Lucene search
K

4 matches found

Vulnrichment
Vulnrichment
added 2026/01/20 3:25 a.m.6 views

CVE-2025-14798 LearnPress – WordPress LMS Plugin <= 4.3.2.4 - Missing Authorization to Unauthenticated Sensitive User Information Disclosure via REST API

The LearnPress – WordPress LMS Plugin for WordPress is vulnerable to Sensitive Information Exposure in versions up to, and including, 4.3.2.4 via the getitempermissionscheck function. This makes it possible for unauthenticated attackers to extract sensitive data including user first names and las...

5.3CVSS5.5AI score0.00246EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/01/16 11:31 p.m.6 views

CVE-2020-36926

SmarterTrack 7922 contains an information disclosure vulnerability in the Chat Management search form that reveals agent identification details. Attackers can access the vulnerable /Management/Chat/frmChatSearch.aspx endpoint to retrieve agents' first and last names along with their unique...

7.5CVSS6.3AI score0.00489EPSS
Exploits1References1
CNNVD
CNNVD
added 2023/12/10 12:0 a.m.5 views

Zammad Security Vulnerability

Zammad is a suite of ticket management software from the German company Zammad. A security vulnerability exists in Zammad versions prior to 6.2.0 that stems from an attacker's ability to trigger a phishing link in a generated notification email via a carefully crafted first or last name...

5.3CVSS6.7AI score0.00441EPSS
Exploits0References2
Packet Storm
Packet Storm
added 2018/05/18 12:0 a.m.24 views

SAP NetWeaver Web Dynpro Information Disclosure

Application: SAP NetWeaver Web Dynpro 6.4 to 7.5 - Information disclosure Versions Affected: SAP NetWeaver 6.4 - 7.5 Vendor URL: http://SAP.com Bugs: Information disclosure Enumerate users Sent: 2016-12-15 Reported: 2016-12-15 Date of Public Advisory: 09.02.2016 Reference: SAP Security Note 23445...

7.4AI score
Exploits0
Rows per page
Query Builder