Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Nuclei
Nucleiadded 19 hours ago19 views

WordPress Candidate Application Form <= 1.3 - Local File Inclusion

WordPress Candidate Application Form = 1.3 is susceptible to arbitrary file downloads because the code in downloadpdffile.php does not do any sanity checks. id: CVE-2015-1000005 info: name: WordPress Candidate Application Form = 1.3 - Local File Inclusion author: dhiyaneshDK severity: high...

7.5CVSS7.8AI score0.08833EPSS
Exploits1References5
CNVD
CNVDadded 2016/10/20 12:0 a.m.2 views

Wordpress candidate-application-form plugin file download vulnerability

WordPress is a set of blogging platforms developed using the PHP language by the WordPress Software Foundation. candidate-application-form is one of the plugins used to add a candidate application form to a job opening. A file download vulnerability exists in version v1.0 of the Wordpress...

7.5CVSS6.8AI score0.08833EPSS
Exploits1References1
NVD
NVDadded 2016/10/06 2:59 p.m.8 views

CVE-2015-1000005

Remote file download vulnerability in candidate-application-form v1.0 wordpress plugin...

7.5CVSS7.6AI score0.08833EPSS
Exploits1References2
CVE
CVEadded 2016/10/06 2:0 p.m.52 views

CVE-2015-1000005

CVE-2015-1000005 affects the WordPress plugin Candidate Application Form (v1.0;

7.5CVSS7.6AI score0.08833EPSS
Exploits1References2Affected Software1
Patchstack
Patchstackadded 2015/08/10 12:0 a.m.10 views

WordPress Candidate Application Form Plugin 1.0 - Arbitrary File Download

Candidate Application Form plugin is prone to an arbitrary file download vulnerability via "downloadpdffile.php". It allows an attacker to download arbitrary files from the web server and get potentially sensitive information. Solution Update the plugin...

3.8AI score
Exploits0References1Affected Software1
exploitpack
exploitpackadded 2015/08/10 12:0 a.m.13 views

WordPress Plugin Candidate Application Form 1.0 - Arbitrary File Download

WordPress Plugin Candidate Application Form 1.0 - Arbitrary File Download Title: Remote file download vulnerability in candidate-application-form v1.0 wordpress plugin Author: Larry W. Cashdollar, @larry0 Date: 2015-07-12 Download Site: https://wordpress.org/plugins/candidate-application-form...

7.3AI score
Exploits0
Packet Storm
Packet Stormadded 2015/08/05 12:0 a.m.21 views

WordPress Candidate Application Form 1.0 File Download

Title: Remote file download vulnerability in candidate-application-form v1.0 wordpress plugin Author: Larry W. Cashdollar, @larry0 Date: 2015-07-12 Download Site: https://wordpress.org/plugins/candidate-application-form Vendor: https://profiles.wordpress.org/flaxlandsconsulting/ Vendor Notified:...

7.4AI score
Exploits0
WPVulnDB
WPVulnDBadded 2015/07/12 12:0 a.m.19 views

Candidate Application Form <= 1.3 - Unauthenticated Arbitrary File Download

Plugin is still affected and has been closed. The code in downloadpdffile.php does not do any sanity checks, allowing a remote attacker to download sensitive system files. PoC $ curl...

5CVSS1.8AI score0.08833EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder