Lucene search
K

493 matches found

Cvelist
Cvelist
added 2023/11/06 8:2 a.m.27 views

CVE-2023-38382 WordPress Subscribe to Category Plugin <= 2.7.4 is vulnerable to SQL Injection

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Daniel Söderström / Sidney van de Stouwe Subscribe to Category allows SQL Injection.This issue affects Subscribe to Category: from n/a through 2.7.4...

9.9AI score0.00585EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2023/11/06 8:2 a.m.13 views

CVE-2023-38382 WordPress Subscribe to Category Plugin <= 2.7.4 is vulnerable to SQL Injection

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Daniel Söderström / Sidney van de Stouwe Subscribe to Category allows SQL Injection.This issue affects Subscribe to Category: from n/a through 2.7.4...

8.9AI score0.00585EPSS
Exploits1References1
Openbugbounty
Openbugbounty
added 2023/10/31 5:13 p.m.9 views

daniel-ross.de Improper Access Control vulnerability OBB-3770294

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.9AI score
Exploits0
GithubExploit
GithubExploit
added 2023/09/07 1:47 p.m.429 views

Exploit for OS Command Injection in Opentsdb

opentsdbkeycmdinjection An exploit for OpenTSDB -l -p -...

9.8CVSS9.6AI score0.8533EPSS
Exploits8
0day.today
0day.today
added 2023/09/04 12:0 a.m.303 views

CSZ CMS 1.3.0 - Stored Cross-Site Scripting (Photo URL and YouTube URL) Vulnerability

Exploit Title: CSZ CMS 1.3.0 - Stored Cross-Site Scripting 'Photo URL' and 'YouTube URL' CVE: CVE-2023-38910 Exploit Author: Daniel González Vendor Homepage: https://www.cszcms.com/ Software Link: https://github.com/cskaza/cszcms Version: 1.3.0 Tested on: CSZ CMS 1.3.0 Description: CSZ CMS 1.3.0 ...

6.1CVSS7.1AI score0.00436EPSS
Exploits4
0day.today
0day.today
added 2023/09/04 12:0 a.m.194 views

CSZ CMS 1.3.0 - Stored Cross-Site Scripting (Plugin Gallery) Vulnerability

Exploit Title: CSZ CMS 1.3.0 - Stored Cross-Site Scripting Plugin 'Gallery' CVE: CVE-2023-38911 Exploit Author: Daniel González Vendor Homepage: https://www.cszcms.com/ Software Link: https://github.com/cskaza/cszcms Version: 1.3.0 Tested on: CSZ CMS 1.3.0 Description: CSZ CMS 1.3.0 is affected b...

5.4CVSS7.1AI score0.00468EPSS
Exploits4
Exploit DB
Exploit DB
added 2023/09/04 12:0 a.m.374 views

CSZ CMS 1.3.0 - Stored Cross-Site Scripting (Plugin &#039;Gallery&#039;)

Exploit Title: CSZ CMS 1.3.0 - Stored Cross-Site Scripting Plugin 'Gallery' Date: 2023/08/18 CVE: CVE-2023-38911 Exploit Author: Daniel González Vendor Homepage: https://www.cszcms.com/ Software Link: https://github.com/cskaza/cszcms Version: 1.3.0 Tested on: CSZ CMS 1.3.0 Description: CSZ CMS...

5.4CVSS5.8AI score0.00468EPSS
Exploits4
Spring Security Advisories
Spring Security Advisories
added 2023/08/31 12:0 a.m.11 views

A Bootiful Podcast: Spring Security and Kubernetes legend Daniel Garnier-Moiroux

Hi, Spring fans! In this installment Josh Long talks to Spring contributor and adjunct professor at Mines Paris, Daniel Garnier-Moiroux @kehrlann, about the wild and wonderful intersection of all things Spring Security and Kubernetes, productized Spring Cloud Services, and more, recorded live at...

6.9AI score
Exploits0
OSV
OSV
added 2023/08/18 4:15 p.m.2 views

CVE-2023-32130

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Daniel Powney Multi Rating plugin = 5.0.6 versions...

4.8CVSS5.8AI score0.00369EPSS
Exploits0References1
NVD
NVD
added 2023/08/18 4:15 p.m.20 views

CVE-2023-32130

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Daniel Powney Multi Rating plugin = 5.0.6 versions...

5.9CVSS5.4AI score0.00369EPSS
Exploits0References1
Prion
Prion
added 2023/08/18 4:15 p.m.13 views

Cross site scripting

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Daniel Powney Multi Rating plugin = 5.0.6 versions...

4.3CVSS4.8AI score0.00369EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/08/18 3:5 p.m.19 views

CVE-2023-32130 WordPress Multi Rating Plugin <= 5.0.6 is vulnerable to Cross Site Scripting (XSS)

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Daniel Powney Multi Rating plugin = 5.0.6 versions...

5.9CVSS5.5AI score0.00369EPSS
Exploits0References1
CVE
CVE
added 2023/08/18 3:5 p.m.39 views

CVE-2023-32130

CVE-2023-32130 affects WordPress Multi Rating Plugin prior to or at version 5.0.6. It is a Stored Cross-Site Scripting (XSS) vulnerability in the plugin’s settings exposed to authenticated administrators. The CVSS vectors in the initial entry show a low-to-medium base impact with user interaction...

5.9CVSS5AI score0.00369EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2023/05/26 3:15 p.m.18 views

CVE-2023-25467

Cross-Site Request Forgery CSRF vulnerability in Daniel Mores, A. Huizinga Resize at Upload Plus plugin = 1.3 versions...

8.8CVSS6.5AI score0.00248EPSS
Exploits0References1
OSV
OSV
added 2023/05/26 3:15 p.m.5 views

CVE-2023-25467

Cross-Site Request Forgery CSRF vulnerability in Daniel Mores, A. Huizinga Resize at Upload Plus plugin = 1.3 versions...

8.8CVSS7.3AI score0.00248EPSS
Exploits0References1
Prion
Prion
added 2023/05/26 3:15 p.m.14 views

Cross site request forgery (csrf)

Cross-Site Request Forgery CSRF vulnerability in Daniel Mores, A. Huizinga Resize at Upload Plus plugin = 1.3 versions...

6.8CVSS8.7AI score0.00248EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/05/26 2:2 p.m.47 views

CVE-2023-25467

CVE-2023-25467 concerns a CSRF vulnerability in the WordPress plugin Resize at Upload Plus, affecting versions ≤ 1.3. The root cause is a Cross-Site Request Forgery condition that can be triggered by an unauthenticated attacker, potentially compromising actions within the vulnerable plugin. Publi...

8.8CVSS7.1AI score0.00248EPSS
Exploits0References1Affected Software1
Openbugbounty
Openbugbounty
added 2023/05/23 5:33 p.m.18 views

daniel-bintener.com Cross Site Scripting vulnerability OBB-3360261

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.1AI score
Exploits0
OSV
OSV
added 2023/03/29 1:15 p.m.3 views

CVE-2022-47433

Unauth. Reflected Cross-Site Scripting vulnerability in Daniel Powney Multi Rating plugin = 5.0.5 versions...

6.1CVSS5.8AI score0.00382EPSS
Exploits0References1
NVD
NVD
added 2023/03/29 1:15 p.m.23 views

CVE-2022-47433

Unauth. Reflected Cross-Site Scripting vulnerability in Daniel Powney Multi Rating plugin = 5.0.5 versions...

7.1CVSS6.5AI score0.00382EPSS
Exploits0References1
Rows per page
Query Builder