Lucene search
+L

19 matches found

RedhatCVE
RedhatCVE
added 2026/04/13 7:25 p.m.7 views

CVE-2026-39667

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Jongmyoung Kim Korea SNS korea-sns allows DOM-Based XSS.This issue affects Korea SNS: from n/a through = 1.7.0...

5.9CVSS5.8AI score0.00172EPSS
Exploits0References1
NVD
NVD
added 2026/04/08 9:16 a.m.6 views

CVE-2026-39667

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Jongmyoung Kim Korea SNS korea-sns allows DOM-Based XSS.This issue affects Korea SNS: from n/a through = 1.7.0...

5.9CVSS0.00172EPSS
Exploits0References1
CVE
CVE
added 2026/04/08 8:30 a.m.7 views

CVE-2026-39667

CVE-2026-39667 describes a DOM-based XSS in the WordPress Korea SNS plugin (korea-sns) for WordPress, affected versions up to and including 1.7.0. The root cause is improper neutralization of input during web page generation, enabling cross-site scripting. The vulnerability impacts Korea SNS user...

5.9CVSS5.9AI score0.00172EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/04/08 8:30 a.m.27 views

CVE-2026-39667 WordPress Korea SNS plugin <= 1.7.0 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Jongmyoung Kim Korea SNS korea-sns allows DOM-Based XSS.This issue affects Korea SNS: from n/a through = 1.7.0...

5.9CVSS0.00172EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/04/08 8:30 a.m.4 views

CVE-2026-39667

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Jongmyoung Kim Korea SNS korea-sns allows DOM-Based XSS.This issue affects Korea SNS: from n/a through = 1.7.0...

5.9AI score0.00172EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/04/08 12:0 a.m.8 views

WordPress plugin Korea SNS 跨站脚本漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

5.9CVSS5.6AI score0.00172EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/04/08 12:0 a.m.6 views

PT-2026-31229

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Jongmyoung Kim Korea SNS korea-sns allows DOM-Based XSS.This issue affects Korea SNS: from n/a through = 1.7.0...

5.9AI score0.00172EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-51769

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.00294EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 5:16 a.m.7 views

CVE-2023-47670

Cross-Site Request Forgery CSRF vulnerability in Jongmyoung Kim Korea SNS.This issue affects Korea SNS: from n/a through 1.6.3...

8.8CVSS8AI score0.00294EPSS
Exploits0References1
WPVulnDB
WPVulnDB
added 2023/11/23 12:0 a.m.15 views

Korea SNS <= 1.6.4 - Settings Update via CSRF

Description The plugin does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack...

8.8CVSS8.5AI score0.00294EPSS
Exploits0References1
NVD
NVD
added 2023/11/18 9:15 p.m.16 views

CVE-2023-47670

Cross-Site Request Forgery CSRF vulnerability in Jongmyoung Kim Korea SNS.This issue affects Korea SNS: from n/a through 1.6.3...

8.8CVSS0.00294EPSS
Exploits0References1
OSV
OSV
added 2023/11/18 9:15 p.m.1 views

CVE-2023-47670

Cross-Site Request Forgery CSRF vulnerability in Jongmyoung Kim Korea SNS.This issue affects Korea SNS: from n/a through 1.6.3...

8.8CVSS7.3AI score0.00294EPSS
Exploits0References1
Prion
Prion
added 2023/11/18 9:15 p.m.16 views

Cross site request forgery (csrf)

Cross-Site Request Forgery CSRF vulnerability in Jongmyoung Kim Korea SNS.This issue affects Korea SNS: from n/a through 1.6.3...

6.8CVSS7.2AI score0.00294EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/11/18 8:54 p.m.25 views

CVE-2023-47670 WordPress Korea SNS Plugin <= 1.6.3 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in Jongmyoung Kim Korea SNS.This issue affects Korea SNS: from n/a through 1.6.3...

4.3CVSS8.9AI score0.00294EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/11/18 8:54 p.m.13 views

CVE-2023-47670 WordPress Korea SNS Plugin <= 1.6.3 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in Jongmyoung Kim Korea SNS.This issue affects Korea SNS: from n/a through 1.6.3...

4.3CVSS7.2AI score0.00294EPSS
Exploits0References1
CVE
CVE
added 2023/11/18 8:54 p.m.54 views

CVE-2023-47670

CSRF in the Korea SNS WordPress plugin (CVE-2023-47670) affects versions

8.8CVSS8AI score0.00294EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2023/11/18 12:0 a.m.1 views

WordPress Plugin Korea SNS Cross-Site Request Forgery Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exists in...

8.8CVSS6.5AI score0.00294EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/11/18 12:0 a.m.2 views

PT-2023-30556 · Korea Sns · Korea Sns

Name of the Vulnerable Software and Affected Versions: Korea SNS versions 1.6.3 and earlier Description: The issue is a Cross-Site Request Forgery CSRF vulnerability. This type of vulnerability allows an attacker to trick a user into performing unintended actions on a web application that the use...

8.8CVSS8.5AI score0.00294EPSS
Exploits0References6
Patchstack
Patchstack
added 2023/11/08 12:0 a.m.9 views

WordPress Korea SNS Plugin <= 1.6.4 is vulnerable to Cross Site Request Forgery (CSRF)

Software Korea SNS Type Plugin Vulnerable versions = 1.6.4 Fixed in 1.6.5 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-47670 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID ecfef873e396 Credits LEE SE HYOUNG...

8.8CVSS6.5AI score0.00294EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder