CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

52 matches found

NVD•added 2021/04/23 7:15 p.m.•22 views

CVE-2021-20083

Improperly Controlled Modification of Object Prototype Attributes 'Prototype Pollution' in jquery-plugin-query-object 2.2.3 allows a malicious user to inject properties into Object.prototype...

8.8CVSS0.07286EPSS

Exploits2References4

Prion•added 2021/04/23 7:15 p.m.•30 views

Buffer overflow

Improperly Controlled Modification of Object Prototype Attributes 'Prototype Pollution' in jquery-plugin-query-object 2.2.3 allows a malicious user to inject properties into Object.prototype...

6.5CVSS8.5AI score0.07286EPSS

Exploits2References4Affected Software1

CVE•added 2021/04/23 6:47 p.m.•207 views

CVE-2021-20083

CVE-2021-20083 corresponds to a prototype-pollution vulnerability in the JavaScript library jquery-plugin-query-object at version 2.2.3 . The issue, described as “Improperly Controlled Modification of Object Prototype Attributes (Prototype Pollution),” allows a malicious user to inject properties...

8.8CVSS8.3AI score0.07286EPSS

Exploits2References4Affected Software1

Cvelist•added 2021/04/23 6:47 p.m.•24 views

CVE-2021-20083

Improperly Controlled Modification of Object Prototype Attributes 'Prototype Pollution' in jquery-plugin-query-object 2.2.3 allows a malicious user to inject properties into Object.prototype...

8.8AI score0.07286EPSS

Exploits2References4

CNNVD•added 2021/04/23 12:0 a.m.•7 views

jquery-plugin-query-object 安全漏洞

jquery-plugin-query-object is an application. It is used for query string modification and creation in jQuery. A security vulnerability exists in jquery-plugin-query-object 2.2.3, which stems from an improperly controlled modification of the object prototype property that allows a malicious user ...

8.8CVSS7.8AI score0.07286EPSS

Exploits2References6

CNNVD•added 2020/11/26 12:0 a.m.•2 views

Djvalidator Security Vulnerability

Djvalidator is a jquery plugin for validating web forms from the individual developer David Esneyder Jerez. A security vulnerability exists in djvalidator that stems from vulnerability to regular expression denial of service...

7.5CVSS7.1AI score0.00398EPSS

Exploits1References2

0day.today•added 2019/09/12 12:0 a.m.•63 views

WordPress SlickQuiz 1.3.7.1 Cross Site Scripting Vulnerability

Exploit for php platform in category web applications 1. ADVISORY INFORMATION ======================= Product: SlickQuiz Vendor URL: https://wordpress.org/plugins/slickquiz/ Type: Cross-Site Scripting CWE-79 Date found: 2019-05-30 Date published: 2019-09-10 CVSSv3 Score: 6.1...

4.3CVSS0.0057EPSS

Exploits4

OSV•added 2019/07/19 4:15 p.m.•1 views

CVE-2019-1010113

Premium Software CLEditor 1.4.5 and earlier is affected by: Cross Site Scripting XSS. The impact is: An attacker might be able to inject arbitrary html and script code into the web site. The component is: jQuery plug-in. The attack vector is: the victim must open a crafted href attribute of a lin...

6.1CVSS6.4AI score

Exploits0References1

Drupal•added 2015/05/06 12:0 a.m.•22 views

Mobile sliding menu - Less Critical - Cross Site Scripting (XSS) - SA-CONTRIB-2015-108

The mobile sliding menu module integrates the mmenu jQuery plugin for creating slick, app look-alike sliding menus for your mobile website. The module doesn't sufficiently sanitize user supplied text, thereby exposing a Cross Site Scripting vulnerability. This vulnerability is mitigated by the fa...

2.1CVSS6AI score0.00209EPSS

Exploits0References11

WPVulnDB•added 2015/02/09 12:0 a.m.•17 views

CrossSlide jQuery Plugin <= 2.0.5 - Stored XSS & CSRF

The crossslide-jquery-plugin-for-wordpress WordPress plugin was affected by a Stored XSS & CSRF security vulnerability...

6.8CVSS2.6AI score0.00095EPSS

Exploits1References1Affected Software1

Packet Storm•added 2015/02/09 12:0 a.m.•26 views

WordPress Cross Slide 2.0.5 Cross Site Request Forgery / Cross Site Scripting

Title: WordPress 'Cross Slide' plugin - XSS/CSRF Version: 2.0.5 Author: Morten Nørtoft, Kenneth Jepsen, Mikkel Vej Date: 2015/01/26 Download: https://wordpress.org/plugins/crossslide-jquery-plugin-for-wordpress/ Contacted WordPress: 2015/01/26...

7.4AI score

Exploits0

Packet Storm•added 2012/04/06 12:0 a.m.•28 views

Uploadify 2.1.4 Cross Site Scripting / Shell Upload

waraxe-2012-SA083 - Multiple Vulnerabilities in Uploadify 2.1.4 =============================================================================== Author: Janek Vind "waraxe" Date: 05. April 2012 Location: Estonia, Tartu Web: http://www.waraxe.us/advisory-83.html Description of vulnerable software:...

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by