Lucene search
K

115 matches found

CNNVD
CNNVD
added 2024/06/12 12:0 a.m.4 views

WordPress plugin WP GPX Map security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

4.3CVSS6.8AI score0.00277EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/06/12 12:0 a.m.6 views

WordPress plugin Piotnet Forms security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

5.3CVSS6.8AI score0.00295EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/06/12 12:0 a.m.4 views

WordPress plugin FunnelKit Checkout security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

5.4CVSS6.8AI score0.00333EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/06/12 12:0 a.m.3 views

WordPress plugin Awesome Support security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exist...

7.3CVSS6.8AI score0.00301EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/06/12 12:0 a.m.4 views

WordPress plugin Simple Staff List security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exist...

4.3CVSS6.8AI score0.00324EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/06/12 12:0 a.m.6 views

WordPress plugin Quotes for WooCommerce security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

6.3CVSS6.8AI score0.00261EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/06/12 12:0 a.m.6 views

WordPress plugin BulkGate SMS Plugin for WooCommerce Security Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

5.4CVSS6.8AI score0.00333EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/05/23 12:43 p.m.21 views

CVE-2024-1803 EmbedPress – Embed PDF, Google Docs, Vimeo, Wistia, Embed YouTube Videos, Audios, Maps & Embed Any Documents in Gutenberg & Elementor <= 3.9.12 - Insufficient Authorization Checks to Block Usual

The EmbedPress – Embed PDF, Google Docs, Vimeo, Wistia, Embed YouTube Videos, Audios, Maps & Embed Any Documents in Gutenberg & Elementor plugin for WordPress is vulnerable to unauthorized access of functionality due to insufficient authorization validation on the PDF embed block in all versions ...

4.3CVSS4.8AI score0.0028EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/04/11 12:0 a.m.4 views

WordPress Plugin WP SendFox 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in...

5.4CVSS8.1AI score0.00305EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/04/11 12:0 a.m.3 views

WordPress Plugin WP Media Folder 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. WordPress plugin is an application plugin that supports personal blog sites on servers running PHP and MySQL. A security vulnerability exists in...

5.4CVSS8.2AI score0.00364EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/04/11 12:0 a.m.3 views

WordPress plugin Easy!Appointments 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin. A security vulnerability exists in th...

6.3CVSS8.7AI score0.00403EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/04/11 12:0 a.m.3 views

WordPress Plugin Moveto 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. WordPress is a blogging platform developed using the PHP language, which supports personal blog sites on servers running PHP and MySQL.WordPress...

9.8CVSS8AI score0.00582EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/04/11 12:0 a.m.4 views

WordPress Plugin Prime Slider 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. WordPress plugin is an application plugin that supports personal blog sites on servers running PHP and MySQL. A security vulnerability exists in...

4.3CVSS8.2AI score0.0035EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/04/11 12:0 a.m.4 views

WordPress Plugin RegistrationMagic 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. WordPress plugin is an application plugin that supports personal blogs on PHP and MySQL servers. A security vulnerability exists in WordPress...

9.8CVSS6.6AI score0.00402EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/04/11 12:0 a.m.3 views

WordPress Plugin FunnelKit Checkout 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plugin that supports personal blogs on PHP and MySQL servers. A security vulnerability exists in WordPress Plugin...

7.5CVSS8.7AI score0.00529EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2024/03/15 5:26 p.m.52 views

Security Bulletin: Vulnerability in Apache Solr affect IBM Operations Analytics - Log Analysis (CVE-2023-50290)

Summary Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache Solr Vulnerability Details CVEID:CVE-2023-50290 DESCRIPTION: Apache Solr could allow a remote authenticated attacker to obtain sensitive information, caused by improper authorization validation. By sending ...

6.5CVSS6.4AI score0.68665EPSS
Exploits0Affected Software1
CNVD
CNVD
added 2024/03/06 12:0 a.m.6 views

Apache Superset Security Bypass Vulnerability (CNVD-2024-26536)

Apache Superset is a data visualization and data exploration platform from the Apache USA Foundation. Apache Superset suffers from an information disclosure vulnerability that is caused by incorrect authorization validation on dashboard and chart imports. An attacker could use this vulnerability ...

5.4CVSS6.3AI score0.00866EPSS
Exploits0References1
OSV
OSV
added 2024/02/28 12:30 p.m.10 views

GHSA-3V9R-885J-762G Apache Superset: Improper authorization validation on dashboards and charts import

A low privilege authenticated user could import an existing dashboard or chart that they do not have access to and then modify its metadata, thereby gaining ownership of the object. However, it's important to note that access to the analytical data of these charts and dashboards would still be...

4.3CVSS4.8AI score0.00866EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2024/02/28 12:30 p.m.19 views

Apache Superset: Improper authorization validation on dashboards and charts import

A low privilege authenticated user could import an existing dashboard or chart that they do not have access to and then modify its metadata, thereby gaining ownership of the object. However, it's important to note that access to the analytical data of these charts and dashboards would still be...

5.4CVSS4.8AI score0.00866EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2024/02/28 11:28 a.m.24 views

CVE-2024-26016 Apache Superset: Improper authorization validation on dashboards and charts import

A low privilege authenticated user could import an existing dashboard or chart that they do not have access to and then modify its metadata, thereby gaining ownership of the object. However, it's important to note that access to the analytical data of these charts and dashboards would still be...

4.3CVSS4.9AI score0.00866EPSS
Exploits0References2
Rows per page
Query Builder