Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

OSV
OSVadded 2023/12/23 10:15 a.m.3 views

CVE-2020-36769

The Widget Settings Importer/Exporter Plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the wpajaximportwidgetdataparameter AJAX action in versions up to, and including, 1.5.3 due to insufficient input sanitization and output escaping. This makes it possible for authenticated...

5.4CVSS5.9AI score0.00112EPSS
Exploits1References2
CVE
CVEadded 2023/12/23 9:36 a.m.32 views

CVE-2020-36769

CVE-2020-36769 affects the WordPress plugin Widget Settings Importer/Exporter (versions up to and including 1.5.3). The issue is a Stored Cross-Site Scripting vulnerability in the wp_ajax_import_widget_dataparameter AJAX action caused by insufficient input sanitization and output escaping. It ena...

7.4CVSS5AI score0.00112EPSS
Exploits1References2Affected Software1
SUSE CVE
SUSE CVEadded 2023/02/15 6:13 a.m.3 views

SUSE CVE-2007-0002

Multiple heap-based buffer overflows in WordPerfect Document importer/exporter libwpd before 0.8.9 allow user-assisted remote attackers to cause a denial of service application crash and possibly execute arbitrary code via a crafted WordPerfect file in which values to loop counters are not proper...

9.3CVSS8.2AI score0.09078EPSS
Exploits0References4
Patchstack
Patchstackadded 2020/04/15 12:0 a.m.9 views

WordPress Widget Settings Importer/Exporter plugin <= 1.5.3 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability

Authenticated Stored Cross-Site Scripting XSS vulnerability discovered by WordFence in WordPress Widget Settings Importer/Exporter plugin versions = 1.5.3. Solution This plugin has been closed as of April 13, 2020 and is not available for download. Reason: Security Issue...

2.8AI score
Exploits0References2Affected Software1
Packet Storm
Packet Stormadded 2015/03/29 12:0 a.m.34 views

WordPress Aspose Importer / Exporter 1.0 File Download

Exploit Title : Wordpress Aspose Importer & Exporter v1.0 Plugin File Download Vulnerability Exploit Author : Ashiyane Digital Security Team Vendor Homepage: https://wordpress.org/plugins/aspose-importer-exporter/ Download Link :...

Exploits0
WPVulnDB
WPVulnDBadded 2015/03/28 12:0 a.m.12 views

Aspose Importer & Exporter 1.0 - Arbitrary File Download

The Aspose Importer & Exporter WordPress plugin was affected by an Arbitrary File Download security vulnerability...

2.5AI score
Exploits0References1Affected Software1
UbuntuCve
UbuntuCveadded 2007/03/16 9:19 p.m.25 views

CVE-2007-1466

Integer overflow in the WP6GeneralTextPacket::readContents function in WordPerfect Document importer/exporter libwpd before 0.8.9 allows user-assisted remote attackers to cause a denial of service application crash and possibly execute arbitrary code via a crafted WordPerfect file, a different...

6.8CVSS6.4AI score0.12168EPSS
Exploits0References1
Rows per page
Query Builder