Lucene search
K

5180 matches found

CVE
CVE
added 2026/02/03 6:56 a.m.13 views

CVE-2026-20704

The CVE-2026-20704 applies to the WRC-X1500GS-B and WRC-X1500GSA-B concrete models. The connected sources confirm a Cross‑Site Request Forgery (CSRF) vulnerability that can allow unintended operations when a logged‑in user visits a malicious page. The underlying root cause details are not provide...

5.1CVSS6.1AI score0.00133EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/02/03 12:0 a.m.6 views

ELECOM WRC-X1500GS-B和ELECOM WRC-X1500GSA-B 跨站请求伪造漏洞

ELECOM WRC-X1500GS-B and ELECOM WRC-X1500GSA-B are wireless routers produced by the Japanese company ELECOM. Both devices have a vulnerability related to cross-site request forgery. This vulnerability stems from cross-site request forgery attacks, which may cause unexpected behaviors when logged-...

5.1CVSS6AI score0.00133EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/02/03 12:0 a.m.8 views

PT-2026-6084

Name of the Vulnerable Software and Affected Versions WRC-X1500GS-B WRC-X1500GSA-B Description A cross-site request forgery issue exists in the product. If a logged-in user accesses a malicious page, unintended operations may be performed. Recommendations At the moment, there is no information...

5.1CVSS5AI score0.00133EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/02/03 12:0 a.m.6 views

PT-2026-6108

Name of the Vulnerable Software and Affected Versions WRC-X1500GS-B WRC-X1500GSA-B Description An OS command injection issue exists in WRC-X1500GS-B and WRC-X1500GSA-B. A specially crafted request originating from an authenticated user could allow for the execution of arbitrary OS commands...

8.6CVSS5.9AI score0.01664EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/02/03 12:0 a.m.11 views

PT-2026-6194

Name of the Vulnerable Software and Affected Versions WRC-X1500GS-B WRC-X1500GSA-B Description The initial passwords for the devices can be easily calculated from system information. Recommendations At the moment, there is no information about a newer version that contains a fix for this...

5.1CVSS5.4AI score0.00188EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/02/03 12:0 a.m.9 views

ELECOM WRC-X1500GS-B和ELECOM WRC-X1500GSA-B 安全漏洞

ELECOM WRC-X1500GS-B and ELECOM WRC-X1500GSA-B are wireless routers produced by the Japanese company ELECOM. Both devices have security vulnerabilities, where the initial password can be easily calculated from system information...

5.1CVSS6.1AI score0.00188EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/02/03 12:0 a.m.8 views

ELECOM WRC-X1500GS-B和ELECOM WRC-X1500GSA-B 操作系统命令注入漏洞

ELECOM WRC-X1500GS-B and ELECOM WRC-X1500GSA-B are wireless routers produced by the Japanese company ELECOM. Both devices have a vulnerability related to OS command injection. This vulnerability stems from the ability to execute arbitrary OS commands through OS command injection...

8.8CVSS7.4AI score0.01664EPSS
Exploits0References2
Patchstack
Patchstack
added 2026/01/29 4:36 a.m.8 views

WordPress B Slider plugin <= 2.0.6 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Jitlada in WordPress Plugin B Slider versions = 2.0.6...

6.5CVSS5.9AI score0.00129EPSS
Exploits0Affected Software1
CNNVD
CNNVD
added 2026/01/29 12:0 a.m.9 views

B&R Industrial Automation Process Visualization Interface log information leakage vulnerability

B&R Industrial Automation Process Visualization Interface is a process visualization tool developed by B&R Industrial Automation in Austria. Versions of the B&R Industrial Automation Process Visualization Interface prior to version 6.5 contained a vulnerability related to log information leakage...

5.1CVSS5.8AI score0.00103EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/23 9:15 p.m.8 views

CVE-2026-24383

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bPlugins B Slider b-slider allows DOM-Based XSS.This issue affects B Slider: from n/a through = 2.0.6...

6.5CVSS5.4AI score0.00129EPSS
Exploits0References1
NVD
NVD
added 2026/01/23 3:16 p.m.12 views

CVE-2026-24565

Insertion of Sensitive Information Into Sent Data vulnerability in bPlugins B Accordion b-accordion allows Retrieve Embedded Sensitive Data.This issue affects B Accordion: from n/a through = 2.0.2...

6.5CVSS0.00276EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/01/23 2:28 p.m.2 views

CVE-2026-24565 WordPress B Accordion plugin <= 2.0.2 - Sensitive Data Exposure vulnerability

Insertion of Sensitive Information Into Sent Data vulnerability in bPlugins B Accordion b-accordion allows Retrieve Embedded Sensitive Data.This issue affects B Accordion: from n/a through = 2.0.2...

6.5CVSS5.2AI score0.00276EPSS
Exploits0References1
CVE
CVE
added 2026/01/23 2:28 p.m.12 views

CVE-2026-24565

CVE-2026-24565 affects WordPress plugin B Accordion (b-accordion) up to version 2.0.0. A flaw results from insertion of sensitive information into sent data, allowing retrieval of embedded sensitive data and exposing confidential information (CVE details and Wordfence/patch sources confirm exposu...

6.5CVSS5.9AI score0.00276EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/01/23 2:28 p.m.31 views

CVE-2026-24565 WordPress B Accordion plugin <= 2.0.2 - Sensitive Data Exposure vulnerability

Insertion of Sensitive Information Into Sent Data vulnerability in bPlugins B Accordion b-accordion allows Retrieve Embedded Sensitive Data.This issue affects B Accordion: from n/a through = 2.0.2...

6.5CVSS0.00276EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/01/23 2:28 p.m.3 views

CVE-2026-24565

Insertion of Sensitive Information Into Sent Data vulnerability in bPlugins B Accordion b-accordion allows Retrieve Embedded Sensitive Data.This issue affects B Accordion: from n/a through = 2.0.0...

6.5CVSS5.9AI score0.00276EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/01/23 12:0 a.m.6 views

PT-2026-4407

Name of the Vulnerable Software and Affected Versions bPlugins B Accordion versions through 2.0.0 Description A flaw exists in bPlugins B Accordion b-accordion that allows the retrieval of embedded sensitive data due to insertion of sensitive information into sent data. Recommendations Update to ...

5.2AI score0.00276EPSS
Exploits0References3
NVD
NVD
added 2026/01/22 5:16 p.m.11 views

CVE-2026-24383

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bPlugins B Slider b-slider allows DOM-Based XSS.This issue affects B Slider: from n/a through = 2.0.6...

6.5CVSS0.00129EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/01/22 4:52 p.m.3 views

CVE-2026-24383 WordPress B Slider plugin <= 2.0.6 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bPlugins B Slider b-slider allows DOM-Based XSS.This issue affects B Slider: from n/a through = 2.0.6...

6.5CVSS5.9AI score0.00129EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/01/22 4:52 p.m.22 views

CVE-2026-24383 WordPress B Slider plugin <= 2.0.6 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bPlugins B Slider b-slider allows DOM-Based XSS.This issue affects B Slider: from n/a through = 2.0.6...

6.5CVSS0.00129EPSS
Exploits0References1
CVE
CVE
added 2026/01/22 4:52 p.m.17 views

CVE-2026-24383

CVE-2026-24383 concerns the WordPress plugin B Slider (b-slider) with versions up to and including 2.0.6, which is affected by a DOM-based Cross-Site Scripting (XSS) in input handling during web page generation. The vulnerability is classified as medium severity (CVSSv3.1: AV:N/AC:L/PR:L/UI:R/S:C...

6.5CVSS5.4AI score0.00129EPSS
Exploits0References1
Rows per page
Query Builder