Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

17 matches found

NVD
NVDadded 2025/09/03 3:15 p.m.3 views

CVE-2025-58631

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ZEEN101 IssueM issuem allows DOM-Based XSS.This issue affects IssueM: from n/a through = 2.9.0...

5.9CVSS0.00043EPSS
Exploits0References1
CNVD
CNVDadded 2025/08/15 12:0 a.m.1 views

WordPress Software Issue Manager plugin cross-site scripting vulnerability

The WordPress Software Issue Manager plugin is a project-based WordPress plugin for tracking software defects, issues, tasks, and product feature requests, with support for customized reporting. The WordPress Software Issue Manager plugin suffers from a cross-site scripting vulnerability that ste...

6.4CVSS6AI score0.00072EPSS
Exploits0References1
Cvelist
Cvelistadded 2025/08/12 4:25 a.m.3 views

CVE-2025-8314 Software Issue Manager <= 5.0.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via noaccess_msg Parameter

The Software Issue Manager plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘noaccessmsg parameter in all versions up to, and including, 5.0.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...

6.4CVSS0.00072EPSS
Exploits0References4
Vulnrichment
Vulnrichmentadded 2025/08/12 4:25 a.m.1 views

CVE-2025-8314 Software Issue Manager <= 5.0.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via noaccess_msg Parameter

The Software Issue Manager plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘noaccessmsg parameter in all versions up to, and including, 5.0.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...

6.4CVSS6AI score0.00072EPSS
Exploits0References4
CNNVD
CNNVDadded 2025/08/12 12:0 a.m.1 views

WordPress plugin Software Issue Manager 跨站脚本漏洞

The WordPress Software Issue Manager plugin is a project-based WordPress plugin for tracking software defects, issues, tasks, and product feature requests, with support for customized reporting. The WordPress Software Issue Manager plugin suffers from a cross-site scripting vulnerability that ste...

6.4CVSS5.9AI score0.00072EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2025/08/12 12:0 a.m.2 views

PT-2025-32624 · WordPress · Software Issue Manager

Name of the Vulnerable Software and Affected Versions: Software Issue Manager plugin for WordPress versions up to and including 5.0.1 Description: The Software Issue Manager plugin for WordPress is susceptible to Stored Cross-Site Scripting through the noaccess msg parameter due to insufficient...

6.4CVSS6.2AI score0.00072EPSS
Exploits0References9
Patchstack
Patchstackadded 2025/08/11 10:5 p.m.3 views

WordPress Software Issue Manager plugin <= 5.0.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via noaccess_msg Parameter vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via noaccessmsg Parameter vulnerability discovered by muhammad yudha in WordPress Plugin Software Issue Manager versions = 5.0.0...

6.4CVSS5.5AI score0.00072EPSS
Exploits0References1Affected Software1
seebug.org
seebug.orgadded 2014/07/01 12:0 a.m.15 views

Helpdesk Issue Manager 0.x issue.php id Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/15604/info Helpdesk Issue Manager is prone to multiple SQL injection vulnerabilities. Successful exploitation could result in a compromise of the application, disclosure or modification of data, or may permit an attacker ...

7.1AI score
Exploits0
seebug.org
seebug.orgadded 2014/07/01 12:0 a.m.11 views

Helpdesk Issue Manager 0.x find.php Multiple Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/15604/info Helpdesk Issue Manager is prone to multiple SQL injection vulnerabilities. Successful exploitation could result in a compromise of the application, disclosure or modification of data, or may permit an attacker ...

7.1AI score
Exploits0
NVD
NVDadded 2005/12/21 11:3 a.m.8 views

CVE-2005-4453

UserProfile.cs in Ultraapps Issue Manager before 2.1 allows remote authenticated users to gain administrator privileges by modifying the original 1 pUseruserid and 2 Useruserid parameters to UserProfile.aspx, then modifying the password field...

9CVSS6.7AI score0.00729EPSS
Exploits0References5
CVE
CVEadded 2005/12/21 11:0 a.m.40 views

CVE-2005-4453

CVE-2005-4453 concerns Ultraapps Issue Manager prior to 2.1. A remote authenticated user can gain administrator privileges by tampering with parameters in UserProfile.aspx (p_User_user_id and User_user_id) and then modifying the password field. No patch or remediation details are provided in the ...

9CVSS7.1AI score0.00729EPSS
Exploits0References5Affected Software1
Cvelist
Cvelistadded 2005/12/21 11:0 a.m.15 views

CVE-2005-4453

UserProfile.cs in Ultraapps Issue Manager before 2.1 allows remote authenticated users to gain administrator privileges by modifying the original 1 pUseruserid and 2 Useruserid parameters to UserProfile.aspx, then modifying the password field...

6.7AI score0.00729EPSS
Exploits0References5
securityvulns
securityvulnsadded 2005/12/21 12:0 a.m.20 views

IRM 013: Ultraapps Issue Manager is vulnerable to Privilege Escalation

---------------------------------------------------------------------- IRM Security Advisory No. 013 Ultraapps Issue Manager is vulnerable to Privilege Escalation Vulnerablity Type / Importance: Privilege Escalation / High Problem discovered: November 25th 2005 Vendor contacted: November 25th 200...

0.3AI score
Exploits0
exploitpack
exploitpackadded 2005/11/28 12:0 a.m.21 views

Helpdesk Issue Manager 0.x - issue.php?id SQL Injection

Helpdesk Issue Manager 0.x - issue.php?id SQL Injection source: https://www.securityfocus.com/bid/15604/info Helpdesk Issue Manager is prone to multiple SQL injection vulnerabilities. Successful exploitation could result in a compromise of the application, disclosure or modification of data, or m...

0.4AI score
Exploits0
Exploit DB
Exploit DBadded 2005/11/28 12:0 a.m.21 views

Helpdesk Issue Manager 0.x - &#039;find.php&#039; Multiple SQL Injections

source: https://www.securityfocus.com/bid/15604/info Helpdesk Issue Manager is prone to multiple SQL injection vulnerabilities. Successful exploitation could result in a compromise of the application, disclosure or modification of data, or may permit an attacker to exploit vulnerabilities in the...

7.4AI score
Exploits0
exploitpack
exploitpackadded 2005/11/28 12:0 a.m.11 views

Helpdesk Issue Manager 0.x - find.php Multiple SQL Injections

Helpdesk Issue Manager 0.x - find.php Multiple SQL Injections source: https://www.securityfocus.com/bid/15604/info Helpdesk Issue Manager is prone to multiple SQL injection vulnerabilities. Successful exploitation could result in a compromise of the application, disclosure or modification of data...

0.2AI score
Exploits0
securityvulns
securityvulnsadded 2005/11/25 12:0 a.m.17 views

Helpdesk Issue Manager v0.9 SQL inj.

Helpdesk Issue Manager v0.9 SQL inj. Vuln. dicovered by : r0t Date: 25 nov. 2005 Orginal advisory:http://pridels.blogspot.com/2005/11/helpdesk-issue-manager-v09-sql-inj.html Vendor:http://helpdesk.centralmanclc.com/ affected vesion:v0.9 and prior Vuln. Description: Input passed to the "id"...

0.7AI score
Exploits0
Rows per page
Query Builder