Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

CNNVD
CNNVDadded 5 days ago3 views

WordPress plugin Media Library Assistant 跨站请求伪造漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. The...

8.1CVSS5.8AI score0.00043EPSS
Exploits0References11
Snyk
Snykadded 2026/04/01 8:30 p.m.0 views

Authorization Bypass Through User-Controlled Key

Overview Affected versions of this package are vulnerable to Authorization Bypass Through User-Controlled Key via batch operation. An attacker can perform unauthorized operations such as signaling, deleting, or resetting workflows or activities in another namespace by manipulating the namespace...

4.9CVSS5.9AI score0.0005EPSS
Exploits0References2
OSV
OSVadded 2025/04/03 2:11 p.m.4 views

BIT-JOOMLA-2020-8419

An issue was discovered in Joomla! before 3.9.15. Missing token checks in the batch actions of various components cause CSRF vulnerabilities...

8.8CVSS7.2AI score0.00041EPSS
Exploits0References2
OSSF Malicious Packages
OSSF Malicious Packagesadded 2024/06/25 1:49 p.m.4 views

Malicious code in batch-actions (RubyGems)

--- -= Per source details. Do not edit below this line.=-...

7AI score
Exploits0References1
OSV
OSVadded 2024/06/25 1:49 p.m.5 views

MAL-2024-6755 Malicious code in batch-actions (RubyGems)

--- -= Per source details. Do not edit below this line.=-...

7.1AI score
Exploits0References1
Code423n4
Code423n4added 2021/09/08 12:0 a.m.6 views

Privilige escalation in ERC1155

Handle cmichel Vulnerability details Vulnerability Details The ERC1155.checkPostTransferEvent function allows the from address to specify trades that are executed by the to address if to approved msg.sender. Impact An approved account can execute arbitrary batch actions on behalf of the approver,...

7.5AI score
Exploits0
Tenable Nessus
Tenable Nessusadded 2020/01/30 12:0 a.m.23 views

Joomla! 3.x < 3.9.15 Multiple Vulnerabilities

According to its self-reported version number, the detected Joomla! application is affected by multiple vulnerabilities : - A cross-site request forgery CSRF exists in versions 3.0.0 to 3.9.14 due to a missing token checks in the batch actions of various components CVE-2020-8419 - A cross-site...

8.8CVSS7.6AI score0.02143EPSS
Exploits0References7
Prion
Prionadded 2020/01/28 9:15 p.m.13 views

Cross site request forgery (csrf)

An issue was discovered in Joomla! before 3.9.15. Missing token checks in the batch actions of various components cause CSRF vulnerabilities...

6.8CVSS8.6AI score0.00041EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologiesadded 2020/01/28 12:0 a.m.1 views

PT-2020-20124 · Open Source Matters · Joomla!

Name of the Vulnerable Software and Affected Versions: Joomla! versions prior to 3.9.15 Description: An issue was discovered in Joomla! where missing token checks in the batch actions of various components cause CSRF vulnerabilities. Recommendations: For versions prior to 3.9.15, update to versio...

8.8CVSS7.2AI score0.00041EPSS
Exploits0References6
Joomla! Vulnerable Extensions List
Joomla! Vulnerable Extensions Listadded 2019/12/23 12:0 a.m.19 views

[20200101] - Core - CSRF in batch actions

Missing token checks in the batch actions of various components causes CSRF vulnerabilities...

8.8CVSS8.4AI score0.00041EPSS
Exploits0Affected Software1
Rows per page
Query Builder