Lucene search
K

8 matches found

EUVD
EUVD
added 2026/06/22 1:18 p.m.6 views

EUVD-2026-38241

The Loki datasource plugin's callResource handler contains a path traversal vulnerability. An authenticated Viewer-role user can escape the plugin's resource sandbox and access administrative Loki endpoints e.g. /config, /services, /ready to extract sensitive backend configuration and internal...

7.7CVSS5.9AI score0.00394EPSS
Exploits0References1
AlpineLinux
AlpineLinux
added 2026/06/22 1:18 p.m.5 views

CVE-2026-42129

The Loki datasource plugin's callResource handler contains a path traversal vulnerability. An authenticated Viewer-role user can escape the plugin's resource sandbox and access administrative Loki endpoints e.g. /config, /services, /ready to extract sensitive backend configuration and internal...

7.7CVSS5.9AI score0.00394EPSS
Exploits0
CNNVD
CNNVD
added 2026/05/02 12:0 a.m.9 views

WordPress plugin PixelYourSite Pro 代码问题漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

7.2CVSS6AI score0.00577EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/05/02 12:0 a.m.11 views

WordPress plugin Ona 代码问题漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

4.4CVSS6AI score0.0025EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/04/02 12:0 a.m.8 views

WordPress plugin Webmention 代码问题漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. WordPres...

7.2CVSS6AI score0.00302EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/12/11 12:0 a.m.6 views

WordPress plugin RSS Aggregator by Feedzy 代码问题漏洞

WordPress RSS Aggregator by Feedzy is a lightweight plugin designed for WordPress that focuses on automatically grabbing content from external RSS feeds and syndicating it to your website. WordPress RSS Aggregator by Feedzy has a code issue vulnerability that stems from the existence of a blind...

5.8CVSS7.1AI score0.00223EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/10/11 12:0 a.m.7 views

WordPress plugin WP Scraper 代码问题漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to set up personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. WordPress...

6.8CVSS6.8AI score0.0032EPSS
Exploits0References2
OSV
OSV
added 2024/07/09 5:15 a.m.4 views

CVE-2024-37171

SAP Transportation Management Collaboration Portal allows an attacker with non-administrative privileges to send a crafted request from a vulnerable web application. This will trigger the application handler to send a request to an unintended service, which may reveal information about that...

5CVSS5.8AI score0.00353EPSS
Exploits0References2
Rows per page
Query Builder