Lucene search
K

107 matches found

Nuclei
Nuclei
added yesterday8 views

Privacy Policy Genius - Cross-Site Scripting

Privacy Policy Genius WordPress plugin v2.0.4 contains a reflected cross-site scripting caused by unsanitized parameter output in the page, letting attackers execute malicious scripts in the context of high privilege users, exploit requires attacker to craft a malicious URL. id: CVE-2024-13219...

6.1CVSS7.1AI score0.00565EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2026/03/26 3:9 p.m.7 views

CVE-2026-1647

The Comment Genius plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the $SERVER'PHPSELF' parameter in all versions up to, and including, 1.2.5 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitra...

6.1CVSS6AI score0.00265EPSS
Exploits0References1
Patchstack
Patchstack
added 2026/03/24 8:44 a.m.7 views

WordPress Comment Genius plugin <= 1.2.5 - Reflected Cross-Site Scripting via $_SERVER['PHP_SELF'] vulnerability

Reflected Cross-Site Scripting via $SERVER'PHPSELF' vulnerability discovered by Abdulsamad Yusuf 0xVenus - Envorasec in WordPress Plugin Comment Genius versions = 1.2.5...

6.1CVSS5.8AI score0.00265EPSS
Exploits0References1Affected Software1
EUVD
EUVD
added 2026/03/21 6:30 a.m.3 views

EUVD-2026-14173

The Comment Genius plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the $SERVER'PHPSELF' parameter in all versions up to, and including, 1.2.5 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitra...

6.1CVSS6AI score0.00265EPSS
Exploits0References5
NVD
NVD
added 2026/03/21 4:16 a.m.4 views

CVE-2026-1647

The Comment Genius plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the $SERVER'PHPSELF' parameter in all versions up to, and including, 1.2.5 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitra...

6.1CVSS0.00265EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/03/21 3:26 a.m.2 views

CVE-2026-1647 Comment Genius <= 1.2.5 - Reflected Cross-Site Scripting via $_SERVER['PHP_SELF']

The Comment Genius plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the $SERVER'PHPSELF' parameter in all versions up to, and including, 1.2.5 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitra...

6.1CVSS6AI score0.00265EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/03/21 3:26 a.m.5 views

CVE-2026-1647

The Comment Genius plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the $SERVER'PHPSELF' parameter in all versions up to, and including, 1.2.5 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitra...

6.1CVSS6AI score0.00265EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/03/21 12:0 a.m.6 views

WordPress plugin Comment Genius 跨站脚本漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

6.1CVSS5.7AI score0.00265EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/01/28 9:17 a.m.13 views

CVE-2026-24827

Out-of-bounds Write vulnerability in gerstrong Commander-Genius.This issue affects Commander-Genius: before Release refs/pull/358/merge...

7.5CVSS5.9AI score0.00263EPSS
Exploits0References1
OSV
OSV
added 2026/01/27 10:15 a.m.6 views

CVE-2026-24827

Out-of-bounds Write vulnerability in gerstrong Commander-Genius.This issue affects Commander-Genius: before Release refs/pull/358/merge...

7.5CVSS5.8AI score0.00263EPSS
Exploits0References1
OSV
OSV
added 2026/01/27 10:15 a.m.7 views

AZL-75512 CVE-2026-24827 affecting package lua for versions less than 5.4.4-2

Out-of-bounds Write vulnerability in gerstrong Commander-Genius.This issue affects Commander-Genius: before Release refs/pull/358/merge...

7.5CVSS5.8AI score0.00263EPSS
Exploits0References1
NVD
NVD
added 2026/01/27 10:15 a.m.6 views

CVE-2026-24827

Out-of-bounds Write vulnerability in gerstrong Commander-Genius.This issue affects Commander-Genius: before Release refs/pull/358/merge...

7.5CVSS0.00263EPSS
Exploits0References1
EUVD
EUVD
added 2026/01/27 9:12 a.m.22 views

EUVD-2026-4827

Out-of-bounds Write vulnerability in gerstrong Commander-Genius.This issue affects Commander-Genius: before Release refs/pull/358/merge...

7.5CVSS5.9AI score0.00263EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/01/27 9:12 a.m.4 views

CVE-2026-24827 Out-of-bounds write in Commander-Genius

Out-of-bounds Write vulnerability in gerstrong Commander-Genius.This issue affects Commander-Genius: before Release refs/pull/358/merge...

7.5CVSS5.9AI score0.00263EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/01/27 9:12 a.m.30 views

CVE-2026-24827 Out-of-bounds write in Commander-Genius

Out-of-bounds Write vulnerability in gerstrong Commander-Genius.This issue affects Commander-Genius: before Release refs/pull/358/merge...

7.5CVSS0.00263EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/01/27 9:12 a.m.4 views

CVE-2026-24827

Out-of-bounds Write vulnerability in gerstrong Commander-Genius.This issue affects Commander-Genius: before Release refs/pull/358/merge...

7.5CVSS5.9AI score0.00263EPSS
Exploits0References2
CVE
CVE
added 2026/01/27 9:12 a.m.19 views

CVE-2026-24827

CVE-2026-24827 is an Out-of-bounds Write vulnerability in gerstrong Commander-Genius. The issue affects Commander-Genius prior to Release refs/pull/358/merge. Connected data indicates the Lua package is affected for versions less than 5.4.4-2, with a patched package available (Lua 5.4.4-2 or newe...

7.5CVSS5.9AI score0.00263EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/01/27 12:0 a.m.7 views

Commander Genius security vulnerabilities

Commander Genius is a computer game developed by Gerhard Stein alone. There is a security vulnerability in Commander-Genius, which stems from an issue of out-of-bound writing...

7.5CVSS5.8AI score0.00263EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/01/27 12:0 a.m.12 views

PT-2026-4902

Out-of-bounds Write vulnerability in gerstrong Commander-Genius.This issue affects Commander-Genius: before Release refs/pull/358/merge...

7.5CVSS5.9AI score0.00263EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:31 a.m.5 views

CVE-2019-16653

An application plugin in Genius Bytes Genius Server Genius CDDS 3.2.2 allows remote authenticated users to gain admin privileges...

8.8CVSS6.9AI score0.01974EPSS
Exploits0References1
Rows per page
Query Builder