Lucene search
K

8 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-0523

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.00294EPSS
Exploits0References3
Cvelist
Cvelist
added 2022/08/16 12:0 a.m.22 views

CVE-2022-2846 Calendar Event Multi View < 1.4.07 - Unauthenticated Arbitrary Event Creation to Stored XSS

The Calendar Event Multi View WordPress plugin before 1.4.07 does not have any authorisation and CSRF checks in place when creating an event, and is also lacking sanitisation as well as escaping in some of the event fields. This could allow unauthenticated attackers to create arbitrary events and...

4.9AI score0.02179EPSS
Exploits5References2
wpexploit
wpexploit
added 2022/08/16 12:0 a.m.647 views

Calendar Event Multi View < 1.4.07 - Unauthenticated Arbitrary Event Creation to Stored XSS

The plugin does not have any authorisation and CSRF checks in place when creating an event, and is also lacking sanitisation as well as escaping in some of the event fields. This could allow unauthenticated attackers to create arbitrary events and put Cross-Site Scripting payloads in it. As an...

4.3CVSS4.6AI score0.02179EPSS
Exploits5
NVD
NVD
added 2019/06/06 8:29 p.m.13 views

CVE-2019-12492

Gallagher Command Centre before 7.80.939, 7.90.x before 7.90.961, and 8.x before 8.00.1128 allows arbitrary event creation and information disclosure via the FT Command Centre Service and FT Controller Service services...

6.5CVSS6.5AI score0.00739EPSS
Exploits0References2
OSV
OSV
added 2019/06/06 8:29 p.m.4 views

CVE-2019-12492

Gallagher Command Centre before 7.80.939, 7.90.x before 7.90.961, and 8.x before 8.00.1128 allows arbitrary event creation and information disclosure via the FT Command Centre Service and FT Controller Service services...

6.5CVSS6.7AI score0.00739EPSS
Exploits0References2
CVE
CVE
added 2019/06/06 7:29 p.m.186 views

CVE-2019-12492

The CVE-2019-12492 entry concerns Gallagher Command Centre before 7.80.939, 7.90.x before 7.90.961, and 8.x before 8.00.1128. The connected documents indicate the vulnerability enables arbitrary event creation and information disclosure through the FT Command Centre Service and FT Controller Serv...

6.5CVSS6.5AI score0.00739EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2019/06/06 7:29 p.m.12 views

CVE-2019-12492

Gallagher Command Centre before 7.80.939, 7.90.x before 7.90.961, and 8.x before 8.00.1128 allows arbitrary event creation and information disclosure via the FT Command Centre Service and FT Controller Service services...

6.5AI score0.00739EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2018/06/14 2:29 p.m.3 views

CVE-2018-8927

Improper authorization vulnerability in SYNO.Cal.Event in Calendar before 2.1.2-0511 allows remote authenticated users to create arbitrary events via the 1 calid or 2 originalcalid parameter...

6.5CVSS5.8AI score0.00907EPSS
Exploits0References2
Rows per page
Query Builder