenticated Subscriber+ Arbitrary Post Meta Update and PHP Object Injection vulnerability discovered by Phat RiO - BlueRock in WordPress Plugin uListing versions = 2.2.0...

8.8CVSS5.7AI score0.00403EPSS
Exploits0References1Affected Software1
EUVD
EUVD
added 2025/10/07 12:30 a.m.11 views

EUVD-2021-23450

Malware in sbrugna...

8.8CVSS8.6AI score0.01064EPSS
Exploits1References3
Cvelist
Cvelist
added 2025/04/17 3:47 p.m.16 views

CVE-2025-32662 WordPress uListing plugin <= 2.2.0 - Deserialization of untrusted data vulnerability

Deserialization of Untrusted Data vulnerability in Stylemix uListing ulisting allows Object Injection.This issue affects uListing: from n/a through = 2.2.0...

8.8CVSS0.00383EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/04/04 3:58 p.m.12 views

CVE-2025-32122 WordPress uListing plugin <= 2.2.0 - SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Stylemix uListing ulisting allows Blind SQL Injection.This issue affects uListing: from n/a through = 2.2.0...

7.6CVSS0.0051EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/04/04 1:18 p.m.8 views

WordPress uListing plugin <= 2.2.0 - SQL Injection vulnerability

SQL Injection vulnerability discovered by Phat RiO - Fore-Z co.ltd in WordPress Plugin uListing versions = 2.2.0...

7.6CVSS9.1AI score0.0051EPSS
Exploits0Affected Software1
Vulnrichment
Vulnrichment
added 2025/02/07 10:11 a.m.7 views

CVE-2025-25151 WordPress uListing Plugin <= 2.1.6 - SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Stylemix uListing ulisting allows SQL Injection.This issue affects uListing: from n/a through = 2.1.6...

8.5CVSS7.3AI score0.00417EPSS
Exploits0References1
OSV
OSV
added 2021/09/27 4:15 p.m.5 views

CVE-2021-36880

Unauthenticated SQL Injection SQLi vulnerability in WordPress uListing plugin versions = 2.0.3, vulnerable parameter: custom...

9.8CVSS5.8AI score0.02067EPSS
Exploits1References2
OSV
OSV
added 2021/09/27 4:15 p.m.4 views

CVE-2021-36874

Authenticated Insecure Direct Object References IDOR vulnerability in WordPress uListing plugin versions = 2.0.5...

8.8CVSS7.3AI score0.01064EPSS
Exploits1References2
Cvelist
Cvelist
added 2021/09/27 3:32 p.m.17 views

CVE-2021-36875 WordPress uListing plugin <= 2.0.5 - Auth. Reflected Cross-Site Scripting (XSS) vulnerability

Cross-site Scripting XSS vulnerability in Stylemix Directory Listings WordPress plugin – uListing allows Reflected XSS.This issue affects Directory Listings WordPress plugin – uListing: from n/a through 2.0.5...

5.9CVSS5.2AI score0.00749EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2021/09/27 3:32 p.m.8 views

CVE-2021-36875 WordPress uListing plugin <= 2.0.5 - Auth. Reflected Cross-Site Scripting (XSS) vulnerability

Cross-site Scripting XSS vulnerability in Stylemix Directory Listings WordPress plugin – uListing allows Reflected XSS.This issue affects Directory Listings WordPress plugin – uListing: from n/a through 2.0.5...

5.9CVSS4.9AI score0.00749EPSS
Exploits1References1
Cvelist
Cvelist
added 2021/09/27 3:32 p.m.16 views

CVE-2021-36874 WordPress uListing plugin <= 2.0.5 - Authenticated Insecure Direct Object References (IDOR) vulnerability

Authenticated Insecure Direct Object References IDOR vulnerability in WordPress uListing plugin versions = 2.0.5...

7.1CVSS8.9AI score0.01064EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2021/09/27 2:12 p.m.13 views

CVE-2021-36878 WordPress uListing plugin <= 2.0.5 - Settings Update via Cross-Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in WordPress uListing plugin versions = 2.0.5 makes it possible for attackers to update settings...

4.3CVSS4.9AI score0.00423EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2021/09/27 12:0 a.m.5 views

PT-2021-21388 · WordPress · Ulisting

Name of the Vulnerable Software and Affected Versions: WordPress uListing plugin versions = 2.0.5 Description: The issue is related to an Authenticated Reflected Cross-Site Scripting XSS vulnerability. Vulnerable parameters include filterid, filteruser, filterexpired date, filtercreated date, and...

5.9CVSS4.8AI score0.00749EPSS
Exploits1References6
Patchstack
Patchstack
added 2021/07/27 12:0 a.m.21 views

WordPress uListing plugin <= 2.0.5 - Multiple Cross-Site Request Forgery (CSRF) vulnerabilities

Multiple Cross-Site Request Forgery CSRF vulnerabilities were discovered by m0ze Patchstack Red Team in WordPress uListing plugin versions = 2.0.5. Solution Update the WordPress uListing plugin to the latest available version at least 2.0.6...

8.8CVSS2.8AI score0.00429EPSS
Exploits1References2Affected Software1
Patchstack
Patchstack
added 2021/07/27 12:0 a.m.11 views

WordPress uListing plugin <= 2.0.5 - Authenticated Reflected Cross-Site Scripting (XSS) vulnerability

Authenticated Reflected Cross-Site Scripting XSS vulnerability discovered by m0ze Patchstack Red Team in WordPress uListing plugin versions = 2.0.5. Vulnerable parameters: &filterid, &filteruser, &filterexpireddate, &filtercreateddate, &filterupdateddate. Solution Update the WordPress uListing...

5.9CVSS1.9AI score0.00749EPSS
Exploits1References2Affected Software1
Patchstack
Patchstack
added 2021/01/28 12:0 a.m.14 views

WordPress uListing plugin <= 1.6.6 - Unauthenticated Information Disclosure vulnerability

Unauthenticated Information Disclosure vulnerability found by Jerome Bruandet in WordPress uListing plugin versions = 1.6.6. Solution Update the WordPress uListing plugin to the latest available version at least 1.7...

2.7AI score
Exploits0References2Affected Software1
Rows per page
Query Builder