Lucene search
K

4 matches found

Cvelist
Cvelist
added 2025/10/03 4:27 p.m.10 views

CVE-2025-61590 Cursor is vulnerable to RCE via .code-workspace files using Prompt Injection

Cursor is a code editor built for programming with AI. Versions 1.6 and below are vulnerable to Remote Code Execution RCE attacks through Visual Studio Code Workspaces. Workspaces allow users to open more than a single folder and save specific settings pretty similar to .vscode/settings.json for...

7.5CVSS0.00485EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/09/22 6:25 p.m.6 views

WordPress Penci Filter Everything Plugin < 1.7 - Cross Site Scripting (XSS) Vulnerability

Cross Site Scripting XSS Vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Plugin Penci Filter Everything versions 1.7...

6.5CVSS6AI score0.00159EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/05/07 12:36 p.m.3 views

WordPress WP DPE-GES plugin <= 1.6 - Cross Site Scripting (XSS) Vulnerability

Cross Site Scripting XSS Vulnerability discovered by johska in WordPress Plugin WP DPE-GES versions = 1.6...

6.5CVSS7.1AI score0.00215EPSS
Exploits0Affected Software1
Positive Technologies
Positive Technologies
added 2022/12/07 12:0 a.m.5 views

PT-2022-27947 · Jenkins · Jenkins Google Login Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins Google Login Plugin versions 1.4 through 1.6 Description: The issue arises from the improper determination of a redirect URL after login, which is supposed to point to Jenkins. This could potentially lead to unauthorized access. The...

6.1CVSS6.1AI score0.00529EPSS
Exploits0References8
Rows per page
Query Builder