Lucene search
K

7 matches found

Japan Vulnerability Notes
Japan Vulnerability Notes
added 2024/06/19 12:0 a.m.18 views

JVN#60331535: WordPress plugin "SiteGuard WP Plugin" may leak the customized path to the login page

WordPress plugin "SiteGuard WP Plugin" provided by EG Secure Solutions Inc. provides a functionality to customize the path to the login page wp-login.php. The plugin implements a measure to avoid redirection from other URLs, but missed to implement a measure to avoid redirection from...

5.3CVSS5.4AI score0.01174EPSS
Exploits0
CISA KEV Catalog
CISA KEV Catalog
added 2021/11/03 12:0 a.m.17 views

Zoho ManageEngine ServiceDesk Plus (SDP) File Upload Vulnerability

Zoho ManageEngine ServiceDesk Plus SDP contains an unspecified vulnerability that allows remote users to upload files via login page customization...

7.5CVSS6.4AI score0.64051EPSS
In wildExploits5
VulnCheck KEV
VulnCheck KEV
added 2020/12/23 12:0 a.m.7 views

VulnCheck KEV: CVE-2019-8394

Zoho ManageEngine ServiceDesk Plus SDP contains an unspecified vulnerability that allows remote users to upload files via login page customization...

7.5CVSS6.8AI score0.64051EPSS
Exploits5References1
OSV
OSV
added 2019/02/17 4:29 a.m.5 views

CVE-2019-8394

Zoho ManageEngine ServiceDesk Plus SDP before 10.0 build 10012 allows remote attackers to upload arbitrary files via login page customization...

6.5CVSS6.9AI score0.64051EPSS
Exploits5References4
Prion
Prion
added 2019/02/17 4:29 a.m.22 views

Design/Logic Flaw

Zoho ManageEngine ServiceDesk Plus SDP before 10.0 build 10012 allows remote attackers to upload arbitrary files via login page customization...

4CVSS6.5AI score0.64051EPSS
Exploits5References3Affected Software1
NVD
NVD
added 2019/02/17 4:29 a.m.16 views

CVE-2019-8394

Zoho ManageEngine ServiceDesk Plus SDP before 10.0 build 10012 allows remote attackers to upload arbitrary files via login page customization...

7.5CVSS6.5AI score0.64051EPSS
Exploits5References4
Cvelist
Cvelist
added 2019/02/17 4:0 a.m.23 views

CVE-2019-8394

Zoho ManageEngine ServiceDesk Plus SDP before 10.0 build 10012 allows remote attackers to upload arbitrary files via login page customization...

6.5AI score0.64051EPSS
Exploits5References3
Rows per page
Query Builder