CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2024-45999

Malicious code in bioql PyPI...

9.6CVSS8.6AI score0.00275EPSS

Exploits0References1

RedhatCVE•added 2025/02/05 12:7 p.m.•4 views

CVE-2024-52401

Cross-Site Request Forgery CSRF vulnerability in HuangYe WuDeng Hacklog DownloadManager hacklog-downloadmanager allows Upload a Web Shell to a Web Server.This issue affects Hacklog DownloadManager: from n/a through = 2.1.4...

9.6CVSS7.2AI score0.00275EPSS

Exploits0References1

NVD•added 2024/11/19 5:15 p.m.•9 views

CVE-2024-52401

9.6CVSS0.00275EPSS

Exploits0References1

Vulnrichment•added 2024/11/19 4:32 p.m.•11 views

CVE-2024-52401 WordPress Hacklog DownloadManager plugin <=2.1.4 - CSRF to Arbitrary File Upload vulnerability

Cross-Site Request Forgery CSRF vulnerability in 荒野无灯 Hacklog DownloadManager allows Upload a Web Shell to a Web Server.This issue affects Hacklog DownloadManager: from n/a through 2.1.4...

9.6CVSS9.2AI score0.00275EPSS

Exploits0References1

CVE•added 2024/11/19 4:32 p.m.•41 views

CVE-2024-52401

CVE-2024-52401 affects Hacklog DownloadManager plugin (WordPress). A CSRF to Arbitrary File Upload vulnerability exists in versions 2.1.4 and earlier. The CVE entry notes a high-impact flaw (CVSS v3.1: 9.6, network vector, no privileges, user interaction required, changed scope, complete confiden...

9.6CVSS7.2AI score0.00275EPSS

Exploits0References1

Cvelist•added 2024/11/19 4:32 p.m.•20 views

CVE-2024-52401 WordPress Hacklog DownloadManager plugin <=2.1.4 - CSRF to Arbitrary File Upload vulnerability

9.6CVSS0.00275EPSS

Exploits0References1

CNNVD•added 2024/11/19 12:0 a.m.•1 views

WordPress plugin Hacklog DownloadManager 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plug-in. A cross-site reques...

9.6CVSS8.1AI score0.00275EPSS

Exploits0References1

Patchstack•added 2024/11/13 8:48 a.m.•1 views

WordPress Hacklog DownloadManager plugin <=2.1.4 - CSRF to Arbitrary File Upload vulnerability

CSRF to Arbitrary File Upload vulnerability discovered by Joshua Chan Patchstack Alliance in WordPress Plugin Hacklog DownloadManager versions = 2.1.4...

9.6CVSS7AI score0.00275EPSS

Exploits0Affected Software1

Patchstack•added 2024/11/13 12:0 a.m.•6 views

WordPress Hacklog DownloadManager Plugin <= 2.1.4 is vulnerable to Cross Site Request Forgery (CSRF)

Software Hacklog DownloadManager Type Plugin Vulnerable versions = 2.1.4 Fixed in N/A OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-52401 Patch priority Low CVSS severity Low 9.6 Developer Claim ownership PSID ba0d306fec3c Credits Joshua Chan...

9.6CVSS6.6AI score0.00275EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by