Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

Positive Technologies
Positive Technologiesadded 2025/06/20 12:0 a.m.2 views

PT-2025-26504 · Ibm · Ibm Infosphere Information Server

Name of the Vulnerable Software and Affected Versions: IBM InfoSphere Information Server versions 11.7.0.0 through 11.7.1.6 Description: The issue allows an authenticated user to delete another user's comments due to improper ownership management. Recommendations: For versions 11.7.0.0 through...

4.3CVSS6.2AI score0.00139EPSS
Exploits0References8
RedhatCVE
RedhatCVEadded 2025/05/22 10:24 p.m.4 views

CVE-2022-21683

Wagtail is a Django based content management system focused on flexibility and user experience. When notifications for new replies in comment threads are sent, they are sent to all users who have replied or commented anywhere on the site, rather than only in the relevant threads. This means that ...

4.3CVSS6.7AI score0.00231EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/22 5:38 p.m.11 views

CVE-2020-10461

The way comments in article.php vulnerable function in include/functions-article.php are handled in Chadha PHPKB Standard Multi-Language 9 allows attackers to execute Stored Blind XSS injecting arbitrary web script or HTML in admin/manage-comments.php, via the GET parameter cmt...

6.1CVSS6.1AI score0.00328EPSS
Exploits1References1
CNVD
CNVDadded 2019/08/27 12:0 a.m.1 views

WordPress feature-comments plugin cross-site request forgery vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. feature-comments is a comment management plugin used in it. A cross-site request forgery vulnerability exists in the WordPress...

4.3CVSS6.7AI score0.00103EPSS
Exploits0References1
myhack58
myhack58added 2015/04/02 12:0 a.m.12 views

Qi Bo CMS variable overwrite vulnerability exp-vulnerability warning-the black bar safety net

Vulnerability of specific analysis in the http://security.alibaba.com/blog/blog.htm?spm=0.0.0.0.AooULy&id=1 3, The following published what I wrote of the exploits and exp. Use the following steps: (1)The first visit/member below the“comment management”function, the capture (2)in the http request...

0.4AI score
Exploits0
exploitpack
exploitpackadded 2010/04/21 12:0 a.m.16 views

wb news (webmobo) 2.3.3 - Persistent Cross-Site Scripting

wb news webmobo 2.3.3 - Persistent Cross-Site Scripting Title: WB News Webmobo 2.3.3 Stored XSS Vendor: http://www.webmobo.org/ AUTHOR: ITSecTeam Email: [email protected] Website: http://www.itsecteam.com Forum : http://forum.ITSecTeam.com Original Advisory:...

6.8AI score
Exploits0
Rows per page
Query Builder