Lucene search
+L

10 matches found

nvd
nvd
added yesterday6 views

CVE-2026-55410

NocoBase is an AI-powered no-code/low-code platform for building business applications and enterprise solutions. Prior to 2.1.19, NocoBase @nocobase/plugin-backups restored PostgreSQL backups by interpolating the database.schema value from metadata.json into shell command strings executed with...

6.7CVSS
Exploits0References3
cnnvd
cnnvd
added 2025/10/22 12:0 a.m.5 views

WordPress plugin Nifty Backups 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A cross-site...

7.1CVSS6AI score0.00228EPSS
Exploits0References1
ossf
ossf
added 2025/08/14 6:52 p.m.2 views

Malicious code in @clickhouse-team/clickhouse-backups-plugin (npm)

The package @clickhouse-team/clickhouse-backups-plugin was found to contain malicious code...

7AI score
Exploits0
osv
osv
added 2025/08/14 6:52 p.m.3 views

MAL-2025-7129 Malicious code in @clickhouse-team/clickhouse-backups-plugin (npm)

The package @clickhouse-team/clickhouse-backups-plugin was found to contain malicious code...

7.2AI score
Exploits0
redhatcve
redhatcve
added 2025/05/22 7:20 p.m.16 views

CVE-2021-24173

The VM Backups WordPress plugin through 1.0 does not have CSRF checks, allowing attackers to make a logged in user unwanted actions, such as update the plugin's options, leading to a Stored Cross-Site Scripting issue...

6.1CVSS6.1AI score0.00377EPSS
Exploits1References1
cnvd
cnvd
added 2021/05/21 12:0 a.m.34 views

WordPress VM Backups Plugin Cross-Site Request Forgery Vulnerability

WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language . The platform supports PHP and MySQL servers to set up a personal blog site.WordPress Plugin is a WordPress open source application plugin . A cross-site request forgery vulnerability exists in...

4.3CVSS6.5AI score0.00411EPSS
Exploits1References1
osv
osv
added 2021/04/05 7:15 p.m.4 views

CVE-2021-24174

The Database Backups WordPress plugin through 1.2.2.6 does not have CSRF checks, allowing attackers to make a logged in user unwanted actions, such as generate backups of the database, change the plugin's settings and delete backups...

8.1CVSS5.8AI score0.03218EPSS
Exploits5References2
cnnvd
cnnvd
added 2021/04/05 12:0 a.m.9 views

WordPress VM Backups plugin 跨站请求伪造漏洞

WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language . The platform supports PHP and MySQL servers to set up a personal blog site.WordPress Plugin is a WordPress open source application plugin . A cross-site request forgery vulnerability exists in...

4.3CVSS5.5AI score0.00411EPSS
Exploits1References2
cnnvd
cnnvd
added 2021/04/05 12:0 a.m.16 views

WordPress 跨站请求伪造漏洞

WordPress is a set of blogging platforms developed using the PHP language by the WordPress Wordpress Foundation. The platform supports personal blog sites on servers running PHP and MySQL. Database Backups WordPress plugin through 1.2.2.6 A cross-site request forgery vulnerability can be exploite...

8.1CVSS7.5AI score0.03218EPSS
Exploits5References5
cnvd
cnvd
added 2016/10/20 12:0 a.m.3 views

Wordpress recent-backups plugin file download vulnerability

WordPress is the WordPress Software Foundation's set of blogging platform developed using the PHP language. recent-backups is one of the version of the back plugin. A file download vulnerability exists in version v0.7 of the Wordpress recent-backups plugin, which can be exploited by remote...

7.5CVSS6.9AI score0.03854EPSS
Exploits1References1
Rows per page
Query Builder