Lucene search
K

14 matches found

securityvulns
securityvulns
added 2015/05/11 12:0 a.m.78 views

Arbitrary Variable Overwrite in eShop WordPress Plugin

Advisory ID: HTB23255 Product: eShop WordPress plugin Vendor: Rich Pedley Vulnerable Versions: 6.3.11 and probably prior Tested Version: 6.3.11 Advisory Publication: April 15, 2015 without technical details Vendor Notification: April 15, 2015 Public Disclosure: May 6, 2015 Vulnerability Type: Cod...

4.3CVSS0.2AI score0.01291EPSS
Exploits2
WPVulnDB
WPVulnDB
added 2015/04/14 12:0 a.m.14 views

Crayon Syntax Highlighter <= 2.6.10 - Local File Disclosure

The local file syntax highlighting feature of Crayon Syntax Highlighter doesn't check the path of the file to process. Also, by default, this feature is usable through public comments. This allows unauthenticated visitors to see the content of any file where the web server has read permissions,...

0.3AI score
Exploits0References1Affected Software1
exploitpack
exploitpack
added 2015/03/16 12:0 a.m.24 views

WordPress Plugin SEO by Yoast 1.7.3.3 - Blind SQL Injection

WordPress Plugin SEO by Yoast 1.7.3.3 - Blind SQL Injection Title: WordPress SEO by Yoast = 1.7.3.3 - Blind SQL Injection Version/s Tested: 1.7.3.3 Patched Version: 1.7.4 CVSSv2 Base Score: 9 AV:N/AC:L/Au:S/C:C/I:C/A:C/E:POC/RL:OF/RC:C CVSSv2 Temporal Score: 7...

8.6AI score
Exploits0
0day.today
0day.today
added 2015/03/14 12:0 a.m.29 views

WordPress SEO by Yoast 1.7.3.3 SQL Injection Vulnerability

WordPress SEO by Yoast plugin versions 1.7.3.3 and below suffer from a remote blind SQL injection vulnerability. Title: WordPress SEO by Yoast = 1.7.3.3 - Blind SQL Injection Version/s Tested: 1.7.3.3 Patched Version: 1.7.4 CVSSv2 Base Score: 9 AV:N/AC:L/Au:S/C:C/I:C/A:C/E:POC/RL:OF/RC:C CVSSv2...

8.1AI score
Exploits0
Packet Storm
Packet Storm
added 2014/12/17 12:0 a.m.85 views

Revive Adserver 3.0.5 Cross Site Scripting

Advisory ID: HTB23242 Product: Revive Adserver Vendor: http://www.revive-adserver.com/ Vulnerable Versions: 3.0.5 and probably prior Tested Version: 3.0.5 Advisory Publication: November 12, 2014 without technical details Vendor Notification: November 12, 2014 Vendor Patch: December 17, 2014 Publi...

4.3CVSS6.5AI score0.02309EPSS
Exploits3
securityvulns
securityvulns
added 2014/10/15 12:0 a.m.74 views

Avolve Software ProjectDox Multiple Vulnerability Disclosure

--------------------------------------------------------------------- Product: ProjectDox Vendor: Avolve Software Vulnerable Version: 8.1 Tested Version: 8.1 Vendor Notification: May 30, 2014 Public Disclosure: September 3, 2014 Vulnerability Type: Cross-Site Scripting CWE-79 CVE Reference:...

4.3CVSS0.2AI score0.02614EPSS
Exploits0
seebug.org
seebug.org
added 2014/09/29 12:0 a.m.44 views

webEdition 6.3.8.0 (SVN-Revision: 6985) - Path Traversal

No description provided by source. Advisory ID: HTB23227 Product: webEdition Vendor: webEdition e.V. Vulnerable Versions: 6.3.8.0 SVN-Revision: 6985 and probably prior Tested Version: 6.3.8.0 SVN-Revision: 6985 Advisory Publication: August 6, 2014 without technical details Vendor Notification:...

4CVSS6.5AI score0.19764EPSS
Exploits6
securityvulns
securityvulns
added 2014/01/09 12:0 a.m.55 views

Cross-Site Scripting &#40;XSS&#41; in Ad-minister Wordpress plugin

Advisory ID: HTB23187 Product: Ad-minister Wordpress plugin Vendor: henrikmelin, kalstrom Vulnerable Versions: 0.6 and probably prior Tested Version: 0.6 Advisory Publication: December 5, 2013 without technical details Vendor Notification: December 5, 2013 Public Disclosure: December 26, 2013...

4.3CVSS6.2AI score0.02023EPSS
Exploits4
exploitpack
exploitpack
added 2013/08/22 12:0 a.m.86 views

DeWeS 0.4.2 - Directory Traversal

DeWeS 0.4.2 - Directory Traversal Advisory ID: HTB23167 Product: DeWeS web server Twilight CMS Vendor: Strata Technologies LLC Vulnerable Versions: 0.4.2 and probably prior Tested Version: 0.4.2 Vendor Notification: July 24, 2013 Public Disclosure: August 21, 2013 Vulnerability Type: Path Travers...

5CVSS0.1AI score0.04111EPSS
Exploits5
Exploit DB
Exploit DB
added 2013/08/22 12:0 a.m.53 views

DeWeS 0.4.2 - Directory Traversal

Advisory ID: HTB23167 Product: DeWeS web server Twilight CMS Vendor: Strata Technologies LLC Vulnerable Versions: 0.4.2 and probably prior Tested Version: 0.4.2 Vendor Notification: July 24, 2013 Public Disclosure: August 21, 2013 Vulnerability Type: Path Traversal CWE-22 CVE Reference:...

5CVSS6.9AI score0.04111EPSS
Exploits5
Exploit DB
Exploit DB
added 2013/08/02 12:0 a.m.43 views

Cotonti 0.9.13 - SQL Injection

Advisory ID: HTB23164 Product: Cotonti Vendor: Cotonti Team Vulnerable Versions: 0.9.13 and probably prior Tested Version: 0.9.13 Vendor Notification: July 10, 2013 Vendor Patch: July 17, 2013 Public Disclosure: July 31, 2013 Vulnerability Type: SQL Injection CWE-89 CVE Reference: CVE-2013-4789...

7.5CVSS7AI score0.02624EPSS
Exploits5
Packet Storm
Packet Storm
added 2013/08/01 12:0 a.m.55 views

Cotonti 0.9.13 SQL Injection

Advisory ID: HTB23164 Product: Cotonti Vendor: Cotonti Team Vulnerable Versions: 0.9.13 and probably prior Tested Version: 0.9.13 Vendor Notification: July 10, 2013 Vendor Patch: July 17, 2013 Public Disclosure: July 31, 2013 Vulnerability Type: SQL Injection CWE-89 CVE Reference: CVE-2013-4789...

7.5CVSS0.02624EPSS
Exploits5
Packet Storm
Packet Storm
added 2013/03/27 12:0 a.m.63 views

McAfee Virtual Technician (MVT) 6.5.0.2101 Unsafe Active-X

Advisory ID: HTB23128 Product: McAfee Virtual Technician MVT 6.5.0.2101 Vendor: McAfee Vulnerable Versions: 6.5.0.2101 and probably prior Tested Version: 6.5.0.2101 on Windows 7 SP1 and Internet Explorer 9 Vendor Notification: November 19, 2012 Vendor Patch: March 15, 2013 Public Disclosure: Marc...

8.2CVSS6.5AI score0.05196EPSS
Exploits5
0day.today
0day.today
added 2013/01/10 12:0 a.m.70 views

Samsung Kies 2.5.0.12114_1 Buffer Overflow Vulnerability

Samsung Kies version 2.5.0.121141 suffers from a buffer overflow vulnerability. Product: Samsung Kies Vendor: Samsung Electronics Vulnerable Versions: 2.5.0.121141 Tested Version: 2.5.0.121141 on Windows 7 SP1 and Internet Explorer 9.0 Vendor Notification: December 19, 2012 Vendor Patch: December...

10CVSS7AI score0.1547EPSS
Exploits3
Rows per page
Query Builder