Lucene search
K

5 matches found

Patchstack
Patchstack
added 2025/11/20 11:46 p.m.5 views

WordPress Groundhogg plugin <= 4.2.6.1 - Authenticated (Admin+) SQL Injection vulnerability

Authenticated Admin+ SQL Injection vulnerability discovered by NAKLEH ZEIDAN in WordPress Plugin Groundhogg versions = 4.2.6.1...

4.9CVSS8.1AI score0.00268EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/09/23 8:26 a.m.4 views

CVE-2025-10147 Podlove Podcast Publisher <= 4.2.6 - Unauthenticated Arbitrary File Upload

The Podlove Podcast Publisher plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'moveasoriginalfile' function in all versions up to, and including, 4.2.6. This makes it possible for unauthenticated attackers to upload arbitrary files on the...

9.8CVSS7.2AI score0.00882EPSS
Exploits0References3
OSV
OSV
added 2025/02/21 4:8 p.m.2 views

MAL-2025-1510 Malicious code in @visma-spcs-registry/react-common-components (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b825ada9ae1a47ba7b535f78569c691ddf561ab61c2f4839ed0edb11d91403ca Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
OSV
OSV
added 2018/11/28 4:29 p.m.3 views

CVE-2018-14746

Command Injection vulnerability in QTS 4.3.5 build 20181013, QTS 4.3.4 build 20181008, QTS 4.3.3 build 20180829, QTS 4.2.6 build 20180829 and earlier versions could allow remote attackers to run arbitrary commands on the NAS...

9.8CVSS6AI score0.03302EPSS
Exploits0References1
OSV
OSV
added 2018/11/28 4:29 p.m.3 views

CVE-2018-14749

Buffer Overflow vulnerability in QTS 4.3.5 build 20181013, QTS 4.3.4 build 20181008, QTS 4.3.3 build 20180829, QTS 4.2.6 build 20180829 and earlier versions could have unspecified impact on the NAS...

9.8CVSS5.8AI score0.01185EPSS
Exploits0References1
Rows per page
Query Builder