CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2024-52053

Malicious code in bioql PyPI...

7.1CVSS8.7AI score0.00062EPSS

Exploits0References1

RedhatCVE•added 2025/02/04 10:22 p.m.•2 views

CVE-2024-53720

Cross-Site Request Forgery CSRF vulnerability in ole1986 WP-ISPConfig 3 wp-ispconfig3 allows Stored XSS.This issue affects WP-ISPConfig 3: from n/a through = 1.5.6...

7.1CVSS7.2AI score0.00062EPSS

Exploits0References1

NVD•added 2024/12/02 2:15 p.m.•8 views

CVE-2024-53720

Cross-Site Request Forgery CSRF vulnerability in ole1986 WP-ISPConfig 3 wp-ispconfig3 allows Stored XSS.This issue affects WP-ISPConfig 3: from n/a through = 1.5.6...

7.1CVSS0.00062EPSS

Exploits0References1

Cvelist•added 2024/12/02 1:48 p.m.•14 views

CVE-2024-53720 WordPress WP-ISPConfig 3 plugin <= 1.5.6 - CSRF to Stored XSS vulnerability

Cross-Site Request Forgery CSRF vulnerability in ole1986 WP-ISPConfig 3 wp-ispconfig3 allows Stored XSS.This issue affects WP-ISPConfig 3: from n/a through = 1.5.6...

7.1CVSS0.00062EPSS

Exploits0References1

Vulnrichment•added 2024/12/02 1:48 p.m.•8 views

CVE-2024-53720 WordPress WP-ISPConfig 3 plugin <= 1.5.6 - CSRF to Stored XSS vulnerability

Cross-Site Request Forgery CSRF vulnerability in ole1986 , MachineITSvcs WP-ISPConfig 3 allows Stored XSS.This issue affects WP-ISPConfig 3: from n/a through 1.5.6...

7.1CVSS6.8AI score0.00062EPSS

Exploits0References1

Patchstack•added 2024/11/22 12:0 a.m.•11 views

WordPress WP-ISPConfig 3 Plugin <= 1.5.6 is vulnerable to Cross Site Request Forgery (CSRF)

Software WP-ISPConfig 3 Type Plugin Vulnerable versions = 1.5.6 Fixed in N/A OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-53720 Patch priority Low CVSS severity Low 7.1 Developer Claim ownership PSID 074c852929e4 Credits SOPROBRO Required...

7AI score0.00062EPSS

Exploits0References1Affected Software1

NVD•added 2017/12/07 8:29 a.m.•9 views

CVE-2017-17384

ISPConfig 3.x before 3.1.9 allows remote authenticated users to obtain root access by creating a crafted cron job...

9CVSS8.2AI score0.00483EPSS

Exploits0References1

Prion•added 2017/12/07 8:29 a.m.•14 views

Design/Logic Flaw

ISPConfig 3.x before 3.1.9 allows remote authenticated users to obtain root access by creating a crafted cron job...

9CVSS8.1AI score0.00483EPSS

Exploits0References1Affected Software1

ATTACKERKB•added 2017/12/07 8:29 a.m.•3 views

CVE-2017-17384

ISPConfig 3.x before 3.1.9 allows remote authenticated users to obtain root access by creating a crafted cron job...

9CVSS5.5AI score0.00483EPSS

Exploits0References3

Cvelist•added 2017/12/07 8:0 a.m.•14 views

CVE-2017-17384

ISPConfig 3.x before 3.1.9 allows remote authenticated users to obtain root access by creating a crafted cron job...

8.2AI score0.00483EPSS

Exploits0References1

Packet Storm•added 2014/08/02 12:0 a.m.•18 views

ISPConfig 3.0.54p1 Local Root

Exploit Title: ISPConfig 3 authenticated admin Localroot vulnerability Date: 7/25/14 Exploit Author: mra Vendor Homepage: http://wwwispconfig.org Version: 3.0.54p1 Tested on: ubuntu, centos irc.criten.net elite-chat While logged in as admin user: 1 add a shell user 2 under option set gid to...

7.4AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by