Lucene search
K

140 matches found

Wired Threat Level
Wired Threat Level
added 2025/08/11 10:0 a.m.3 views

Inside the Multimillion-Dollar Gray Market for Video Game Cheats

Gaming cheats are the bane of the video game industry—and a hot commodity. A recent study found that cheat creators are making a fortune from gamers looking to gain a quick edge...

7.5AI score
Exploits0
HackRead
HackRead
added 2025/06/05 5:31 p.m.10 views

Unsecured Database Exposes Data of 3.6 Million Passion.io Creators

A massive data leak has put the personal information of over 3.6 million app creators, influencers, and entrepreneurs…...

7.1AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 10:45 a.m.7 views

CVE-2024-52347

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in wpwebsitecreator Website remote Install vor Gravity, WPForms, Formidable, Ninja, Caldera wp-website-creator allows Stored XSS.This issue affects Website remote Install vor Gravity, WPForms,...

6.5CVSS7.3AI score0.00217EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:21 p.m.5 views

CVE-2022-39270

DiscoTOC is a Discourse theme component that generates a table of contents for topics. Users that can create topics in TOC-enabled categories and have sufficient trust level - configured in component's settings are able to inject arbitrary HTML on that topic's page. The issue has been fixed on th...

5.4CVSS5.6AI score0.00372EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:31 p.m.6 views

CVE-2022-2498

An issue in pipeline subscriptions in GitLab EE affecting all versions from 12.8 prior to 15.0.5, 15.1 prior to 15.1.4, and 15.2 prior to 15.2.1 triggered new pipelines with the person who created the tag as the pipeline creator instead of the subscription's author...

7.5CVSS6.4AI score0.00685EPSS
Exploits0References1
HackRead
HackRead
added 2024/12/16 12:9 p.m.8 views

Malware Hidden in Fake Business Proposals Hits YouTube Creators

Cybercriminals are targeting YouTube creators with sophisticated phishing attacks disguised as brand collaborations. Learn how to identify these scams, protect your data, and safeguard your online presence...

7.3AI score
Exploits0
CVE
CVE
added 2024/12/13 2:23 p.m.45 views

CVE-2023-36531

CVE-2023-36531 concerns the WordPress plugin LiquidPoll – Advanced Polls for Creators and Brands (WP-Poll) with versions

4.3CVSS8.5AI score0.01026EPSS
Exploits1References1
RedHat Linux
RedHat Linux
added 2024/08/29 8:58 a.m.5 views

postgresql: PostgreSQL relation replacement during pg_dump executes arbitrary SQL

A vulnerability was found in PostgreSQL. A Race condition in pgdump allows an object creator to execute arbitrary SQL functions as the user running pgdump, which is often a superuser...

8.8CVSS7.5AI score0.01565EPSS
Exploits0References5
CVE
CVE
added 2024/08/01 9:48 p.m.47 views

CVE-2024-39655

LiquidPoll – Advanced Polls for Creators and Brands (WP plugin) contains an unauthenticated XSS in versions up to 3.3.77; the issue is caused by improper neutralization of input during web page generation. Publicly documented impact is cross-site scripting, affecting affected sites that run the p...

6.5CVSS6.6AI score0.0036EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/08/01 12:0 a.m.7 views

WordPress LiquidPoll – Advanced Polls for Creators and Brands Plugin <= 3.3.77 is vulnerable to Cross Site Scripting (XSS)

Software LiquidPoll – Advanced Polls for Creators and Brands Type Plugin Vulnerable versions = 3.3.77 Fixed in 3.3.78 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-39655 Patch priority Medium CVSS severity Medium 6.5 Developer Claim ownership PSID a190a4c0c44f...

6.5CVSS6.6AI score0.0036EPSS
Exploits0References1Affected Software1
OSSF Malicious Packages
OSSF Malicious Packages
added 2024/06/25 12:39 p.m.1 views

Malicious code in down_load_epub_creators_take_control_mdnbf4 (npm)

--- -= Per source details. Do not edit below this line.=-...

7AI score
Exploits0
NVD
NVD
added 2024/05/14 3:38 p.m.26 views

CVE-2024-34418

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Tech9logy Creators WPCS WordPress Custom Search allows Stored XSS.This issue affects WPCS WordPress Custom Search : from n/a through 1.1...

5.9CVSS6.1AI score0.00446EPSS
Exploits0References1
CVE
CVE
added 2024/05/09 11:32 a.m.24 views

CVE-2024-34418

CVE-2024-34418 concerns Tech9logy Creators WPCS (WordPress Custom Search). The issue is a Stored XSS caused by improper neutralization of input during web page generation. Affects WPCS versions from not specified (n/a) up to 1.1. The connected Red Hat entry repeats the same description. Public de...

5.9CVSS5.2AI score0.00446EPSS
Exploits0References1
HackRead
HackRead
added 2024/04/04 7:21 p.m.13 views

New Latrodectus Downloader Malware Linked to IcedID and Qbot Creators

By Waqas Another day, another malware threat! This is a post from HackRead.com Read the original post: New Latrodectus Downloader Malware Linked to IcedID and Qbot Creators...

7.2AI score
Exploits0
Patchstack
Patchstack
added 2024/03/21 12:0 a.m.6 views

WordPress LiquidPoll – Advanced Polls for Creators and Brands Plugin <= 3.3.76 is vulnerable to Sensitive Data Exposure

Software LiquidPoll – Advanced Polls for Creators and Brands Type Plugin Vulnerable versions = 3.3.76 Fixed in 3.3.77 OWASP Top 10 A3: Sensitive Data Exposure Classification Sensitive Data Exposure CVE CVE-2024-2080 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID...

4.3CVSS6.9AI score0.00398EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2024/03/14 12:0 a.m.3 views

Plv8 Code Issues Vulnerabilities

Plv8 is a shared library that provides the PostgreSQL procedural language supported by the V8 Javascript engine. A security vulnerability exists in Plv8 version 3.2.1, which originates from the ability of a user who creates objects in the database to execute delayed triggers as a superuser during...

7.2CVSS6.9AI score0.00548EPSS
Exploits1References3
Wired Threat Level
Wired Threat Level
added 2024/03/11 7:0 a.m.20 views

Google Is Getting Thousands of Deepfake Porn Complaints

Content creators are using copyright laws to get nonconsensual deepfakes removed from the web. With the complaints covering nearly 30,000 URLs, experts say Google should do more to help...

7.3AI score
Exploits0
Code423n4
Code423n4
added 2023/12/21 12:0 a.m.9 views

Incomplete Creator Rewards in Auction Settlement

Lines of code Vulnerability details Summary During the settlement of auctions in the AuctionHouse, the proceeds meant for creators are not accurately distributed, leading to potential loss of funds for the creators. Vulnerability Details In the process of settling auctions...

7.1AI score
Exploits0
Code423n4
Code423n4
added 2023/12/21 12:0 a.m.8 views

Two items having same number of votes above the quorum can lead to invariant violation and unfairness towards either of the item

Lines of code Vulnerability details Impact When an item is dropped or extracted from the maxHeap tree, it is directly done so from the item at the root of the tree i.e. index 0. Although this is expected, if one of the child itemIds have number of votes equal to that of the root node, this would ...

7AI score
Exploits0
Code423n4
Code423n4
added 2023/12/21 12:0 a.m.10 views

CultureIndex.sol#_vote() - Creators of certain piece can vote for their piece

Lines of code Vulnerability details Impact In CultureIndex there is a function vote that allows users to vote for a piece to get sold on the auction house. Each piece has creators that get cut of the sale. The problem is that there is no checks if the user voting for a certain piece is it's own...

6.9AI score
Exploits0
Rows per page
Query Builder