Lucene search
K

144 matches found

patchstack
patchstack
added 2024/08/26 1:27 p.m.8 views

WordPress WP Armour Extended plugin <= 1.26 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by Dave Jong Patchstack in WordPress Plugin WP Armour Extended versions = 1.26...

7.1CVSS6.1AI score0.0029EPSS
Exploits0Affected Software1
patchstack
patchstack
added 2024/08/26 12:32 p.m.6 views

WordPress Greenshift Woocommerce Addon plugin < 1.9.8 - Subscriber+ SQL Injection vulnerability

Subscriber+ SQL Injection vulnerability discovered by Dave Jong Patchstack in WordPress Plugin Greenshift Woocommerce Addon versions 1.9.8...

8.8CVSS8.1AI score0.00441EPSS
Exploits0Affected Software1
patchstack
patchstack
added 2024/08/26 12:30 p.m.6 views

WordPress Greenshift Query and Meta Addon plugin < 3.9.2 - Subscriber+ SQL Injection vulnerability

Subscriber+ SQL Injection vulnerability discovered by Dave Jong Patchstack in WordPress Plugin Greenshift Query and Meta Addon versions 3.9.2...

8.8CVSS8.1AI score0.00441EPSS
Exploits0Affected Software1
patchstack
patchstack
added 2024/08/22 12:0 a.m.25 views

WordPress WBW Product Table PRO Plugin <= 1.9.4 is vulnerable to SQL Injection

Software WBW Product Table PRO Type Plugin Vulnerable versions = 1.9.4 Fixed in 1.9.5 OWASP Top 10 A3: Injection Classification SQL Injection CVE CVE-2024-43918 Patch priority High CVSS severity High 10 Developer Claim ownership PSID 2c9d3f09a102 Credits Dave Jong Patchstack Required privilege...

10CVSS6.8AI score0.01486EPSS
Exploits1References1Affected Software1
patchstack
patchstack
added 2024/08/12 1:16 p.m.6 views

WordPress Leopard plugin <= 2.0.36 - Subscriber+ Sensitive Data Exposure vulnerability

Subscriber+ Sensitive Data Exposure vulnerability discovered by Dave Jong Patchstack in WordPress Plugin Leopard - WordPress offload media versions = 2.0.36...

6.5CVSS7AI score0.00418EPSS
Exploits0Affected Software1
patchstack
patchstack
added 2024/08/12 12:39 p.m.5 views

WordPress Bit Form Pro plugin <= 2.6.4 - Authenticated Sensitive Data Exposure vulnerability

Authenticated Sensitive Data Exposure vulnerability discovered by Dave Jong Patchstack in WordPress Plugin Bit Form Pro versions = 2.6.4...

6.5CVSS7AI score0.00418EPSS
Exploits0Affected Software1
patchstack
patchstack
added 2024/08/12 12:36 p.m.4 views

WordPress Bit Form Pro plugin <= 2.6.4 - Authenticated Arbitrary File Upload vulnerability

Authenticated Arbitrary File Upload vulnerability discovered by Dave Jong Patchstack in WordPress Plugin Bit Form Pro versions = 2.6.4...

9.9CVSS7AI score0.01049EPSS
Exploits0Affected Software1
patchstack
patchstack
added 2024/08/12 12:35 p.m.5 views

WordPress Bit Form Pro plugin <= 2.6.4 - Unauthenticated Arbitrary File Deletion vulnerability

Unauthenticated Arbitrary File Deletion vulnerability discovered by Dave Jong Patchstack in WordPress Plugin Bit Form Pro versions = 2.6.4...

9.1CVSS7AI score0.0059EPSS
Exploits0Affected Software1
patchstack
patchstack
added 2024/08/12 12:16 p.m.6 views

WordPress WHMpress plugin <= 6.2-revision-5 - Subscriber+ Arbitrary Settings Change vulnerability

Subscriber+ Arbitrary Settings Change vulnerability discovered by Dave Jong Patchstack in WordPress Plugin WHMpress versions = 6.2-revision-5...

8.8CVSS7AI score0.00444EPSS
Exploits0Affected Software1
patchstack
patchstack
added 2024/08/12 12:14 p.m.8 views

WordPress WHMpress plugin <= 6.2-revision-5 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by Dave Jong Patchstack in WordPress Plugin WHMpress versions = 6.2-revision-5...

7.1CVSS6.1AI score0.00255EPSS
Exploits0Affected Software1
patchstack
patchstack
added 2024/08/07 10:32 a.m.6 views

WordPress Docket (WooCommerce Collections / Wishlist / Watchlist) plugin <= 1.6.6 - Unauthenticated SQL Injection vulnerability

Unauthenticated SQL Injection vulnerability discovered by Dave Jong Patchstack in WordPress Plugin Docket WooCommerce Collections / Wishlist / Watchlist versions 1.7.0...

9.8CVSS8.1AI score0.00534EPSS
Exploits0Affected Software1
patchstack
patchstack
added 2024/07/11 12:38 p.m.7 views

WordPress Uncanny Automator Pro plugin <= 5.3 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by Dave Jong Patchstack in WordPress Plugin Uncanny Automator Pro versions = 5.3...

7.1CVSS6.1AI score0.00327EPSS
Exploits0Affected Software1
patchstack
patchstack
added 2024/07/10 8:24 a.m.5 views

WordPress BerqWP plugin <= 1.7.5 - Unauthenticated Non-Blind Server Side Request Forgery (SSRF) vulnerability

Unauthenticated Non-Blind Server Side Request Forgery SSRF vulnerability discovered by Dave Jong Patchstack in WordPress Plugin BerqWP versions = 1.7.5...

7.2CVSS7AI score0.00303EPSS
Exploits0Affected Software1
patchstack
patchstack
added 2024/07/09 5:3 p.m.8 views

WordPress Seraphinite Accelerator (Full, premium) plugin <= 2.21.13 - CSRF Leading to Arbitrary File Deletion vulnerability

CSRF Leading to Arbitrary File Deletion vulnerability discovered by Dave Jong Patchstack in WordPress Plugin Seraphinite Accelerator Full, premium versions = 2.21.13...

7.4CVSS7AI score0.00228EPSS
Exploits0Affected Software1
patchstack
patchstack
added 2024/07/09 2:8 p.m.6 views

WordPress User Activity Log Pro plugin <= 2.3.4 - Subscriber+ Multiple Broken Access Control vulnerability

Subscriber+ Multiple Broken Access Control vulnerability discovered by Dave Jong Patchstack in WordPress Plugin User Activity Log Pro versions = 2.3.4...

6.3CVSS7AI score0.00336EPSS
Exploits0Affected Software1
patchstack
patchstack
added 2024/07/09 1:26 p.m.4 views

WordPress BuddyBoss Theme theme <= 2.4.61 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Dave Jong Patchstack in WordPress Theme BuddyBoss Theme versions = 2.4.61...

5.4CVSS7AI score0.00171EPSS
Exploits0Affected Software1
patchstack
patchstack
added 2024/07/09 12:0 a.m.13 views

WordPress Woocommerce OpenPos Plugin <= 7.0.1 is vulnerable to Broken Access Control

Software Woocommerce OpenPos Type Plugin Vulnerable versions = 7.0.1 Fixed in 7.0.2 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-37935 Patch priority High CVSS severity High 7.5 Developer Claim ownership PSID d6898ddc425e Credits Dave Jong Patchstack...

7.5CVSS6.5AI score0.00423EPSS
Exploits0References1Affected Software1
patchstack
patchstack
added 2024/07/04 12:9 p.m.7 views

WordPress BookYourTravel theme <= 8.18.17 - Subscriber+ Privilege Escalation vulnerability

Subscriber+ Privilege Escalation vulnerability discovered by Dave Jong Patchstack in WordPress Theme BookYourTravel versions = 8.18.17...

8.8CVSS7AI score0.00443EPSS
Exploits0Affected Software1
patchstack
patchstack
added 2024/06/28 1:10 p.m.5 views

WordPress Uncanny Toolkit Pro for LearnDash plugin < 4.1.4.1 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by Dave Jong Patchstack in WordPress Plugin Uncanny Toolkit Pro for LearnDash versions 4.1.4.1...

7.1CVSS6.1AI score0.00271EPSS
Exploits0Affected Software1
patchstack
patchstack
added 2024/06/28 12:37 p.m.7 views

WordPress Uncanny Automator Pro plugin < 5.3.0.1 - Unauthenticated License Settings Reset vulnerability

Unauthenticated License Settings Reset vulnerability discovered by Dave Jong Patchstack in WordPress Plugin Uncanny Automator Pro versions 5.3.0.1...

9.8CVSS7AI score0.00532EPSS
Exploits0Affected Software1
Rows per page
Query Builder