Lucene search
K

518 matches found

Patchstack
Patchstack
added 2024/09/24 12:0 a.m.40 views

WordPress W3 Total Cache Plugin <= 2.7.5 is vulnerable to Sensitive Data Exposure

Software W3 Total Cache Type Plugin Vulnerable versions = 2.7.5 Fixed in 2.7.6 OWASP Top 10 A3: Sensitive Data Exposure Classification Sensitive Data Exposure CVE CVE-2023-5359 Patch priority Low CVSS severity Low 3.7 Developer Claim ownership PSID 553a33ae4238 Credits Ivan Kuzymchak Required...

7.5CVSS6.6AI score0.00813EPSS
Exploits1References3Affected Software1
Patchstack
Patchstack
added 2024/09/16 12:0 a.m.11 views

WordPress Geo Mashup Plugin <= 1.13.12 is vulnerable to Cross Site Scripting (XSS)

Software Geo Mashup Type Plugin Vulnerable versions = 1.13.12 Fixed in 1.13.13 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-44008 Patch priority Low CVSS severity Low 6.5 Developer Dylan Kuhn PSID d830e975a22f Credits LVT-tholv2k Required privilege Contributor...

6.5CVSS6.6AI score0.00298EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2024/09/13 12:0 a.m.9 views

WordPress NinjaTeam Header Footer Custom Code Plugin < 1.2 is vulnerable to Cross Site Scripting (XSS)

Software NinjaTeam Header Footer Custom Code Type Plugin Vulnerable versions 1.2 Fixed in 1.2 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-6493 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 618713328f1e Credits Takshal...

4.8CVSS5.9AI score0.00325EPSS
Exploits1References3Affected Software1
Patchstack
Patchstack
added 2024/09/11 12:0 a.m.10 views

WordPress GS Logo Slider Plugin < 3.6.9 is vulnerable to Cross Site Scripting (XSS)

Software GS Logo Slider Type Plugin Vulnerable versions 3.6.9 Fixed in 3.6.9 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-7716 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 7ab960e7c2f9 Credits Krugov Artyom Required...

4.8CVSS5.8AI score0.00332EPSS
Exploits1References4Affected Software1
Patchstack
Patchstack
added 2024/09/11 12:0 a.m.9 views

WordPress Flash & HTML5 Video Plugin <= 2.5.32 is vulnerable to Broken Access Control

Software Flash & HTML5 Video Type Plugin Vulnerable versions = 2.5.32 Fixed in 2.5.33 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-7727 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID b5ae27e206ad Credits Lucio Sá Required...

5.3CVSS6.6AI score0.00392EPSS
Exploits0References3Affected Software1
Patchstack
Patchstack
added 2024/09/10 12:0 a.m.12 views

WordPress Tutor LMS Plugin <= 2.7.4 is vulnerable to Cross Site Request Forgery (CSRF)

Software Tutor LMS Type Plugin Vulnerable versions = 2.7.4 Fixed in 2.7.5 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-2919 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID a0dbe6193554 Credits Ram Required privilege...

4.3CVSS6.7AI score0.00207EPSS
Exploits0References3Affected Software1
Patchstack
Patchstack
added 2024/09/10 12:0 a.m.12 views

WordPress Nova Blocks by Pixelgrade Plugin <= 2.1.7 is vulnerable to Cross Site Scripting (XSS)

Software Nova Blocks by Pixelgrade Type Plugin Vulnerable versions = 2.1.7 Fixed in 2.1.8 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-8241 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 1f5ae0b10869 Credits Francesco...

6.4CVSS5.8AI score0.00352EPSS
Exploits0References3Affected Software1
Patchstack
Patchstack
added 2024/09/06 12:0 a.m.15 views

WordPress Advanced Sermons Plugin <= 3.3 is vulnerable to Cross Site Scripting (XSS)

Software Advanced Sermons Type Plugin Vulnerable versions = 3.3 Fixed in 3.4 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-7599 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID d85d91823452 Credits vgo0 Required privilege...

6.4CVSS5.8AI score0.00298EPSS
Exploits0References3Affected Software1
Patchstack
Patchstack
added 2024/08/29 12:0 a.m.14 views

WordPress ElementsKit Pro Plugin <= 3.6.0 is vulnerable to Local File Inclusion

Software ElementsKit Pro Type Plugin Vulnerable versions = 3.6.0 Fixed in 3.6.8 OWASP Top 10 A3: Injection Classification Local File Inclusion CVE CVE-2024-43996 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 8da27be920b8 Credits Ngô Thiên An ancorn from VNPT-VCI Required...

6.5CVSS6.9AI score0.00618EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/08/29 12:0 a.m.11 views

WordPress Masterstudy LMS Starter Theme <= 1.1.8 is vulnerable to Sensitive Data Exposure

Software Masterstudy LMS Starter Type Theme Vulnerable versions = 1.1.8 Fixed in 1.1.9 OWASP Top 10 A1: Broken Access Control Classification Sensitive Data Exposure CVE CVE-2024-43990 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 36d1f32aa077 Credits Peng Zhou Required...

5.3CVSS6.6AI score0.00367EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/08/27 12:0 a.m.10 views

WordPress Blog Introduction Plugin <= 0.3.0 is vulnerable to Cross Site Request Forgery (CSRF)

Software Blog Introduction Type Plugin Vulnerable versions = 0.3.0 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-7862 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID b5cd399b1013 Credits Daniel Ruf Required...

6.5CVSS6.7AI score0.0019EPSS
Exploits1References3Affected Software1
Patchstack
Patchstack
added 2024/08/26 12:0 a.m.15 views

WordPress Tempera Theme <= 1.8.2 is vulnerable to Cross Site Scripting (XSS)

Software Tempera Type Theme Vulnerable versions = 1.8.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-43951 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 699efcd6c9d2 Credits stealthcopter Required privilege Contributor...

6.5CVSS6.6AI score0.00279EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2024/08/16 12:0 a.m.8 views

WordPress Theme My Login Plugin <= 7.1.7 is vulnerable to Cross Site Request Forgery (CSRF)

Software Theme My Login Type Plugin Vulnerable versions = 7.1.7 Fixed in 7.1.8 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-7422 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 3496bb32e539 Credits vgo0 Required privile...

4.3CVSS6.7AI score0.00185EPSS
Exploits0References3Affected Software1
Patchstack
Patchstack
added 2024/08/16 12:0 a.m.9 views

WordPress Structured Content Plugin <= 1.6.2 is vulnerable to Cross Site Scripting (XSS)

Software Structured Content Type Plugin Vulnerable versions = 1.6.2 Fixed in 1.6.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-43307 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID df5a04e07bd7 Credits Michael Required privilege...

6.5CVSS6.6AI score0.00245EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2024/08/16 12:0 a.m.19 views

WordPress Brave Popup Builder Plugin <= 0.7.0 is vulnerable to Cross Site Request Forgery (CSRF)

Software Brave Popup Builder Type Plugin Vulnerable versions = 0.7.0 Fixed in 0.7.1 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-43337 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 04312f740763 Credits Ananda Dhakal...

4.3CVSS6.6AI score0.00172EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2024/08/16 12:0 a.m.28 views

WordPress myCred Plugin <= 2.7.2 is vulnerable to Cross Site Scripting (XSS)

Software myCred Type Plugin Vulnerable versions = 2.7.2 Fixed in 2.7.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-43353 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID a2faf75ac250 Credits LVT-tholv2k Required privilege Contributor...

6.5CVSS6.6AI score0.00245EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2024/08/16 12:0 a.m.9 views

WordPress Fonts Plugin <= 3.7.7 is vulnerable to Broken Access Control

Software Fonts Type Plugin Vulnerable versions = 3.7.7 Fixed in 3.7.8 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-43302 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 28935a5c542e Credits Rafie Muhammad Patchstack Required...

8.8CVSS6.3AI score0.00414EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2024/08/16 12:0 a.m.13 views

WordPress JetElements For Elementor Plugin <= 2.6.20 is vulnerable to Cross Site Scripting (XSS)

Software JetElements For Elementor Type Plugin Vulnerable versions = 2.6.20 Fixed in 2.6.20.1 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-7144 Patch priority Low CVSS severity Low 6.5 Developer Crocoblock PSID e5a6ab70d49a Credits stealthcopter...

6.4CVSS5.8AI score0.0025EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2024/08/16 12:0 a.m.9 views

WordPress Flash & HTML5 Video Plugin <= 2.5.31 is vulnerable to Sensitive Data Exposure

Software Flash & HTML5 Video Type Plugin Vulnerable versions = 2.5.31 Fixed in 2.5.32 OWASP Top 10 A4: Insecure Design Classification Sensitive Data Exposure CVE CVE-2024-43319 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID e3846f722ce9 Credits Ananda Dhakal Patchstack...

4.3CVSS6.6AI score0.0035EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2024/08/16 12:0 a.m.10 views

WordPress Gutentor Plugin <= 3.3.5 is vulnerable to Cross Site Scripting (XSS)

Software Gutentor Type Plugin Vulnerable versions = 3.3.5 Fixed in 3.3.6 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-43308 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 1e4eea1e0d03 Credits João Pedro S Alcântara Kinorth Required...

6.5CVSS6.6AI score0.0024EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder