Lucene search
+L

154 matches found

Cvelist
Cvelist
added 2025/11/13 3:27 a.m.16 views

CVE-2025-12089 Data Tables Generator by Supsystic <= 1.10.45 - Authenticated (Admin+) Arbitrary File Deletion

The Data Tables Generator by Supsystic plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the cleanCache function in all versions up to, and including, 1.10.45. This makes it possible for authenticated attackers, with Administrator-level acce...

6.5CVSS0.00607EPSS
Exploits0References2
CVE
CVE
added 2025/11/13 3:27 a.m.22 views

CVE-2025-12089

The CVE-2025-12089 affects the WordPress plugin Data Tables Generator by Supsystic. Affected: plugin versions up to 1.10.45. Cause: insufficent file path validation in the cleanCache() function, enabling authenticated administrators to perform arbitrary file deletions on the server (e.g., wp-conf...

6.5CVSS6.9AI score0.00607EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/11/13 12:0 a.m.6 views

WordPress plugin Data Tables Generator by Supsystic 路径遍历漏洞

WordPress Data Tables Generator by Supsystic plugin is WordPress plugin for creating interactive tables and charts that support data visualization and dynamic content presentation. WordPress Data Tables Generator by Supsystic plugin has an arbitrary file deletion vulnerability that stems from...

6.5CVSS6.6AI score0.00607EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/11/13 12:0 a.m.13 views

PT-2025-46777

Name of the Vulnerable Software and Affected Versions Data Tables Generator by Supsystic plugin for WordPress versions through 1.10.45 Description The Data Tables Generator by Supsystic plugin for WordPress has a flaw that allows authenticated attackers with Administrator-level access or higher t...

6.5CVSS7.6AI score0.00607EPSS
Exploits0References5
Patchstack
Patchstack
added 2025/11/12 11:20 p.m.9 views

WordPress Data Tables Generator by Supsystic plugin <= 1.10.45 - Authenticated (Admin+) Arbitrary File Deletion vulnerability

Authenticated Admin+ Arbitrary File Deletion vulnerability discovered by Naoya Takahashi nakko in WordPress Plugin Data Tables Generator by Supsystic versions = 1.10.45...

6.5CVSS6.7AI score0.00607EPSS
Exploits0References1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2025/10/23 11:6 a.m.11 views

Security Bulletin: A Prototype Pollution vulnerability in jquery.dataTables affects IBM Tivoli Network Manager IP Edition (ITNM) (CVE-2020-28458)

Summary A Prototype Pollution vulnerability in jquery.dataTables was addressed in ITNM version 4.2 Fix Pack 23 4.2.0.23 Vulnerability Details CVEID:CVE-2020-28458 DESCRIPTION: All versions of package datatables.net are vulnerable to Prototype Pollution due to an incomplete fix for...

7.5CVSS6.6AI score0.0367EPSS
Exploits2Affected Software1
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2020-4392

Malware in sbrugna...

9.6CVSS9.3AI score0.00687EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.9 views

EUVD-2020-29385

Malware in sbrugna...

9.8CVSS9.5AI score0.01407EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-29387

Malware in sbrugna...

9.8CVSS9.5AI score0.01407EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2020-29386

Malware in sbrugna...

9.8CVSS9.5AI score0.01407EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2023-29022

Malicious code in bioql PyPI...

5CVSS8.6AI score0.00524EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-53051

Malicious code in bioql PyPI...

5.4CVSS8.7AI score0.00313EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-30615

Malicious code in bioql PyPI...

4.3CVSS6.4AI score0.00372EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/09/27 5:41 p.m.25 views

CVE-2025-11031

A flaw has been found in DataTables up to 1.10.13. The affected element is an unknown function of the file /examples/resources/examples.php. This manipulation of the argument src causes path traversal. It is possible to initiate the attack remotely. The exploit has been published and may be used...

6.9CVSS6.5AI score0.00781EPSS
Exploits1References1
NVD
NVD
added 2025/09/26 5:15 p.m.11 views

CVE-2025-11031

A flaw has been found in DataTables up to 1.10.13. The affected element is an unknown function of the file /examples/resources/examples.php. This manipulation of the argument src causes path traversal. It is possible to initiate the attack remotely. The exploit has been published and may be used...

6.9CVSS0.00781EPSS
Exploits1References7
CVE
CVE
added 2025/09/26 5:2 p.m.35 views

CVE-2025-11031

CVE-2025-11031 affects DataTables up to version 1.10.13. The issue stems from path traversal caused by manipulation of the src argument in an unknown function within /examples/resources/examples.php, which could be triggered remotely. An exploit has been published; upgrading to DataTables 1.10.15...

6.9CVSS5.3AI score0.00781EPSS
Exploits1References7Affected Software1
OSV
OSV
added 2025/06/26 10:15 a.m.7 views

CVE-2025-6212

The Ultra Addons for Contact Form 7 plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Database module in versions 3.5.11 to 3.5.19 due to insufficient input sanitization and output escaping. The unfiltered field names are stored alongside the sanitized values. Later, the...

6.1CVSS6AI score0.00257EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/05/23 10:20 a.m.16 views

CVE-2024-32829

Missing Authorization vulnerability in Supsystic Data Tables Generator by Supsystic.This issue affects Data Tables Generator by Supsystic: from n/a through 1.10.31...

4.3CVSS5.1AI score0.00372EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 9:10 a.m.6 views

CVE-2024-56253

Missing Authorization vulnerability in supsystic Data Tables Generator by Supsystic data-tables-generator-by-supsystic allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Data Tables Generator by Supsystic: from n/a through = 1.10.36...

5.4CVSS7.2AI score0.00313EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 8:17 a.m.5 views

CVE-2024-10744

A vulnerability was found in PHPGurukul Online Shopping Portal 2.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /admin/assets/plugins/DataTables/media/unittesting/templates/complexheader2.php. The manipulation of the argument scripts...

6.1CVSS5.2AI score0.00367EPSS
Exploits1References1
Rows per page
Query Builder