Lucene search
K

8706 matches found

WPVulnDB
WPVulnDB
added 2018/07/06 12:0 a.m.26 views

Ninja Forms < 3.3.9 - Insufficient Restrictions during Export Personal Data requests

The Ninja Forms Contact Form – The Drag and Drop Form Builder for WordPress WordPress plugin was affected by an Insufficient Restrictions during Export Personal Data requests security vulnerability...

6.4CVSS2.9AI score0.01744EPSS
Exploits0Affected Software1
OSV
OSV
added 2018/07/03 2:29 p.m.2 views

CVE-2018-7765

The vulnerability exists within processing of trackimportexport.php in Schneider Electric U.motion Builder software versions prior to v1.3.4. The underlying SQLite database query is subject to SQL injection on the objectid input parameter...

8.8CVSS5.8AI score0.02917EPSS
Exploits3References2
CNVD
CNVD
added 2018/07/03 12:0 a.m.1 views

SAP BASIS Report for Terminology Export System Command Injection Vulnerability

SAP BASIS is a role engaged in sap system administration. Mainly responsible for sap system planning, installation, configuration, management, monitoring, maintenance, tuning, etc.. A command injection vulnerability exists in the SAP BASIS Report for Terminology Export system, which can be...

8.2AI score
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2018/06/29 12:0 a.m.7 views

The vulnerability of the components ExportSettings.sh, updateWPS, RebootSystem, and vpnBasicSettings of the Intelbras NCLOUD 300 Wi-Fi router’s microprogramming system allows a hacker to gain access to the device with administrator privileges.

The vulnerabilities of the components ExportSettings.sh /cgi-bin/ExportSettings.sh, updateWPS /goform/updateWPS, RebootSystem /goform/RebootSystem, and vpnBasicSettings /goform/vpnBasicSettings of the Intelbras NCLOUD 300 Wi-Fi router software are related to the use of pre-installed registration...

10CVSS5.5AI score0.35573EPSS
Exploits5References4Affected Software1
Prion
Prion
added 2018/06/26 5:29 p.m.18 views

Design/Logic Flaw

A exposure of sensitive information vulnerability exists in Jenkins Configuration as Code Plugin 0.7-alpha and earlier in ConfigurationAsCode.java that allows attackers with Overall/Read access to obtain the YAML export of the Jenkins configuration...

4CVSS6.2AI score0.00988EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2018/06/26 5:29 p.m.16 views

CVE-2018-1000609

A exposure of sensitive information vulnerability exists in Jenkins Configuration as Code Plugin 0.7-alpha and earlier in ConfigurationAsCode.java that allows attackers with Overall/Read access to obtain the YAML export of the Jenkins configuration...

6.5CVSS6.3AI score
Exploits0References1
0day.today
0day.today
added 2018/06/26 12:0 a.m.93 views

WordPress Advanced Order Export For #WooCommerce CSV Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: Wordpress Plugin Advanced Order Export For WooCommerce 1.5.4 - CSV Injection Exploit Author: Bhushan B. Patil Software Link: https://wordpress.org/plugins/woo-order-export-lite/ Affected Version: 1.5.4 and before Category: Plugi...

0.1AI score0.05209EPSS
Exploits6
OSV
OSV
added 2018/06/25 6:29 p.m.5 views

CVE-2018-11589

Multiple SQL injection vulnerabilities in Centreon 3.4.6 including Centreon Web 2.8.23 allow attacks via the searchU parameter in viewLogs.php, the id parameter in GetXmlHost.php, the chartId parameter in ExportCSVServiceData.php, the searchCurve parameter in listComponentTemplates.php, or the...

9.8CVSS5.8AI score0.02147EPSS
Exploits0References7
0day.today
0day.today
added 2018/06/25 12:0 a.m.37 views

Wordpress Comments Import & Export Plugin < 2.0.4 - CSV Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: Wordpress Plugin Comments Import & Export 2.0.4 - CSV Injection Exploit Author: Bhushan B. Patil Software Link: https://wordpress.org/plugins/comments-import-export-woocommerce/ Affected Version: 2.0.4 and before Category: Plugi...

0.1AI score0.05209EPSS
Exploits5
Packet Storm
Packet Storm
added 2018/06/25 12:0 a.m.34 views

WordPress Comments Import And Export CSV Injection

Exploit Title: Wordpress Plugin Comments Import & Export 2.0.4 - CSV Injection Google Dork: N/A Date: 2018-06-24 Exploit Author: Bhushan B. Patil Software Link: https://wordpress.org/plugins/comments-import-export-woocommerce/ Affected Version: 2.0.4 and before Category: Plugins and Extensions...

0.05209EPSS
Exploits5
exploitpack
exploitpack
added 2018/06/25 12:0 a.m.18 views

WordPress Plugin Comments Import Export 2.0.4 - CSV Injection

WordPress Plugin Comments Import Export 2.0.4 - CSV Injection Exploit Title: Wordpress Plugin Comments Import & Export 2.0.4 - CSV Injection Google Dork: N/A Date: 2018-06-24 Exploit Author: Bhushan B. Patil Software Link: https://wordpress.org/plugins/comments-import-export-woocommerce/ Affected...

6.8CVSS0.05209EPSS
Exploits5
0day.today
0day.today
added 2018/06/25 12:0 a.m.76 views

Wordpress Advanced Order Export For WooCommerce Plugin < 1.5.4 - CSV Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: Wordpress Plugin Advanced Order Export For WooCommerce 1.5.4 - CSV Injection Exploit Author: Bhushan B. Patil Software Link: https://wordpress.org/plugins/woo-order-export-lite/ Affected Version: 1.5.4 and before Category: Plugi...

0.05209EPSS
Exploits6
Exploit DB
Exploit DB
added 2018/06/25 12:0 a.m.53 views

WordPress Plugin Comments Import &amp; Export &lt; 2.0.4 - CSV Injection

Exploit Title: Wordpress Plugin Comments Import & Export 2.0.4 - CSV Injection Google Dork: N/A Date: 2018-06-24 Exploit Author: Bhushan B. Patil Software Link: https://wordpress.org/plugins/comments-import-export-woocommerce/ Affected Version: 2.0.4 and before Category: Plugins and Extensions...

7.8CVSS7.9AI score0.05209EPSS
Exploits5
Exploit DB
Exploit DB
added 2018/06/25 12:0 a.m.62 views

WordPress Plugin Advanced Order Export For WooCommerce &lt; 1.5.4 - CSV Injection

Exploit Title: Wordpress Plugin Advanced Order Export For WooCommerce 1.5.4 - CSV Injection Google Dork: N/A Date: 2018-06-24 Exploit Author: Bhushan B. Patil Software Link: https://wordpress.org/plugins/woo-order-export-lite/ Affected Version: 1.5.4 and before Category: Plugins and Extensions...

7.8CVSS7.6AI score0.05209EPSS
Exploits6
exploitpack
exploitpack
added 2018/06/25 12:0 a.m.71 views

WordPress Plugin Advanced Order Export For WooCommerce 1.5.4 - CSV Injection

WordPress Plugin Advanced Order Export For WooCommerce 1.5.4 - CSV Injection Exploit Title: Wordpress Plugin Advanced Order Export For WooCommerce 1.5.4 - CSV Injection Google Dork: N/A Date: 2018-06-24 Exploit Author: Bhushan B. Patil Software Link:...

6.8CVSS0.2AI score0.05209EPSS
Exploits6
Patchstack
Patchstack
added 2018/06/22 12:0 a.m.25 views

WordPress Comments Import & Export plugin <= 2.3.1 - CSV Injection vulnerability

CSV Injection vulnerability found by Bhushan B. Patil in WordPress Comments Import & Export plugin versions = 2.0.5. No fully patched version available...

7.8CVSS3.9AI score0.05209EPSS
Exploits5References1Affected Software1
WPVulnDB
WPVulnDB
added 2018/06/21 12:0 a.m.10 views

WordPress Comments Import & Export <= 2.0.4 - CSV Injection

The WordPress Comments Import & Export WordPress plugin was affected by a CSV Injection security vulnerability...

6.8CVSS2.3AI score0.05209EPSS
Exploits5References3Affected Software1
Kitploit
Kitploit
added 2018/06/20 2:6 p.m.12 views

Operative Framework HD - The Digital Investigation Framework, You Can Interact With Websites, Email Address, Company, People, Ip Address, And More

operative framework HD is the digital investigation framework, you can interact with websites, email address, company, people, ip address ... with basic/graphical view and export with XML, JSON. How to Install You need this packages mongoDB NPM Python 2 Create mongoDB database $ mongo $ use...

7.3AI score
Exploits0References1
CNVD
CNVD
added 2018/06/20 12:0 a.m.2 views

Simple Password Store Code Execution Vulnerability

Simple Password Store is a password storage and management tool. A security vulnerability exists in the password-store.sh file for pass in Simple Password Store, which stems from a routine that verifies signatures using an incomplete regular expression to parse an export of GnuPG. A remote attack...

9.8CVSS9.7AI score0.04648EPSS
Exploits0References1
CNVD
CNVD
added 2018/06/20 12:0 a.m.5 views

Advanced Order Export For WooCommerce CSV Injection Vulnerability

WordPress is the WordPress Software Foundation's set of blogging platform using PHP language development, the platform supports in PHP and MySQL servers to set up a personal blog website.Advanced Order Export For WooCommerce is used in one of the export WooCommerce order data plug-ins. plugin for...

7.8CVSS7.4AI score0.05209EPSS
Exploits6References1
Rows per page
Query Builder