Lucene search
K

123 matches found

Cvelist
Cvelist
added 2024/06/20 2:12 p.m.32 views

CVE-2024-37222 WordPress Master Slider plugin <= 3.10.0 - Reflected Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability in Averta Master Slider allows Reflected XSS.This issue affects Master Slider: from n/a through 3.10.0...

7.1CVSS0.00327EPSS
Exploits0References1
CVE
CVE
added 2024/06/20 2:12 p.m.72 views

CVE-2024-37222

Technical details about CVE-2024-37222 are not provided in the connected documents. The initial description mentions Reflected XSS in Master Slider up to 3.10.0, but no product/version specifics or mitigations are confirmed here. Monitor for updates.

7.1CVSS6.6AI score0.00327EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2024/06/20 12:0 a.m.7 views

PT-2024-27391 · Unknown · Averta Master Slider

Name of the Vulnerable Software and Affected Versions: Averta Master Slider versions 3.9.10 through 3.10.0 Description: The issue is a Cross Site Scripting XSS vulnerability, specifically Reflected XSS, in Averta Master Slider. This type of vulnerability allows an attacker to inject malicious...

7.1CVSS6AI score0.00327EPSS
Exploits0References5
CNNVD
CNNVD
added 2024/06/20 12:0 a.m.6 views

WordPress plugin Averta Master Slider security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plug-in. A security vulnerability...

7.1CVSS5.9AI score0.00327EPSS
Exploits0References3
NVD
NVD
added 2024/06/19 10:15 a.m.25 views

CVE-2023-50900

Cross-Site Request Forgery CSRF vulnerability in Averta Master Slider.This issue affects Master Slider: from n/a through 3.9.10...

4.3CVSS0.00161EPSS
Exploits0References1
OSV
OSV
added 2024/06/19 10:15 a.m.6 views

CVE-2023-50900

Cross-Site Request Forgery CSRF vulnerability in Averta Master Slider.This issue affects Master Slider: from n/a through 3.9.10...

4.3CVSS5.8AI score0.00161EPSS
Exploits0References1
CVE
CVE
added 2024/06/19 10:0 a.m.54 views

CVE-2023-50900

CVE-2023-50900 affects the WordPress Master Slider plugin (versions &lt;= 3.9.10). The vulnerability is a Cross-Site Request Forgery (CSRF) in Master Slider, with CVSSv3.1 base score 4.3 (NETWORK attack vector, LOW complexity, NONE confidentiality/availability impact, LOW integrity impact; user i...

4.3CVSS4.6AI score0.00161EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2024/05/17 7:15 a.m.38 views

CVE-2023-39163

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Averta Phlox Shop allows PHP Local File Inclusion.This issue affects Phlox Shop: from n/a through 2.0.0...

8.6CVSS8.6AI score0.006EPSS
Exploits0References1
NVD
NVD
added 2024/05/17 7:15 a.m.14 views

CVE-2023-38399

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Averta Phlox Portfolio allows PHP Local File Inclusion.This issue affects Phlox Portfolio: from n/a through 2.3.1...

8.6CVSS8.6AI score0.006EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/05/17 6:52 a.m.19 views

CVE-2023-39163 WordPress Phlox Shop plugin <= 2.0.0 - Unauthenticated Local File Inclusion vulnerability

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Averta Phlox Shop allows PHP Local File Inclusion.This issue affects Phlox Shop: from n/a through 2.0.0...

8.6CVSS6.9AI score0.006EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/05/17 6:52 a.m.41 views

CVE-2023-39163 WordPress Phlox Shop plugin <= 2.0.0 - Unauthenticated Local File Inclusion vulnerability

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Averta Phlox Shop allows PHP Local File Inclusion.This issue affects Phlox Shop: from n/a through 2.0.0...

8.6CVSS8.6AI score0.006EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/05/17 6:48 a.m.36 views

CVE-2023-37888 WordPress Phlox Core Elements plugin <= 2.14.0 - Unauthenticated Local File Inclusion vulnerability

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in By Averta Shortcodes and extra features for Phlox theme allows PHP Local File Inclusion.This issue affects Shortcodes and extra features for Phlox theme: from n/a through 2.14.0...

7.6CVSS7.6AI score0.00675EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/05/17 12:0 a.m.3 views

PT-2024-12775 · Unknown · Averta Phlox Shop

Name of the Vulnerable Software and Affected Versions: Averta Phlox Shop versions n/a through 2.0.0 Description: The issue is related to an Improper Limitation of a Pathname to a Restricted Directory, also known as 'Path Traversal', which allows PHP Local File Inclusion in Averta Phlox Shop...

8.6CVSS9.4AI score0.006EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2024/05/17 12:0 a.m.7 views

PT-2024-12725 · Unknown · Averta Phlox Portfolio

Name of the Vulnerable Software and Affected Versions: Averta Phlox Portfolio versions prior to 2.3.1 Description: The issue is related to an Improper Limitation of a Pathname to a Restricted Directory, also known as 'Path Traversal', which allows PHP Local File Inclusion. This means that an...

8.6CVSS9.4AI score0.006EPSS
Exploits0References4
NVD
NVD
added 2024/04/18 11:15 a.m.20 views

CVE-2024-32600

Deserialization of Untrusted Data vulnerability in Averta Master Slider.This issue affects Master Slider: from n/a through 3.9.5...

9.6CVSS8.3AI score0.00492EPSS
Exploits0References1
OSV
OSV
added 2024/04/18 11:15 a.m.6 views

CVE-2024-32600

Deserialization of Untrusted Data vulnerability in Averta Master Slider.This issue affects Master Slider: from n/a through 3.9.5...

9.6CVSS5.8AI score0.00492EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/04/18 10:18 a.m.42 views

CVE-2024-32600 WordPress Master Slider plugin <= 3.9.5 - PHP Object Injection vulnerability

Deserialization of Untrusted Data vulnerability in Averta Master Slider.This issue affects Master Slider: from n/a through 3.9.5...

8.3CVSS8.5AI score0.00492EPSS
Exploits0References1
CVE
CVE
added 2024/04/18 10:18 a.m.96 views

CVE-2024-32600

CVE-2024-32600 describes a Deserialization of Untrusted Data vulnerability in Master Slider (Master Slider – Responsive Touch Slider). Affected range: from n/a through 3.9.5. The issue is categorized as an unauthenticated PHP Object Injection, enabling an attacker to exploit via deserialization o...

9.6CVSS5.2AI score0.00492EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2024/04/18 10:15 a.m.29 views

CVE-2024-32580

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Averta Master Slider allows Stored XSS.This issue affects Master Slider: from n/a through 3.9.8...

6.5CVSS6.4AI score0.00317EPSS
Exploits0References1
OSV
OSV
added 2024/04/18 10:15 a.m.3 views

CVE-2024-32580

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Averta Master Slider allows Stored XSS.This issue affects Master Slider: from n/a through 3.9.8...

5.4CVSS5.8AI score0.00317EPSS
Exploits0References1
Rows per page
Query Builder