Lucene search
K

57 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-11637

Malware in sbrugna...

4.3CVSS4.9AI score0.00487EPSS
Exploits2References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2025-5629

Malicious code in bioql PyPI...

7.5CVSS9.2AI score0.00406EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-28374

Malicious code in bioql PyPI...

8.8CVSS8.9AI score0.00617EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/06/21 12:0 a.m.5 views

IBM InfoSphere Information Server 安全漏洞

IBM InfoSphere Information Server is a set of data integration platforms from International Business Machines IBM. The platform can be used to integrate data information obtained from various sources. A security vulnerability exists in IBM InfoSphere Information Server versions 11.7.0.0 through...

4.3CVSS6AI score0.00187EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 9:4 p.m.9 views

CVE-2021-24725

The Comment Link Remove and Other Comment Tools WordPress plugin before 2.1.6 does not have CSRF check in its 'Delete comments easily', which could allow attackers to make logged in admin delete arbitrary comments...

4.3CVSS6.9AI score0.00487EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/05/22 5:2 p.m.8 views

CVE-2020-36505

The Delete All Comments Easily WordPress plugin through 1.3 is lacking Cross-Site Request Forgery CSRF checks, which could result in an unauthenticated attacker making a logged in admin delete all comments from the blog...

6.5CVSS7AI score0.00601EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/03/05 3:15 p.m.8 views

CVE-2025-25130

Relative Path Traversal vulnerability in Shah Alom Delete Comments By Status delete-comments-by-status allows Path Traversal.This issue affects Delete Comments By Status: from n/a through = 2.1.1...

7.5CVSS7.2AI score0.00406EPSS
Exploits0References1
NVD
NVD
added 2025/03/03 2:15 p.m.4 views

CVE-2025-25130

Relative Path Traversal vulnerability in Shah Alom Delete Comments By Status delete-comments-by-status allows Path Traversal.This issue affects Delete Comments By Status: from n/a through = 2.1.1...

7.5CVSS0.00406EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/03/03 1:30 p.m.3 views

CVE-2025-25130 WordPress Delete Comments By Status plugin <= 1.5.3 - Local File Inclusion vulnerability

Relative Path Traversal vulnerability in NotFound Delete Comments By Status allows PHP Local File Inclusion. This issue affects Delete Comments By Status: from n/a through 2.1.1...

7.5CVSS7.8AI score0.00406EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/03/03 1:30 p.m.15 views

CVE-2025-25130 WordPress Delete Comments By Status plugin <= 1.5.3 - Local File Inclusion vulnerability

Relative Path Traversal vulnerability in Shah Alom Delete Comments By Status delete-comments-by-status allows Path Traversal.This issue affects Delete Comments By Status: from n/a through = 2.1.1...

7.5CVSS0.00406EPSS
Exploits0References1
CVE
CVE
added 2025/03/03 1:30 p.m.49 views

CVE-2025-25130

CVE-2025-25130 corresponds to a Relative Path Traversal that enables unauthenticated PHP Local File Inclusion in the WordPress plugin Delete Comments By Status (affected: Delete Comments By Status, versions

7.5CVSS7.2AI score0.00406EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/02/02 4:8 p.m.3 views

WordPress Delete Comments By Status plugin <= 1.5.3 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Dimas Maulana in WordPress Plugin Delete Comments By Status versions = 2.1.1...

7.5CVSS7AI score0.00406EPSS
Exploits0Affected Software1
Positive Technologies
Positive Technologies
added 2024/08/29 12:0 a.m.8 views

PT-2024-37150 · WordPress · Tutor Lms Pro

Name of the Vulnerable Software and Affected Versions: The Tutor LMS Pro plugin for WordPress versions up to, and including, 2.7.2 Description: The issue allows authenticated attackers with subscriber-level access and above to perform administrative actions on the site, such as deleting comments,...

7.1CVSS6.8AI score0.00355EPSS
Exploits0References10
OSV
OSV
added 2023/12/06 1:15 a.m.8 views

CVE-2023-28876

A Broken Access Control issue in comments to uploaded files in Filerun through Update 20220202 allows attackers to delete comments on files uploaded by other users...

4.3CVSS5.8AI score0.00483EPSS
Exploits1References2
CNNVD
CNNVD
added 2023/12/06 12:0 a.m.5 views

Afian FileRun security vulnerability

Afian FileRun is a full-featured web-based file manager. A security vulnerability exists in Afian FileRun that stems from the presence of a corrupted access control issue that allows an attacker to delete comments on files uploaded by other users...

4.3CVSS5AI score0.00483EPSS
Exploits1References2
OSV
OSV
added 2023/06/07 2:15 a.m.2 views

CVE-2020-36697

The WP GDPR plugin for WordPress is vulnerable to authorization bypass due to a missing capability check in versions up to, and including, 2.1.1. This makes it possible for unauthenticated attackers to delete any comment and modify the plugin’s settings...

6.5CVSS5.8AI score0.00851EPSS
Exploits1References3
CNNVD
CNNVD
added 2022/08/05 12:0 a.m.7 views

WordPress plugin Rich Reviews by Starfish 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site request forgery vulnerability...

5.4CVSS5AI score0.00274EPSS
Exploits0References3
OSV
OSV
added 2022/06/08 10:15 a.m.4 views

CVE-2022-1709

The Throws SPAM Away WordPress plugin before 3.3.1 does not have CSRF checks in place when deleting comments either all, spam, or pending, allowing attackers to make a logged in admin delete comments via a CSRF attack...

4.3CVSS5.8AI score0.00412EPSS
Exploits2References1
Prion
Prion
added 2022/06/08 10:15 a.m.11 views

Cross site request forgery (csrf)

The Throws SPAM Away WordPress plugin before 3.3.1 does not have CSRF checks in place when deleting comments either all, spam, or pending, allowing attackers to make a logged in admin delete comments via a CSRF attack...

4.3CVSS4.6AI score0.00412EPSS
Exploits2References1Affected Software1
OSV
OSV
added 2021/11/08 6:15 p.m.5 views

CVE-2021-24806

The wpDiscuz WordPress plugin before 7.3.4 does check for CSRF when adding, editing and deleting comments, which could allow attacker to make logged in users such as admin edit and delete arbitrary comment, or the user who made the comment to edit it via a CSRF attack. Attackers could also make...

4.3CVSS5.9AI score
Exploits0References1
Rows per page
Query Builder