Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

RedhatCVE
RedhatCVEadded 2025/05/23 8:20 a.m.4 views

CVE-2024-8092

The Accordion Image Menu WordPress plugin through 3.1.3 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS payloads via a CSRF attack...

5.4CVSS5.8AI score0.00185EPSS
Exploits1References1
Patchstack
Patchstackadded 2024/09/17 10:2 a.m.1 views

WordPress Accordion Image Menu plugin <= 3.1.3 - Stored XSS via CSRF vulnerability

Stored XSS via CSRF vulnerability discovered by Daniel Ruf in WordPress Plugin Accordion Image Menu versions = 3.1.3...

5.4CVSS6AI score0.00185EPSS
Exploits1References1Affected Software1
OSV
OSVadded 2024/09/17 6:15 a.m.0 views

CVE-2024-8092

The Accordion Image Menu WordPress plugin through 3.1.3 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS payloads via a CSRF attack...

5.4CVSS5.8AI score
Exploits0References1
NVD
NVDadded 2024/09/17 6:15 a.m.9 views

CVE-2024-8092

The Accordion Image Menu WordPress plugin through 3.1.3 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS payloads via a CSRF attack...

5.4CVSS0.00185EPSS
Exploits1References1
CVE
CVEadded 2024/09/17 6:0 a.m.45 views

CVE-2024-8092

The CVE-2024-8092 entry concerns the WordPress Accordion Image Menu plugin (versions 3.1.3 and earlier) with CSRF checks missing in several areas and insufficient sanitisation/escapes, enabling a logged-in administrator to inject Stored XSS via CSRF. Affected component: plugin functionality handl...

5.4CVSS5.2AI score0.00185EPSS
Exploits1References1Affected Software1
Patchstack
Patchstackadded 2024/09/17 12:0 a.m.9 views

WordPress Accordion Image Menu Plugin <= 3.1.3 is vulnerable to Cross Site Request Forgery (CSRF)

Software Accordion Image Menu Type Plugin Vulnerable versions = 3.1.3 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-8092 Patch priority Low CVSS severity Low 7.1 Developer Claim ownership PSID 74d0d44e3282 Credits Daniel Ruf Requir...

5.4CVSS6.7AI score0.00185EPSS
Exploits1References3Affected Software1
Hacker One
Hacker Oneadded 2017/12/25 1:27 p.m.20 views

Zomato: [www.zomato.com] Privilege Escalation - /php/restaurant_menus_handler.php

Introduction In the following ██████████ the endpoint /php/restaurantmenushandler.php was found. This endpoint is meant solely to be accessible for admins, however due to insufficient protections normal users can access this endpoint too. This results in any Zomato user being able to edit and...

Exploits0
seebug.org
seebug.orgadded 2014/07/01 12:0 a.m.26 views

Squito Gallery 1.0 - Cross Site Scripting Vulnerability

No description provided by source. ======================================================================================== | Title : Squito Gallery v.1.0 Cross Site Scripting Vulnerability | | Author : indoushka | | email : [email protected] | | Home : Souk Naamane - 04325 - Oum El Bouaghi -...

7.1AI score
Exploits0
Rows per page
Query Builder