Lucene search
+L

141 matches found

CNNVD
CNNVD
added 2024/04/30 12:0 a.m.5 views

编号撤回

LibreOffice is an open source office software suite from The Document Foundation tdf. The product contains the applications Writer text documents, Calc spreadsheets, and Impress presentations. This CVE number has been withdrawn...

6.9AI score
Exploits0References2
WPVulnDB
WPVulnDB
added 2023/11/23 12:0 a.m.11 views

IMPress Listings <= 2.6.2 - Missing Authorization

Description The IMPress Listings plugin for WordPress is vulnerable to unauthorized access due to a missing capability check in versions up to, and including, 2.6.2. This makes it possible for unauthenticated attackers to perform unauthorized actions...

6.4AI score0.00317EPSS
Exploits0References1
Patchstack
Patchstack
added 2023/10/11 12:0 a.m.20 views

WordPress IMPress Listings Plugin <= 2.6.2 is vulnerable to Broken Access Control

Software IMPress Listings Type Plugin Vulnerable versions = 2.6.2 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2023-45633 Patch priority Medium CVSS severity Medium 6.5 Developer Claim ownership PSID 7bfb35b30d5c Credits Nguyen Anh Tien Required...

6.5AI score0.00317EPSS
Exploits0References1Affected Software1
Packet Storm
Packet Storm
added 2023/09/04 12:0 a.m.240 views

Impress CMS 1.3.9 Open Redirection

==================================================================================================================================== | Title : impress CMS v1.3.9 Open Redirect vulnerability | | Author : indoushka | | Tested on : windows 10 Français V.Pro / browser : Mozilla firefox 63.0.3 32-bit ...

7.1AI score
Exploits0
OSV
OSV
added 2023/05/10 8:15 a.m.4 views

CVE-2023-22711

Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Agent Evolution IMPress Listings plugin = 2.6.2 versions...

5.4CVSS6.7AI score0.00361EPSS
Exploits0References1
Prion
Prion
added 2023/05/10 8:15 a.m.17 views

Cross site scripting

Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Agent Evolution IMPress Listings plugin = 2.6.2 versions...

4.9CVSS5.2AI score0.00361EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/05/10 7:47 a.m.60 views

CVE-2023-22711

CVE-2023-22711 – WordPress IMPress Listings plugin

6.5CVSS5.5AI score0.00361EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/05/10 7:47 a.m.52 views

CVE-2023-22711 WordPress IMPress Listings Plugin <= 2.6.2 is vulnerable to Cross Site Scripting (XSS)

Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Agent Evolution IMPress Listings plugin = 2.6.2 versions...

6.5CVSS6AI score0.00361EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/05/10 12:0 a.m.16 views

WordPress plugin IMPress Listings 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

6.5CVSS6.6AI score0.00361EPSS
Exploits0References2
Patchstack
Patchstack
added 2023/04/06 12:0 a.m.14 views

WordPress IMPress Listings Plugin <= 2.6.2 is vulnerable to Cross Site Scripting (XSS)

Software IMPress Listings Type Plugin Vulnerable versions = 2.6.2 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-22711 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 0d7d7b89ac9d Credits István Márton Required...

6.5CVSS6AI score0.00361EPSS
Exploits0References1Affected Software1
SUSE CVE
SUSE CVE
added 2023/02/15 5:58 a.m.7 views

SUSE CVE-2010-2935

simpress.bin in the Impress module in OpenOffice.org OOo 2.x and 3.x before 3.3 does not properly handle integer values associated with dictionary property items, which allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted PowerPoi...

9.3CVSS8.1AI score0.07089EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2023/02/15 5:57 a.m.4 views

SUSE CVE-2010-2936

Integer overflow in simpress.bin in the Impress module in OpenOffice.org OOo 2.x and 3.x before 3.3 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via crafted polygons in a PowerPoint document that triggers a heap-based buffer overflow...

9.3CVSS8.4AI score0.07089EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2023/02/15 5:55 a.m.5 views

SUSE CVE-2010-4253

Heap-based buffer overflow in Impress in OpenOffice.org OOo 2.x and 3.x before 3.3 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted PNG file in an ODF or Microsoft Office document, as demonstrated by a PowerPoint aka PPT...

9.3CVSS8.2AI score0.10102EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/02/15 5:55 a.m.3 views

SUSE CVE-2010-4643

Heap-based buffer overflow in Impress in OpenOffice.org OOo 2.x and 3.x before 3.3 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted Truevision TGA TARGA file in an ODF or Microsoft Office document...

9.3CVSS8.2AI score0.10102EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/02/15 5:28 a.m.3 views

SUSE CVE-2014-3693

Use-after-free vulnerability in the socket manager of Impress Remote in LibreOffice 4.x before 4.2.7 and 4.3.x before 4.3.3 allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via a crafted request to TCP port 1599...

7.5CVSS8.1AI score0.04955EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/02/15 5:8 a.m.4 views

SUSE CVE-2016-1513

The Impress tool in Apache OpenOffice 4.1.2 and earlier allows remote attackers to cause a denial of service out-of-bounds read or write or execute arbitrary code via crafted MetaActions in an 1 ODP or 2 OTP file...

7.8CVSS7.8AI score0.04484EPSS
Exploits1References3
CNNVD
CNNVD
added 2022/10/11 12:0 a.m.2 views

LibreOffice 参数注入漏洞

LibreOffice is an open source office software suite from The Document Foundation tdf. The product includes the Writer text documents, Calc spreadsheets and Impress presentations applications. A security vulnerability exists in The Document Foundation LibreOffice versions 7.3 through 7.3.6 and 7.4...

6.3CVSS6.9AI score0.04354EPSS
Exploits0References15
CNVD
CNVD
added 2022/07/27 12:0 a.m.37 views

LibreOffice Trust Management Issue Vulnerability (CNVD-2022-54898)

LibreOffice is an open source office software suite from The Document Foundation tdf. The product includes applications such as Writer text documents, Calc spreadsheets, and Impress presentations.LibreOffice is vulnerable to a trust management issue. An attacker could use this vulnerability to...

7.5CVSS3.4AI score0.00998EPSS
Exploits0References1
CNVD
CNVD
added 2022/02/24 12:0 a.m.28 views

libreoffice trust management issue vulnerability (CNVD-2022-55626)

LibreOffice is an open source office software suite from The Document Foundation tdf. The product includes applications such as Writer text documents, Calc spreadsheets and Impress presentations. A trust management issue vulnerability exists in libreoffice, which stems from libreoffice: signature...

7.5CVSS7.5AI score0.00981EPSS
Exploits0References1
wpexploit
wpexploit
added 2021/10/18 12:0 a.m.473 views

IMPress for IDX Broker < 3.0.6 - Reflected Cross-Site Scripting

The plugin does not sanitise and escape the leadID parameter before outputting it back in attributes, leading to a Reflected Cross-Site Scripting issue https://examle.com/wp-admin/admin.php?page=edit-lead&leadID="alert/XSS/...

1.1AI score
Exploits0
Rows per page
Query Builder