Lucene search
K

4 matches found

CVE
CVE
added yesterday8 views

CVE-2026-57691

CVE-2026-57691 concerns a Reflected Cross-Site Scripting (XSS) in the WordPress plugin WordPress Anti-Malware Security and Brute-Force Firewall (gotmls) ≤ 4.23.89. The root cause is improper neutralization of input during web page generation. Affected software is the Anti-Malware Security and Bru...

5.8CVSS6.1AI score0.00201EPSS
Exploits0References1
CVE
CVE
added 2026/05/16 3:28 p.m.21 views

CVE-2021-47977

CVE-2021-47977 affects the WordPress plugin Anti-Malware Security and Bruteforce Firewall 4.20.59. It describes a directory traversal vulnerability where unauthenticated attackers can read arbitrary files by manipulating the file parameter via the duplicator_download action in admin-ajax.php, usi...

8.7CVSS5.9AI score0.00652EPSS
Exploits0References4
OSV
OSV
added 2022/08/29 6:15 p.m.3 views

CVE-2022-2599

The Anti-Malware Security and Brute-Force Firewall WordPress plugin before 4.21.83 does not sanitise and escape some parameters before outputting them back in an admin dashboard, leading to Reflected Cross-Site Scripting...

6.1CVSS5.8AI score0.0102EPSS
Exploits2References1
CNNVD
CNNVD
added 2022/02/21 12:0 a.m.7 views

WordPress 跨站脚本漏洞

WordPress is a set of blogging platforms developed by the WordPress Wordpress Foundation using the PHP language. A cross-site scripting vulnerability exists in the WordPress Anti-Malware Security and Brute-Force Firewall, which stems from the fact that the plugin does not clean and escape POST da...

4.8CVSS5.3AI score0.00598EPSS
Exploits2References3
Rows per page
Query Builder