Lucene search
+L

678 matches found

Patchstack
Patchstack
added 2025/08/21 11:26 a.m.8 views

WordPress Portfolio Manager Pro Plugin 3.8 - Arbitrary File Upload Vulnerability

Arbitrary File Upload Vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Plugin Portfolio Manager Pro versions 3.8...

6.5CVSS6.7AI score0.00452EPSS
Exploits0Affected Software1
NVD
NVD
added 2025/08/20 8:15 a.m.13 views

CVE-2025-54032

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WebCodingPlace Real Estate Manager Pro real-estate-manager-pro allows Reflected XSS.This issue affects Real Estate Manager Pro: from n/a through = 12.7.3...

7.1CVSS0.00234EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2025/08/20 8:3 a.m.6 views

CVE-2025-49410

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Imran Emu TC Testimonials allows Stored XSS. This issue affects TC Testimonials: from n/a through 1.1.1...

10CVSS5.2AI score0.00452EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/08/20 8:2 a.m.5 views

CVE-2025-54032 WordPress Real Estate Manager Pro Plugin <= 12.7.3 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WebCodingPlace Real Estate Manager Pro allows Reflected XSS. This issue affects Real Estate Manager Pro: from n/a through 12.7.3...

7.1CVSS7.1AI score0.00234EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/08/20 8:2 a.m.14 views

CVE-2025-54032 WordPress Real Estate Manager Pro Plugin <= 12.7.3 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WebCodingPlace Real Estate Manager Pro real-estate-manager-pro allows Reflected XSS.This issue affects Real Estate Manager Pro: from n/a through = 12.7.3...

7.1CVSS0.00234EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/08/20 12:0 a.m.5 views

WordPress plugin Real Estate Manager Pro 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin.... A security vulnerability...

7.1CVSS6.1AI score0.00234EPSS
Exploits0References2
Patchstack
Patchstack
added 2025/08/12 11:15 p.m.10 views

WordPress File Manager Pro plugin <= 1.8.9 - Arbitrary File Deletion vulnerability

Arbitrary File Deletion vulnerability discovered by tiborisaak in WordPress Plugin File Manager Pro versions = 1.8.9...

6.5CVSS6.7AI score0.00727EPSS
Exploits0References1Affected Software1
RedhatCVE
RedhatCVE
added 2025/06/23 8:40 a.m.5 views

CVE-2025-52710

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ninja Team File Manager Pro filester allows Stored XSS.This issue affects File Manager Pro: from n/a through = 1.8.8...

5.9CVSS5.9AI score0.00167EPSS
Exploits0References1
NVD
NVD
added 2025/06/20 3:15 p.m.9 views

CVE-2025-52710

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ninja Team File Manager Pro filester allows Stored XSS.This issue affects File Manager Pro: from n/a through = 1.8.8...

5.9CVSS0.00167EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/06/20 3:3 p.m.5 views

CVE-2025-52710 WordPress File Manager Pro plugin <= 1.8.8 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ninja Team File Manager Pro allows Stored XSS. This issue affects File Manager Pro: from n/a through 1.8.8...

5.9CVSS5.7AI score0.00167EPSS
Exploits0References1
CVE
CVE
added 2025/06/20 3:3 p.m.20 views

CVE-2025-52710

CVE-2025-52710 affects WordPress plugin “File Manager Pro – Filester” (versions up to and including 1.8.8). The vulnerability is a stored Cross-Site Scripting (XSS) caused by improper neutralization of input during web page generation. Public references in the CVE records indicate a patch has bee...

5.9CVSS5.9AI score0.00167EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/06/20 3:3 p.m.14 views

CVE-2025-52710 WordPress File Manager Pro plugin <= 1.8.8 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ninja Team File Manager Pro filester allows Stored XSS.This issue affects File Manager Pro: from n/a through = 1.8.8...

5.9CVSS0.00167EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/06/20 12:0 a.m.4 views

WordPress plugin File Manager Pro 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

5.9CVSS5.8AI score0.00167EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/06/20 12:0 a.m.9 views

PT-2025-26405 · Ninja Team · Ninja Team File Manager Pro

Name of the Vulnerable Software and Affected Versions: Ninja Team File Manager Pro versions 1.8.8 and earlier Description: The issue is related to improper neutralization of input during web page generation, which leads to a Cross-site Scripting XSS vulnerability, specifically Stored XSS. This...

5.9CVSS5.1AI score0.00167EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/06/16 6:22 a.m.7 views

CVE-2025-3234

The File Manager Pro – Filester plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in all versions up to, and including, 1.8.8. This makes it possible for authenticated attackers, with Administrator-level access and above, to upload arbitrary files on...

7.2CVSS8AI score0.00532EPSS
Exploits0References1
NVD
NVD
added 2025/06/14 6:15 a.m.9 views

CVE-2025-3234

The File Manager Pro – Filester plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in all versions up to, and including, 1.8.8. This makes it possible for authenticated attackers, with Administrator-level access and above, to upload arbitrary files on...

7.2CVSS0.00532EPSS
Exploits0References2
Patchstack
Patchstack
added 2025/06/14 3:4 a.m.20 views

WordPress File Manager Pro – Filester plugin <= 1.8.8 - Authenticated (Administrator+) Arbitrary File Upload vulnerability

Authenticated Administrator+ Arbitrary File Upload vulnerability discovered by TANG Cheuk Hei siunam in WordPress Plugin File Manager Pro versions = 1.8.8...

7.2CVSS6.8AI score0.00532EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2025/06/14 12:0 a.m.4 views

WordPress plugin File Manager Pro – Filester 代码问题漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin.... A code issue vulnerability exist...

7.2CVSS7.8AI score0.00532EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/06/14 12:0 a.m.13 views

PT-2025-25457 · WordPress · File Manager Pro – Filester

Name of the Vulnerable Software and Affected Versions: File Manager Pro – Filester plugin for WordPress versions 1.8.8 and earlier Description: The File Manager Pro – Filester plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation. This makes it possible...

7.2CVSS7.3AI score0.00532EPSS
Exploits0References9
RedhatCVE
RedhatCVE
added 2025/05/23 8:30 a.m.7 views

CVE-2024-5266

The Download Manager Pro plugin for WordPress is vulnerable to Stored Cross-Site Scripting via wpdmuserdashboard, wpdmpackage, wpdmpackages, wpdmsearchresult, and wpdmtag shortcodes in all versions up to, and including, 3.2.92 due to insufficient input sanitization and output escaping on user...

6.4CVSS5AI score0.00416EPSS
Exploits0References1
Rows per page
Query Builder