Lucene search
K

282 matches found

AlpineLinux
AlpineLinux
added 2022/12/10 12:0 a.m.71 views

CVE-2022-45145

egg-compile.scm in CHICKEN 5.x before 5.3.1 allows arbitrary OS command execution during package installation via escape characters in a .egg file...

9.8CVSS9.8AI score0.01268EPSS
Exploits0
OSV
OSV
added 2022/11/03 8:15 p.m.4 views

CVE-2022-25952

Cross-Site Request Forgery CSRF vulnerability in Keywordrush Content Egg plugin = 5.4.0 on WordPress...

8.8CVSS5.8AI score0.00284EPSS
Exploits0References2
NVD
NVD
added 2022/11/03 8:15 p.m.32 views

CVE-2022-25952

Cross-Site Request Forgery CSRF vulnerability in Keywordrush Content Egg plugin = 5.4.0 on WordPress...

8.8CVSS0.00284EPSS
Exploits0References2
Cvelist
Cvelist
added 2022/11/03 7:35 p.m.35 views

CVE-2022-25952 WordPress Content Egg plugin <= 5.4.0 - Cross-Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in Keywordrush Content Egg plugin = 5.4.0 on WordPress...

4.3CVSS9AI score0.00284EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2022/11/03 7:35 p.m.6 views

CVE-2022-25952 WordPress Content Egg plugin <= 5.4.0 - Cross-Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in Keywordrush Content Egg plugin = 5.4.0 on WordPress...

4.3CVSS5.8AI score0.00284EPSS
Exploits0References2
CVE
CVE
added 2022/11/03 7:35 p.m.59 views

CVE-2022-25952

CVE-2022-25952 describes a Cross‑Site Request Forgery (CSRF) in the WordPress plugin Keywordrush Content Egg / Content Egg up to version 5.4.0 . The flaw affects the plugin’s ability to verify CSRF tokens in certain actions, enabling an authenticated attacker to trick an admin into performing uni...

8.8CVSS6.5AI score0.00284EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2022/11/03 12:0 a.m.10 views

PT-2022-17617 · Unknown · Keywordrush Content Egg

Name of the Vulnerable Software and Affected Versions: Keywordrush Content Egg plugin versions prior to 5.4.0 Description: The issue is related to a Cross-Site Request Forgery CSRF vulnerability. This type of vulnerability allows an attacker to trick a user into performing unintended actions on a...

8.8CVSS8.5AI score0.00284EPSS
Exploits0References4
CNNVD
CNNVD
added 2022/11/03 12:0 a.m.51 views

WordPress plugin Keywordrush Content Egg 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in WordPres...

8.8CVSS7.9AI score0.00284EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2022/10/31 8:37 p.m.4 views

CVE-2022-25952

Cross-Site Request Forgery CSRF vulnerability in Keywordrush Content Egg plugin = 5.4.0 on WordPress...

8.8CVSS8AI score0.00284EPSS
Exploits0References3Affected Software1
WPVulnDB
WPVulnDB
added 2022/10/31 12:0 a.m.23 views

Content Egg < 5.5.0 - Multiple CSRF

The plugin does not have CSRF checks in some places, which could allow attackers to make logged in admins perform unwanted actions via CSRF attacks...

8.8CVSS5.4AI score0.00284EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2022/10/31 12:0 a.m.22 views

WordPress Content Egg plugin <= 5.4.0 - Cross-Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability leading to Autoblogging Removal discovered by Muhammad Daffa Patchstack Alliance in the WordPress Content Egg plugin versions = 5.4.0. Solution Update the WordPress Content Egg plugin to the latest available version at least 5.5.0...

8.8CVSS4.3AI score0.00284EPSS
Exploits0Affected Software1
OpenVAS
OpenVAS
added 2022/08/26 12:0 a.m.44 views

Ubuntu: Security Advisory (USN-4435-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.1AI score0.05063EPSS
Exploits0References2
Schneier on Security
Schneier on Security
added 2022/07/22 9:12 p.m.23 views

Friday Squid Blogging: Bathyteuthis berryi Holding Eggs

Image and video of a Bathyteuthis berryi carrying a few hundred eggs, taken at a depth of 4,650 feet. As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered. Read my blog posting guidelines here...

0.9AI score
Exploits0
Openbugbounty
Openbugbounty
added 2022/06/20 2:8 p.m.8 views

incredibleegg.org Cross Site Scripting vulnerability OBB-2657923

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
CNVD
CNVD
added 2022/05/07 12:0 a.m.14 views

WordPress Content Egg plugin跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plugin. WordPress Content Egg plugin versions prior to 5.3.0 have a cross-site scripting vulnerability that stems fro...

6.1CVSS2.2AI score0.00897EPSS
Exploits2References1
ATTACKERKB
ATTACKERKB
added 2022/05/02 4:15 p.m.7 views

CVE-2022-0428

The Content Egg WordPress plugin before 5.3.0 does not sanitise and escape the page parameter before outputting back in an attribute in the Autoblogging admin dashboard, leading to a Reflected Cross-Site Scripting...

6.1CVSS6.3AI score0.00897EPSS
Exploits2References2
OSV
OSV
added 2022/05/02 4:15 p.m.3 views

CVE-2022-0428

The Content Egg WordPress plugin before 5.3.0 does not sanitise and escape the page parameter before outputting back in an attribute in the Autoblogging admin dashboard, leading to a Reflected Cross-Site Scripting...

6.1CVSS5.8AI score0.00897EPSS
Exploits2References1
NVD
NVD
added 2022/05/02 4:15 p.m.17 views

CVE-2022-0428

The Content Egg WordPress plugin before 5.3.0 does not sanitise and escape the page parameter before outputting back in an attribute in the Autoblogging admin dashboard, leading to a Reflected Cross-Site Scripting...

6.1CVSS0.00897EPSS
Exploits2References1
Prion
Prion
added 2022/05/02 4:15 p.m.15 views

Cross site scripting

The Content Egg WordPress plugin before 5.3.0 does not sanitise and escape the page parameter before outputting back in an attribute in the Autoblogging admin dashboard, leading to a Reflected Cross-Site Scripting...

4.3CVSS6.1AI score0.00897EPSS
Exploits2References1Affected Software1
Cvelist
Cvelist
added 2022/05/02 4:5 p.m.22 views

CVE-2022-0428 Content Egg < 5.3.0 - Reflected Cross-Site Scripting

The Content Egg WordPress plugin before 5.3.0 does not sanitise and escape the page parameter before outputting back in an attribute in the Autoblogging admin dashboard, leading to a Reflected Cross-Site Scripting...

6.2AI score0.00897EPSS
Exploits2References1
Rows per page
Query Builder