Lucene search
+L

5 matches found

Patchstack
Patchstack
added 2023/07/24 12:0 a.m.12 views

WordPress what3words Address Field Plugin <= 4.0.0 is vulnerable to Sensitive Data Exposure

Software what3words Address Field Type Plugin Vulnerable versions = 4.0.0 Fixed in 4.0.1 OWASP Top 10 A3: Sensitive Data Exposure Classification Sensitive Data Exposure CVE CVE-2021-4428 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 74821fc68e46 Credits Unknown Required...

7.5CVSS6.4AI score0.15808EPSS
Exploits2References3Affected Software1
NVD
NVD
added 2023/07/18 5:15 p.m.20 views

CVE-2021-4428

A vulnerability has been found in what3words Autosuggest Plugin up to 4.0.0 on WordPress and classified as problematic. Affected by this vulnerability is the function enqueuescripts of the file w3w-autosuggest/public/class-w3w-autosuggest-public.php of the component Setting Handler. The...

7.5CVSS0.15808EPSS
Exploits2References5
CVE
CVE
added 2023/07/18 5:0 p.m.103 views

CVE-2021-4428

CVE-2021-4428 affects the what3words Autosuggest Plugin for WordPress up to version 4.0.0. The vulnerability is in the enqueue_scripts function of w3w-autosuggest/public/class-w3w-autosuggest-public.php (Setting Handler component) and can lead to information disclosure via remote exploitation. Up...

7.5CVSS5.3AI score0.15808EPSS
Exploits2References5Affected Software1
Circl
Circl
added 2021/12/17 6:39 a.m.22 views

CVE-2021-4428

creationtimestamp| type| source ---|---|--- 2021-12-17 06:39:43+00:00| exploited| https://t.me/GithubRedTeam/1128 2021-12-17 11:48:01+00:00| published-proof-of-concept| https://t.me/BlueRedTeam/1518 2021-12-21 09:17:55+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/1195 2021-12-21...

7.5CVSS4.9AI score0.15808EPSS
Exploits2References9
Gitee
Gitee
added 2021/12/12 9:5 p.m.13 views

Exploit for Deserialization of Untrusted Data in Siemens 6Bk1602-0Aa12-0Tp0_Firmware

CVE-2021-4428 复现 本DEMO是针对Log4j2 超高危RCE漏洞CVE-2021-4428的复现DEMO,目的是认识该漏洞的危害性并根据您系统的情况做出针对性的防御。 警告 本DEMO只是针对技术层面的研究,不涉及恶意远程计算机侵入方面的相关脚本。请勿利用漏洞进行非法侵入他人计算机的违法活动。否则您将可能承担以下侵权责任: 1. 根据《中华人民共和国治安管理处罚法》第二十九条 对违反国家规定,侵入计算机信息系统,造成危害的,处五日以下拘留;情节较重的,处五日以上十日以下拘留。 2...

10CVSS8.6AI score0.99999EPSS
Exploits355
Rows per page
Query Builder