Lucene search
K

5 matches found

EUVD
EUVD
added 2026/04/08 12:31 p.m.7 views

EUVD-2026-20453

WCAPF – WooCommerce Ajax Product Filter plugin is vulnerable to time-based SQL Injection via the 'post-author' parameter in all versions up to, and including, 4.2.3 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes...

7.5CVSS5.9AI score0.01473EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2026/04/08 12:0 a.m.3 views

PT-2026-31296

Name of the Vulnerable Software and Affected Versions WCAPF – WooCommerce Ajax Product Filter versions up to and including 4.2.3 Description The WooCommerce Ajax Product Filter plugin is susceptible to time-based SQL Injection through the post-author parameter. Insufficient input sanitization and...

7.5CVSS5.9AI score0.01473EPSS
Exploits0References11
CVE
CVE
added 2025/09/26 8:31 a.m.17 views

CVE-2025-60102

CVE-2025-60102 : Stored Cross-Site Scripting in WPFront User Role Editor for WordPress. Affected software: WPFront User Role Editor, version range up to and including 4.2.3. Root cause and impact: improper neutralization of input during web page generation leading to stored XSS. Public details in...

6.5CVSS5.9AI score0.00196EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/03/06 1:9 p.m.11 views

CVE-2025-0877 XSS in AtaksAPP's Reservation Management System

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in AtaksAPP Reservation Management System allows Cross-Site Scripting XSS. This issue affects Reservation Management System: before 4.2.3...

4.7CVSS0.00276EPSS
Exploits0References2
CNNVD
CNNVD
added 2022/09/22 12:0 a.m.4 views

Pydio 跨站脚本漏洞

Pydio AjaXplorer is a web-based remote file manager from Pydio. The manager supports uploading and downloading files, online file editing, image previewing, and more. A security vulnerability exists in Pydio version 4.2.3, which can be exploited by an attacker to cause a cross-site scripting...

5.4CVSS5.6AI score0.0052EPSS
Exploits1References4
Rows per page
Query Builder