Lucene search
K

257 matches found

NVD
NVD
added yesterday4 views

CVE-2025-69155

Unauthenticated Cross Site Scripting XSS in Fitness Zone WordPress Theme = 5.7 versions...

7.1CVSS
Exploits0References1
Cvelist
Cvelist
added yesterday32 views

CVE-2025-69155 WordPress Fitness Zone WordPress Theme theme <= 5.7 - Cross Site Scripting (XSS) vulnerability

Unauthenticated Cross Site Scripting XSS in Fitness Zone WordPress Theme = 5.7 versions...

7.1CVSS
Exploits0References1
CVE
CVE
added yesterday6 views

CVE-2025-69155

CVE-2025-69155 affects the Fitness Zone WordPress Theme up to version 5.7. It is described as an unauthenticated Cross Site Scripting (XSS) vulnerability in the theme, with CVSS v3.1 base score 7.1 (HIGH). Attack vector: NETWORK; Attack complexity: LOW; Privileges required: NONE; User interaction...

7.1CVSS5.8AI score
Exploits0References1
EUVD
EUVD
added yesterday5 views

EUVD-2025-210407

Unauthenticated Cross Site Scripting XSS in Fitness Zone WordPress Theme = 5.7 versions...

7.1CVSS5.8AI score
Exploits0References1
Patchstack
Patchstack
added 3 days ago4 views

WordPress Fitness Zone WordPress Theme theme <= 5.7 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Theme Fitness Zone WordPress Theme versions = 5.7...

7.1CVSS5.8AI score
Exploits0Affected Software1
RedhatCVE
RedhatCVE
added 2026/04/04 11:2 a.m.5 views

CVE-2026-5462

A vulnerability was identified in Wahoo Fitness SYSTM App up to 7.2.1 on Android. Impacted is an unknown function of the file com/WahooFitness/SYSTM/BuildConfig.java of the component com.WahooFitness.SYSTM. Such manipulation of the argument SEGMENTWRITEKEY leads to use of hard-coded cryptographic...

4.8CVSS5.6AI score0.00156EPSS
Exploits0References1
EUVD
EUVD
added 2026/04/03 9:30 a.m.4 views

EUVD-2026-18613

A vulnerability was identified in Wahoo Fitness SYSTM App up to 7.2.1 on Android. Impacted is an unknown function of the file com/WahooFitness/SYSTM/BuildConfig.java of the component com.WahooFitness.SYSTM. Such manipulation of the argument SEGMENTWRITEKEY leads to use of hard-coded cryptographic...

4.8CVSS5.6AI score0.00156EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/04/03 7:15 a.m.3 views

CVE-2026-5462

A vulnerability was identified in Wahoo Fitness SYSTM App up to 7.2.1 on Android. Impacted is an unknown function of the file com/WahooFitness/SYSTM/BuildConfig.java of the component com.WahooFitness.SYSTM. Such manipulation of the argument SEGMENTWRITEKEY leads to use of hard-coded cryptographic...

4.8CVSS5.6AI score0.00156EPSS
Exploits0References4Affected Software1
Vulnrichment
Vulnrichment
added 2026/04/03 7:15 a.m.3 views

CVE-2026-5462 Wahoo Fitness SYSTM App com.WahooFitness.SYSTM BuildConfig.java hard-coded key

A vulnerability was identified in Wahoo Fitness SYSTM App up to 7.2.1 on Android. Impacted is an unknown function of the file com/WahooFitness/SYSTM/BuildConfig.java of the component com.WahooFitness.SYSTM. Such manipulation of the argument SEGMENTWRITEKEY leads to use of hard-coded cryptographic...

4.8CVSS5.6AI score0.00156EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/04/03 7:15 a.m.23 views

CVE-2026-5462 Wahoo Fitness SYSTM App com.WahooFitness.SYSTM BuildConfig.java hard-coded key

A vulnerability was identified in Wahoo Fitness SYSTM App up to 7.2.1 on Android. Impacted is an unknown function of the file com/WahooFitness/SYSTM/BuildConfig.java of the component com.WahooFitness.SYSTM. Such manipulation of the argument SEGMENTWRITEKEY leads to use of hard-coded cryptographic...

4.8CVSS0.00156EPSS
Exploits0References4
CVE
CVE
added 2026/04/03 7:15 a.m.9 views

CVE-2026-5462

The CVE-2026-5462 entry affects the Wahoo Fitness SYSTM App for Android up to version 7.2.1, focusing on the file path com/WahooFitness/SYSTM/BuildConfig.java within the com.WahooFitness.SYSTM component. The vulnerability arises from manipulation of the SEGMENT_WRITE_KEY argument, which leads to ...

4.8CVSS5.6AI score0.00156EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/04/03 12:0 a.m.8 views

Wahoo Fitness SYSTM App 安全漏洞

The Wahoo Fitness SYSTM App is a comprehensive structured training app developed by Wahoo Fitness in the United States. The Wahoo Fitness SYSTM App versions 7.2.1 and earlier contained security vulnerabilities, which stemmed from the use of hardcoded encryption keys for the SEGMENTWRITEKEY...

4.8CVSS5.8AI score0.00156EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/04/03 12:0 a.m.5 views

PT-2026-29995

A vulnerability was identified in Wahoo Fitness SYSTM App up to 7.2.1 on Android. Impacted is an unknown function of the file com/WahooFitness/SYSTM/BuildConfig.java of the component com.WahooFitness.SYSTM. Such manipulation of the argument SEGMENT WRITE KEY leads to use of hard-coded cryptograph...

4.8CVSS5.6AI score0.00156EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/03/26 3:17 p.m.3 views

CVE-2026-32434

Missing Authorization vulnerability in vowelweb VW Fitness vw-fitness allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects VW Fitness: from n/a through = 4.3.4...

5.3CVSS5.8AI score0.00233EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/13 9:31 p.m.5 views

EUVD-2026-11971

Missing Authorization vulnerability in vowelweb VW Fitness vw-fitness allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects VW Fitness: from n/a through = 4.3.4...

5.3CVSS5.8AI score0.00233EPSS
Exploits0References2
NVD
NVD
added 2026/03/13 7:55 p.m.3 views

CVE-2026-32434

Missing Authorization vulnerability in vowelweb VW Fitness vw-fitness allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects VW Fitness: from n/a through = 4.3.4...

5.3CVSS0.00233EPSS
Exploits0References1
CVE
CVE
added 2026/03/13 11:42 a.m.12 views

CVE-2026-32434

The CVE-2026-32434 entry describes a Missing Authorization vulnerability in the WordPress VW Fitness theme (vw-fitness) by vowelweb, affecting versions from n/a up to and including 4.3.4. The issue is categorized as Broken Access Control due to incorrectly configured access control security level...

5.3CVSS5.8AI score0.00233EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/03/13 11:42 a.m.27 views

CVE-2026-32434 WordPress VW Fitness theme <= 4.3.4 - Broken Access Control vulnerability

Missing Authorization vulnerability in vowelweb VW Fitness vw-fitness allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects VW Fitness: from n/a through = 4.3.4...

5.3CVSS0.00233EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/03/13 11:42 a.m.3 views

CVE-2026-32434 WordPress VW Fitness theme <= 4.3.4 - Broken Access Control vulnerability

Missing Authorization vulnerability in vowelweb VW Fitness vw-fitness allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects VW Fitness: from n/a through = 4.3.4...

5.3CVSS5.8AI score0.00233EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/13 11:42 a.m.5 views

CVE-2026-32434

Missing Authorization vulnerability in vowelweb VW Fitness vw-fitness allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects VW Fitness: from n/a through = 4.3.4...

5.8AI score0.00233EPSS
Exploits0References2
Rows per page
Query Builder