Lucene search
K

14 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2014-5234

Malware in sbrugna...

4.3CVSS6.4AI score0.06095EPSS
Exploits1References6
RedhatCVE
RedhatCVE
added 2025/05/22 12:35 a.m.7 views

CVE-2014-5345

Cross-site scripting XSS vulnerability in upgrade.php in the Disqus Comment System plugin before 2.76 for WordPress allows remote attackers to inject arbitrary web script or HTML via the step parameter...

4.3CVSS6AI score0.06095EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 12:35 a.m.5 views

CVE-2014-5346

Multiple cross-site request forgery CSRF vulnerabilities in the Disqus Comment System plugin 2.77 for WordPress allow remote attackers to hijack the authentication of administrators for requests that 1 activate or 2 deactivate the plugin via the active parameter to wp-admin/edit-comments.php, 3...

6.8CVSS7.7AI score0.0267EPSS
Exploits1References1
NVD
NVD
added 2014/08/19 7:55 p.m.17 views

CVE-2014-5345

Cross-site scripting XSS vulnerability in upgrade.php in the Disqus Comment System plugin before 2.76 for WordPress allows remote attackers to inject arbitrary web script or HTML via the step parameter...

4.3CVSS5.8AI score0.06095EPSS
Exploits1References5
NVD
NVD
added 2014/08/19 7:55 p.m.20 views

CVE-2014-5346

Multiple cross-site request forgery CSRF vulnerabilities in the Disqus Comment System plugin 2.77 for WordPress allow remote attackers to hijack the authentication of administrators for requests that 1 activate or 2 deactivate the plugin via the active parameter to wp-admin/edit-comments.php, 3...

6.8CVSS7.3AI score0.0267EPSS
Exploits1References2
NVD
NVD
added 2014/08/19 7:55 p.m.15 views

CVE-2014-5347

Multiple cross-site request forgery CSRF vulnerabilities in the Disqus Comment System plugin before 2.76 for WordPress allow remote attackers to hijack the authentication of administrators for requests that conduct cross-site scripting XSS attacks via the 1 disqusreplace, 2 disquspublickey, or 3...

6.8CVSS6.7AI score0.04886EPSS
Exploits1References10
Prion
Prion
added 2014/08/19 7:55 p.m.16 views

Cross site request forgery (csrf)

Multiple cross-site request forgery CSRF vulnerabilities in the Disqus Comment System plugin before 2.76 for WordPress allow remote attackers to hijack the authentication of administrators for requests that conduct cross-site scripting XSS attacks via the 1 disqusreplace, 2 disquspublickey, or 3...

6.8CVSS7AI score0.04886EPSS
Exploits1References10Affected Software1
Prion
Prion
added 2014/08/19 7:55 p.m.11 views

Cross site request forgery (csrf)

Multiple cross-site request forgery CSRF vulnerabilities in the Disqus Comment System plugin 2.77 for WordPress allow remote attackers to hijack the authentication of administrators for requests that 1 activate or 2 deactivate the plugin via the active parameter to wp-admin/edit-comments.php, 3...

6.8CVSS7.8AI score0.0267EPSS
Exploits1References2Affected Software1
Prion
Prion
added 2014/08/19 7:55 p.m.18 views

Cross site scripting

Cross-site scripting XSS vulnerability in upgrade.php in the Disqus Comment System plugin before 2.76 for WordPress allows remote attackers to inject arbitrary web script or HTML via the step parameter...

4.3CVSS6.2AI score0.06095EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2014/08/19 7:0 p.m.27 views

CVE-2014-5345

Cross-site scripting XSS vulnerability in upgrade.php in the Disqus Comment System plugin before 2.76 for WordPress allows remote attackers to inject arbitrary web script or HTML via the step parameter...

5.8AI score0.06095EPSS
Exploits1References5
Cvelist
Cvelist
added 2014/08/19 7:0 p.m.23 views

CVE-2014-5346

Multiple cross-site request forgery CSRF vulnerabilities in the Disqus Comment System plugin 2.77 for WordPress allow remote attackers to hijack the authentication of administrators for requests that 1 activate or 2 deactivate the plugin via the active parameter to wp-admin/edit-comments.php, 3...

7.3AI score0.0267EPSS
Exploits1References2
CVE
CVE
added 2014/08/19 7:0 p.m.49 views

CVE-2014-5345

The CVE-2014-5345 entry concerns a Cross-Site Scripting (XSS) vulnerability in the Disqus Comment System WordPress plugin’s upgrade.php, exploitable via the step parameter in versions prior to 2.76. Affected software: Disqus Comment System plugin for WordPress (pre-2.76). Root cause: improper han...

4.3CVSS6AI score0.06095EPSS
Exploits1References5Affected Software1
CVE
CVE
added 2014/08/19 7:0 p.m.43 views

CVE-2014-5347

Disqus Comment System plugin for WordPress (versions before 2.76) is affected by CSRF vulnerabilities that can allow an attacker to hijack an administrator’s authenticated session and trigger XSS via parameters to wp-admin/edit-comments.php (disqus_replace, disqus_public_key, disqus_secret_key) o...

6.8CVSS6.8AI score0.04886EPSS
Exploits1References10Affected Software1
CVE
CVE
added 2014/08/19 7:0 p.m.40 views

CVE-2014-5346

The CVE-2014-5346 entry affects the WordPress Disqus Comment System plugin version 2.77. The vulnerability is Cross-Site Request Forgery (CSRF) that allows remote attackers to hijack the authentication of administrators for requests that (1) activate or (2) deactivate the plugin via the active pa...

6.8CVSS7.5AI score0.0267EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder