CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in LDD Web Design LDD Directory Lite ldd-directory-lite allows Reflected XSS.This issue affects LDD Directory Lite: from n/a through = 3.3...

7.1CVSS7.2AI score0.0041EPSS

Exploits0References1

NVD•added 2025/01/07 4:15 a.m.•18 views

CVE-2024-12540

Rejected reason: REJECT DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2024-54288. Reason: This candidate is a reservation duplicate of CVE-2024-54288. Notes: All CVE users should reference CVE-2024-54288 instead of this candidate. All references and descriptions in this candidate have been...

Exploits0

Vulnrichment•added 2025/01/07 3:22 a.m.•5 views

CVE-2024-12540

...

6.3AI score

Exploits0

Cvelist•added 2025/01/07 3:22 a.m.•14 views

CVE-2024-12540

...

Exploits0

CVE•added 2025/01/07 3:22 a.m.•68 views

CVE-2024-12540

CVE-2024-12540 is rejected; this candidate is a reservation duplicate of CVE-2024-54288 and not in use.

6AI score

Exploits0

Positive Technologies•added 2025/01/07 12:0 a.m.•3 views

PT-2025-1890 · WordPress · Ldd Directory Lite

Name of the Vulnerable Software and Affected Versions: LDD Directory Lite plugin for WordPress versions prior to 3.4 Description: The issue is related to Reflected Cross-Site Scripting due to the use of remove query arg without appropriate escaping on the URL. This allows unauthenticated attacker...

6.1CVSS6.8AI score

Exploits0References6

NVD•added 2024/12/13 3:15 p.m.•7 views

CVE-2024-54288

7.1CVSS0.0041EPSS

Exploits0References1

Cvelist•added 2024/12/13 2:25 p.m.•16 views

CVE-2024-54288 WordPress LDD Directory Lite plugin <= 3.3 - Reflected Cross Site Scripting (XSS) vulnerability

7.1CVSS0.0041EPSS

Exploits0References1

Vulnrichment•added 2024/12/13 2:25 p.m.•10 views

CVE-2024-54288 WordPress LDD Directory Lite plugin <= 3.3 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in LDD Web Design LDD Directory Lite allows Reflected XSS.This issue affects LDD Directory Lite: from n/a through 3.3...

7.1CVSS7AI score0.0041EPSS

Exploits0References1

CVE•added 2024/12/13 2:25 p.m.•41 views

CVE-2024-54288

CVE-2024-54288 affects the WordPress plugin “LDD Directory Lite” up to version 3.3 (names/versions vary in sources). The issue is an Improper Neutralization of Input During Web Page Generation (XSS) leading to a reflected XSS vulnerability. The root cause is insufficient input handling in web pag...

7.1CVSS7.2AI score0.0041EPSS

Exploits0References1

CNNVD•added 2024/12/13 12:0 a.m.•4 views

WordPress plugin LDD Directory Lite 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

7.1CVSS7.9AI score0.0041EPSS

Exploits0References1

Positive Technologies•added 2024/12/13 12:0 a.m.•3 views

PT-2024-36169 · Unknown · Ldd Directory Lite

Name of the Vulnerable Software and Affected Versions: LDD Directory Lite versions n/a through 3.3 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting. This allows for Reflected XSS attacks. Recommendations: For...

7.1CVSS6AI score0.0041EPSS

Exploits0References3

Patchstack•added 2024/12/11 5:14 p.m.•3 views

WordPress LDD Directory Lite plugin <= 3.3 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by Mika Patchstack Alliance in WordPress Plugin LDD Directory Lite versions = 3.3...

7.1CVSS6.1AI score0.0041EPSS

Exploits0Affected Software1

CNNVD•added 2024/07/31 12:0 a.m.•18 views

Homebrew 安全漏洞

Homebrew is a package manager in the Homebrew open source. A security vulnerability exists in Homebrew versions prior to 4.2.20, which stems from os/linux/elf.rb's use of ldd to load ELF files obtained from untrusted sources. An attacker can achieve code execution via an ELF file with a custom...

8.3CVSS7.3AI score0.0061EPSS

Exploits0References8

SUSE CVE•added 2023/02/15 4:4 a.m.•2 views

SUSE CVE-2019-1010023

GNU Libc current is affected by: Re-mapping current loaded library with malicious ELF file. The impact is: In worst case attacker may evaluate privileges. The component is: libld. The attack vector is: Attacker sends 2 ELF files to victim and asks to run ldd on it. ldd execute code. NOTE: Upstrea...

8.8CVSS9.7AI score0.03069EPSS

Exploits1References3

Veracode•added 2020/04/10 1:8 a.m.•33 views

Privilege Escalation

glibc is vulnerable to privilege escalation. A flaw was found in the way the ldd utility identified dynamically linked libraries. If an attacker could trick a user into running ldd on a malicious binary, it could result in arbitrary code execution with the privileges of the user running ldd...

6.9CVSS4AI score0.00538EPSS

Exploits1References16Affected Software1

NVD•added 2019/07/15 4:15 a.m.•24 views

CVE-2019-1010023

8.8CVSS8AI score0.03069EPSS

Exploits1References5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by