Lucene search
K

14 matches found

Patchstack
Patchstack
added 2025/08/15 3:40 p.m.6 views

WordPress Dropshix plugin <= 4.0.14 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Vinit Lakra Patchstack Alliance in WordPress Plugin Dropshix versions = 4.0.14...

5.9CVSS5.8AI score0.004EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/08/04 9:43 p.m.4 views

WordPress BitFire plugin <= 4.5 - Unauthenticated Information Exposure vulnerability

Unauthenticated Information Exposure vulnerability discovered by Aurélien BOURDOIS Elymaro in WordPress Plugin BitFire Security versions = 4.5...

5.3CVSS6.7AI score0.00296EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2025/07/01 10:41 p.m.8 views

WordPress Magic Buttons for Elementor plugin <= 1.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via magic-button Shortcode vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via magic-button Shortcode vulnerability discovered by muhammad yudha in WordPress Plugin Magic Buttons for Elementor versions = 1.0...

6.4CVSS5.5AI score0.00206EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2025/06/27 2:57 p.m.6 views

WordPress Beauty Contact Popup Form plugin <= 6.0 - Cross Site Scripting (XSS) Vulnerability

Cross Site Scripting XSS Vulnerability discovered by Nguyen Ngoc Quang Bach maysbachs in WordPress Plugin Beauty Contact Popup Form versions = 6.0...

5.9CVSS5.9AI score0.00182EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/06/27 2:54 p.m.9 views

WordPress Accept Stripe Payments Using Contact Form 7 plugin <= 3.0 - Sensitive Data Exposure Vulnerability

Sensitive Data Exposure Vulnerability discovered by astra.r3verii in WordPress Plugin Accept Stripe Payments Using Contact Form 7 versions = 3.0...

5.3CVSS6.7AI score0.00237EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/06/27 2:46 p.m.8 views

WordPress Gmedia Photo Gallery plugin <= 1.23.0 - Local File Inclusion Vulnerability

Local File Inclusion Vulnerability discovered by LVT-tholv2k in WordPress Plugin Gmedia Photo Gallery versions = 1.23.0...

7.5CVSS6.7AI score0.00477EPSS
Exploits0Affected Software1
F5 Networks
F5 Networks
added 2025/05/27 4:7 p.m.17 views

K000151542: OpenSSL vulnerability CVE-2025-4575

Security Advisory Description Issue summary: Use of -addreject option with the openssl x509 application adds a trusted use instead of a rejected use for a certificate. Impact summary: If a user intends to make a trusted certificate rejected for a particular use it will be instead marked as truste...

6.5CVSS7.5AI score0.00306EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 7:45 p.m.9 views

CVE-2021-32618

The Python "Flask-Security-Too" package is used for adding security features to your Flask application. It is an is an independently maintained version of Flask-Security based on the 3.0.0 version of Flask-Security. All versions of Flask-Security-Too allow redirects after many successful views e....

6.1CVSS6.9AI score0.03289EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/05/13 11:7 p.m.7 views

WordPress PeepSo Core: File Uploads plugin <= 6.4.6.0 - Insecure Direct Object Reference to Unauthenticated Sensitive Information Exposure via file_download vulnerability

Insecure Direct Object Reference to Unauthenticated Sensitive Information Exposure via filedownload vulnerability discovered by Bikram Kharal in WordPress Plugin PeepSo Core: File Uploads versions = 6.4.6.0...

5.3CVSS8.2AI score0.00248EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2025/05/07 12:32 p.m.7 views

WordPress Bold Page Builder plugin <= 5.3.2 - Cross Site Scripting (XSS) Vulnerability

Cross Site Scripting XSS Vulnerability discovered by Peter Thaleikis in WordPress Plugin Bold Page Builder versions = 5.3.2...

6.5CVSS6.8AI score0.00254EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/05/05 9:1 p.m.10 views

WordPress User Registration plugin <= 4.2.1 - Insecure Direct Object Reference to Unauthenticated Limited User Deletion vulnerability

Insecure Direct Object Reference to Unauthenticated Limited User Deletion vulnerability discovered by wesley wcraft in WordPress Plugin User Registration versions = 4.2.1...

5.3CVSS8.4AI score0.00376EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2025/04/01 4:6 p.m.12 views

WordPress Beam me up Scotty – Back to Top Button plugin <= 1.0.23 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Webula in WordPress Plugin Beam me up Scotty versions = 1.0.23...

5.9CVSS6.9AI score0.00317EPSS
Exploits1Affected Software1
Patchstack
Patchstack
added 2025/03/31 7:47 p.m.9 views

WordPress Avada Builder plugin <= 3.11.14 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by Webbernaut in WordPress Plugin Fusion Builder versions = 3.11.14...

6.4CVSS6.3AI score0.00256EPSS
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2005/01/11 12:0 a.m.52 views

уязвимость в AlaCart Version 2.18

Обнаружена уязвимость в системе AlaCart Version 2.18 Software / Application - Alabanza AlaCart Shopping Cart Problem-Type - удаленная Vulnerability - просмотр информации о транзакциях. Vendor - alabanza.com Risk / Severity - низкий Exploit -...

7.1AI score
Exploits0
Rows per page
Query Builder