Lucene search
K

75 matches found

Nuclei
Nuclei
added 10 hours ago19 views

SRS Simple Hits Counter 1.0.3-1.0.4 - Unauthenticated Blind SQL Injection

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' in SRS Simple Hits Counter Plugin for WordPress 1.0.3 and 1.0.4 allows a remote, unauthenticated attacker to determine the value of database fields. id: CVE-2020-5766 info: name: SRS Simple Hits Counter 1.0.3-1.0.4...

7.5CVSS7.1AI score0.06052EPSS
Exploits3References2
EUVD
EUVD
added 2026/06/02 3:24 p.m.13 views

EUVD-2026-33954

OpenTelemetry eBPF Instrumentation provides eBPF instrumentation based on the OpenTelemetry standard. Prior to version 0.9.0, OBI replays BPF probe hits into histogram observations by looping once per recorded run count. On busy systems, the run-count delta can become very large, causing the...

5.9CVSS5.8AI score0.00319EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2026/01/24 3:17 p.m.5 views

CVE-2026-24587

Missing Authorization vulnerability in kutsy AJAX Hits Counter + Popular Posts Widget ajax-hits-counter allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects AJAX Hits Counter + Popular Posts Widget: from n/a through = 0.10.210305...

5.4CVSS5.4AI score0.00265EPSS
Exploits0References1
NVD
NVD
added 2026/01/23 3:16 p.m.7 views

CVE-2026-24587

Missing Authorization vulnerability in kutsy AJAX Hits Counter + Popular Posts Widget ajax-hits-counter allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects AJAX Hits Counter + Popular Posts Widget: from n/a through = 0.10.210305...

5.4CVSS0.00265EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/01/23 2:29 p.m.3 views

CVE-2026-24587

Missing Authorization vulnerability in kutsy AJAX Hits Counter + Popular Posts Widget ajax-hits-counter allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects AJAX Hits Counter + Popular Posts Widget: from n/a through = 0.10.210305...

5.4CVSS5.9AI score0.00265EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/01/23 2:29 p.m.3 views

CVE-2026-24587 WordPress AJAX Hits Counter + Popular Posts Widget plugin <= 0.10.210305 - Broken Access Control vulnerability

Missing Authorization vulnerability in kutsy AJAX Hits Counter + Popular Posts Widget ajax-hits-counter allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects AJAX Hits Counter + Popular Posts Widget: from n/a through = 0.10.210305...

5.4CVSS5.4AI score0.00265EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/01/23 2:29 p.m.29 views

CVE-2026-24587 WordPress AJAX Hits Counter + Popular Posts Widget plugin <= 0.10.210305 - Broken Access Control vulnerability

Missing Authorization vulnerability in kutsy AJAX Hits Counter + Popular Posts Widget ajax-hits-counter allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects AJAX Hits Counter + Popular Posts Widget: from n/a through = 0.10.210305...

5.4CVSS0.00265EPSS
Exploits0References1
CVE
CVE
added 2026/01/23 2:29 p.m.16 views

CVE-2026-24587

CVE-2026-24587 affects the WordPress plugin AJAX Hits Counter + Popular Posts Widget (ajax-hits-counter). Connected sources confirm a Missing Authorization / Broken Access Control vulnerability in this plugin, affecting versions up to and including 0.10.210305. Core details from Red Hat/NVD/CVE l...

5.4CVSS5.4AI score0.00265EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/01/23 12:0 a.m.10 views

PT-2026-4424

Name of the Vulnerable Software and Affected Versions kutsy AJAX Hits Counter + Popular Posts Widget versions through 0.10.210305 Description An issue exists in kutsy AJAX Hits Counter + Popular Posts Widget related to incorrectly configured access control security levels, potentially allowing...

5.4CVSS5.3AI score0.00265EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/01/23 12:0 a.m.6 views

WordPress plugin AJAX Hits Counter + Popular Posts Widget security vulnerabilities

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. There is...

5.4CVSS5.8AI score0.00265EPSS
Exploits0References1
Patchstack
Patchstack
added 2026/01/18 10:28 a.m.6 views

WordPress AJAX Hits Counter + Popular Posts Widget plugin <= 0.10.210305 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Nabil Irawan in WordPress Plugin AJAX Hits Counter + Popular Posts Widget versions = 0.10.210305...

5.4CVSS5.4AI score0.00265EPSS
Exploits0Affected Software1
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2018-21446

Malware in sbrugna...

9.8CVSS9.2AI score0.01391EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-24177

Malicious code in bioql PyPI...

7.5CVSS6.3AI score0.00312EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-2895

Malicious code in bioql PyPI...

7.3CVSS6.3AI score0.00275EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2025-24172

Malicious code in bioql PyPI...

7.5CVSS6.3AI score0.00275EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-52058

Malicious code in bioql PyPI...

7.1CVSS8.7AI score0.00166EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2023-26838

Malicious code in bioql PyPI...

8.8CVSS8.5AI score0.00271EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2025/08/11 9:31 p.m.6 views

Mattermost Confluence Plugin has Improper Check for Unusual or Exceptional Conditions

Mattermost Confluence Plugin versions 1.5.0 fails to handle unexpected request bodies, allowing attackers to crash the plugin via constant hits to the server webhook endpoint with an invalid request body...

7.5CVSS7AI score0.00275EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2025/08/11 7:15 p.m.4 views

CVE-2025-54463

Mattermost Confluence Plugin version 1.5.0 fails to handle unexpected request body which allows attackers to crash the plugin via constant hit to server webhook endpoint with an invalid request body...

7.5CVSS0.00275EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 4:46 a.m.6 views

CVE-2023-22709

Cross-Site Request Forgery CSRF vulnerability in Atif N SRS Simple Hits Counter plugin = 1.1.0 versions...

8.8CVSS7.1AI score0.00271EPSS
Exploits0References1
Rows per page
Query Builder