Lucene search
K

6 matches found

OSV
OSV
added 2026/04/30 2:16 p.m.6 views

DEBIAN-CVE-2026-7246

Pallets Click, versions 8.3.2 and below, contain a command injection vulnerability in the click.edit function, allowing attackers to pass arbitrary OS commands from an unprivileged account...

7.2CVSS5.9AI score0.0081EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/22 3:31 p.m.6 views

EUVD-2025-35522

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in xtemos WoodMart woodmart allows DOM-Based XSS.This issue affects WoodMart: from n/a through 8.3.2...

5.9AI score0.00198EPSS
Exploits0References2
CVE
CVE
added 2025/10/22 2:32 p.m.14 views

CVE-2025-49936

CVE-2025-49936: WordPress WoodMart theme

6.5CVSS6AI score0.00198EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/10/22 12:0 a.m.7 views

WordPress plugin WoodMart 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A cross-site scripting...

6.5CVSS6AI score0.00198EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/03/01 7:15 p.m.3 views

CVE-2021-43075

A improper neutralization of special elements used in an os command 'os command injection' in Fortinet FortiWLM version 8.6.2 and below, version 8.5.2 and below, version 8.4.2 and below, version 8.3.2 and below allows attacker to execute unauthorized code or commands via crafted HTTP requests to...

9CVSS7.4AI score0.01639EPSS
Exploits0References2
OSV
OSV
added 2019/08/23 2:15 p.m.3 views

CVE-2019-8447

The ServiceExecutor resource in Jira before version 8.3.2 allows remote attackers to trigger the creation of export files via a Cross-site request forgery CSRF vulnerability...

4.3CVSS5.9AI score0.00679EPSS
Exploits0References1
Rows per page
Query Builder