Lucene search
K

9 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-11157

Malware in sbrugna...

5.4CVSS5.5AI score0.00703EPSS
Exploits2References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2021-11881

Malware in sbrugna...

5.4CVSS5.4AI score0.006EPSS
Exploits2References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-43816

Malicious code in bioql PyPI...

4.3CVSS5AI score0.00507EPSS
Exploits2References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-25178

Malicious code in bioql PyPI...

6.1CVSS6.3AI score0.00955EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/05/17 9:4 p.m.32 views

CVE-2023-7239

The WP Dashboard Notes WordPress plugin before 1.0.11 does not validate that the user has access to the postid parameter in its wpdnupdatenote AJAX action. This allows users with a role of contributor and above to update notes created by other users...

7.5CVSS6.7AI score0.00456EPSS
Exploits2References3
Positive Technologies
Positive Technologies
added 2025/04/24 12:0 a.m.6 views

PT-2025-17708 · WordPress · Woocommerce Automatic Order Printing

Name of the Vulnerable Software and Affected Versions: WooCommerce Automatic Order Printing plugin versions up to, and including, 4.1 Description: The issue is related to Insecure Direct Object Reference, which allows authenticated attackers with Subscriber-level access and above to view other...

4.3CVSS5AI score0.00232EPSS
Exploits0References8
OSV
OSV
added 2022/09/05 1:15 p.m.9 views

CVE-2022-2376

The Directorist WordPress plugin before 7.3.1 discloses the email address of all users in an AJAX action available to both unauthenticated and any authenticated users...

5.3CVSS6.6AI score
Exploits0References1
OSV
OSV
added 2022/08/22 3:15 p.m.6 views

CVE-2022-2377

The Directorist WordPress plugin before 7.3.0 does not have authorisation and CSRF checks in an AJAX action, allowing any authenticated users to send arbitrary emails on behalf of the blog...

4.3CVSS6.6AI score
Exploits0References1
Positive Technologies
Positive Technologies
added 2022/07/28 12:0 a.m.15 views

PT-2022-9505 · WordPress · Transposh Wordpress Translation Plugin

Name of the Vulnerable Software and Affected Versions: Transposh WordPress Translation plugin versions prior to 1.0.8 Description: The issue is related to Stored Cross-Site Scripting. It occurs because the tk0 parameter from the tp translation AJAX action is not properly sanitized and escaped. Th...

5.4CVSS5.3AI score0.00586EPSS
Exploits4References6
Rows per page
Query Builder