Lucene search
K

13 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-15742

Malicious code in bioql PyPI...

6.1CVSS6.3AI score0.00788EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:17 p.m.7 views

CVE-2022-0648

The Team Circle Image Slider With Lightbox WordPress plugin before 1.0.16 does not sanitize and escape the orderpos parameter before outputting it back in an admin page, leading to a Reflected Cross-Site Scripting...

6.1CVSS6.5AI score0.00788EPSS
Exploits2References1
Cvelist
Cvelist
added 2025/04/08 7:1 a.m.18 views

CVE-2019-25223 Team Circle Image Slider With Lightbox <= 1.0.4 - Authenticated (Admin+) SQL Injection

The Team Circle Image Slider With Lightbox plugin for WordPress is vulnerable to SQL Injection via the 'id' parameter in all versions up to, and including, 1.0.4 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it...

4.9CVSS0.00363EPSS
Exploits0References3
CVE
CVE
added 2025/04/08 7:1 a.m.49 views

CVE-2019-25223

CVE-2019-25223 affects the WordPress plugin “Team Circle Image Slider With Lightbox.” The Wordfence vulnerability entry confirms an SQL Injection via the parameter id in all versions up to 1.0.4, caused by insufficient escaping and lack of proper prepared statements. Impact per the CVSS metrics i...

4.9CVSS7.5AI score0.00363EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/04/08 7:1 a.m.3 views

CVE-2019-25223 Team Circle Image Slider With Lightbox <= 1.0.4 - Authenticated (Admin+) SQL Injection

The Team Circle Image Slider With Lightbox plugin for WordPress is vulnerable to SQL Injection via the 'id' parameter in all versions up to, and including, 1.0.4 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it...

4.9CVSS7.5AI score0.00363EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/03/13 12:0 a.m.4 views

WordPress Plugin Team Circle Image Slider With Lightbox Security Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed in the PHP language that supports personal blogs on PHP and MySQL servers.WordPress plugin is an application...

5.3CVSS6.6AI score0.00202EPSS
Exploits0References3
Patchstack
Patchstack
added 2024/03/13 12:0 a.m.17 views

WordPress Team Circle Image Slider With Lightbox Plugin <= 1.0 is vulnerable to Cross Site Request Forgery (CSRF)

Software Team Circle Image Slider With Lightbox Type Plugin Vulnerable versions = 1.0 Fixed in 1.0.1 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2015-10130 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 4e4875511ed9 Credit...

5.3CVSS6.6AI score0.00202EPSS
Exploits0References3Affected Software1
ATTACKERKB
ATTACKERKB
added 2023/06/09 6:16 a.m.4 views

CVE-2023-2604

The Team Circle Image Slider With Lightbox plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘searchterm’ parameter in versions up to, and including, 1.0.17 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers ...

6.1CVSS7.4AI score0.00433EPSS
Exploits0References3
NVD
NVD
added 2023/06/09 6:16 a.m.19 views

CVE-2023-2604

The Team Circle Image Slider With Lightbox plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘searchterm’ parameter in versions up to, and including, 1.0.17 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers ...

6.1CVSS6AI score0.00433EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/06/09 5:33 a.m.29 views

CVE-2023-2604 Team Circle Image Slider With Lightbox <= 1.0.17 - Reflected Cross-Site Scripting

The Team Circle Image Slider With Lightbox plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘searchterm’ parameter in versions up to, and including, 1.0.17 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers ...

6.1CVSS6.2AI score0.00433EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/03/14 3:15 p.m.8 views

CVE-2022-0648

The Team Circle Image Slider With Lightbox WordPress plugin before 1.0.16 does not sanitize and escape the orderpos parameter before outputting it back in an admin page, leading to a Reflected Cross-Site Scripting...

6.1CVSS6.3AI score0.00788EPSS
Exploits2References2
CNNVD
CNNVD
added 2022/03/14 12:0 a.m.3 views

WordPress plugin 跨站脚本漏洞

WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language. The platform supports setting up personal blogging sites on PHP and MySQL servers. WordPress plugin is a WordPress open source application plugin. WordPress Team Circle Image Slider With Lightbox...

6.1CVSS5.7AI score0.00788EPSS
Exploits2References2
Patchstack
Patchstack
added 2022/02/21 12:0 a.m.25 views

WordPress Team Circle Image Slider With Lightbox plugin <= 1.0.15 - Reflected Cross-Site Scripting (XSS) vulnerability

Reflected Cross-Site Scripting XSS vulnerability discovered by Ran Crane in WordPress Team Circle Image Slider With Lightbox plugin versions = 1.0.15. Solution Update the WordPress Team Circle Image Slider With Lightbox plugin to the latest available version at least 1.0.16...

6.1CVSS1.7AI score0.00788EPSS
Exploits2References3Affected Software1
Rows per page
Query Builder