Lucene search
+L

47 matches found

WPVulnDB
WPVulnDB
added 2024/05/29 12:0 a.m.18 views

Yumpu ePaper publishing <= 2.0.24 - Missing Authorization to PDF Upload, Publishing, and API Key Modification

Description The Yumpu ePaper publishing plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the ajaxhandler function in all versions up to, and including, 2.0.24. This makes it possible for authenticated attackers, with subscriber-level...

5CVSS4.9AI score0.00316EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/05/29 12:0 a.m.13 views

WordPress Yumpu ePaper publishing Plugin <= 2.0.24 is vulnerable to Broken Access Control

Software Yumpu ePaper publishing Type Plugin Vulnerable versions = 2.0.24 Fixed in 3.0.0 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-3277 Patch priority Low CVSS severity Low 5 Developer Claim ownership PSID 08c9f70d34e3 Credits Lucio Sá Required...

5CVSS6.6AI score0.00316EPSS
Exploits0References3Affected Software1
Openbugbounty
Openbugbounty
added 2018/04/05 5:54 a.m.9 views

epaper.thedailystar.net XSS vulnerability

Open Bug Bounty ID: OBB-597404 Description| Value ---|--- Affected Website:| epaper.thedailystar.net Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

6.3AI score
Exploits0
Openbugbounty
Openbugbounty
added 2017/08/12 6:25 a.m.17 views

epaper.prothom-alo.com XSS vulnerability

Open Bug Bounty ID: OBB-278462 Description| Value ---|--- Affected Website:| epaper.prothom-alo.com Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention...

6.4AI score
Exploits0
Openbugbounty
Openbugbounty
added 2017/07/29 5:33 p.m.9 views

epaper.livemint.com XSS vulnerability

Vulnerable URL: http://epaper.livemint.com/epaper/showarticle.aspx?article=e14426e7-9a0a-433d-a879-29c2ee95b730=Lvirvw2dagBrevZ8EaLqWw%3d%3d';prompt"OPENBUGBOUNTY";var x='y=67862017072900000000001001 Details: Description| Value ---|--- Patched:| No Latest check for patch:| 27.10.2017 Vulnerabilit...

6.3AI score
Exploits0
Openbugbounty
Openbugbounty
added 2017/07/29 5:16 a.m.11 views

epaper.theday.com XSS vulnerability

Open Bug Bounty ID: OBB-270715 Description| Value ---|--- Affected Website:| epaper.theday.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

6.3AI score
Exploits0
Openbugbounty
Openbugbounty
added 2017/07/22 3:56 a.m.10 views

epaper.enavabharat.com XSS vulnerability

Open Bug Bounty ID: OBB-266516 Description| Value ---|--- Affected Website:| epaper.enavabharat.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

6.3AI score
Exploits0
Openbugbounty
Openbugbounty
added 2017/07/21 2:21 p.m.10 views

epaper.haribhoomi.com XSS vulnerability

Vulnerable URL: http://epaper.haribhoomi.com/photogallery.php?edate==72"=1 Details: Description| Value ---|--- Patched:| No Latest check for patch:| 13.10.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated VIP website status:| No Check...

6.3AI score
Exploits0
Openbugbounty
Openbugbounty
added 2017/02/07 7:11 p.m.8 views

epaper.thehimalayantimes.com XSS vulnerability

Vulnerable URL: http://epaper.thehimalayantimes.com/pagezoomsin.php?img=="alert'OPENBUGBOUNTY'...

6.9AI score
Exploits0
Openbugbounty
Openbugbounty
added 2016/12/11 5:10 p.m.10 views

epaper.dailyausaf.com XSS vulnerability

Vulnerable URL: http://epaper.dailyausaf.com/page?stationid=alert'OPENBUGBOUNTY';...

6.9AI score
Exploits0
hackapp
hackapp
added 2016/04/01 9:28 a.m.17 views

RevierSport ePaper - Exported components, External URLs, Native code usage vulnerabilities

HackApp vulnerability scanner discovered that application RevierSport ePaper published at the 'play' market has multiple vulnerabilities...

0.9AI score
Exploits0References1Affected Software1
hackapp
hackapp
added 2016/04/01 9:17 a.m.13 views

GA ePaper - MIT license, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application GA ePaper published at the 'play' market has multiple vulnerabilities...

1.1AI score
Exploits0References1Affected Software1
hackapp
hackapp
added 2016/04/01 9:17 a.m.11 views

InTouch DE ePaper - Native code usage, SD-card access, Suspicious files vulnerabilities

HackApp vulnerability scanner discovered that application InTouch DE ePaper published at the 'play' market has multiple vulnerabilities...

0.1AI score
Exploits0References1Affected Software1
hackapp
hackapp
added 2016/04/01 9:17 a.m.32 views

StZ digital ePaper - Customized SSL, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application StZ digital ePaper published at the 'play' market has multiple vulnerabilities...

0.6AI score
Exploits0References1Affected Software1
hackapp
hackapp
added 2016/04/01 9:17 a.m.10 views

BRAVO ePaper - Native code usage, SD-card access, Suspicious files vulnerabilities

HackApp vulnerability scanner discovered that application BRAVO ePaper published at the 'play' market has multiple vulnerabilities...

0.1AI score
Exploits0References1Affected Software1
hackapp
hackapp
added 2016/04/01 9:17 a.m.8 views

WN ePaper - Customized SSL, Redefined SSL Common Names verifier, WebView SSL handling enabled vulnerabilities

HackApp vulnerability scanner discovered that application WN ePaper published at the 'play' market has multiple vulnerabilities...

0.3AI score
Exploits0References1Affected Software1
hackapp
hackapp
added 2016/04/01 9:17 a.m.14 views

Mittelbayerische ePaper - Dynamic Code Loading, Exported components, External URLs vulnerabilities

HackApp vulnerability scanner discovered that application Mittelbayerische ePaper published at the 'play' market has multiple vulnerabilities...

0.3AI score
Exploits0References1Affected Software1
hackapp
hackapp
added 2016/04/01 9:17 a.m.8 views

BRAVO GIRL! ePaper - Native code usage, SD-card access, Suspicious files vulnerabilities

HackApp vulnerability scanner discovered that application BRAVO GIRL! ePaper published at the 'play' market has multiple vulnerabilities...

0.1AI score
Exploits0References1Affected Software1
hackapp
hackapp
added 2016/04/01 9:17 a.m.10 views

Merkur ePaper - ContentProvider mode not defined, Dynamic Code Loading, Exported components vulnerabilities

HackApp vulnerability scanner discovered that application Merkur ePaper published at the 'play' market has multiple vulnerabilities...

0.5AI score
Exploits0References1Affected Software1
hackapp
hackapp
added 2016/04/01 9:17 a.m.11 views

OP ePaper - Customized SSL, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application OP ePaper published at the 'play' market has multiple vulnerabilities...

0.6AI score
Exploits0References1Affected Software1
Rows per page
Query Builder