Lucene search
K

89 matches found

OSV
OSV
added 2023/08/17 9:15 a.m.3 views

CVE-2023-30877

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Maxim Glazunov XML for Google Merchant Center plugin = 3.0.1 versions...

6.1CVSS7.3AI score0.00382EPSS
Exploits0References1
Prion
Prion
added 2023/08/17 9:15 a.m.20 views

Cross site scripting

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Maxim Glazunov XML for Google Merchant Center plugin = 3.0.1 versions...

5.8CVSS6AI score0.00382EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/08/17 8:30 a.m.16 views

CVE-2023-30877 WordPress XML for Google Merchant Center Plugin <= 3.0.1 is vulnerable to Cross Site Scripting (XSS)

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Maxim Glazunov XML for Google Merchant Center plugin = 3.0.1 versions...

7.1CVSS5.9AI score0.00382EPSS
Exploits0References1
CVE
CVE
added 2023/08/17 8:30 a.m.42 views

CVE-2023-30877

CVE-2023-30877 affects the WordPress plugin XML for Google Merchant Center (older

7.1CVSS6AI score0.00382EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2023/08/16 10:15 a.m.16 views

Cross site scripting

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Maxim Glazunov YML for Yandex Market plugin = 3.10.7 versions...

5.8CVSS6AI score0.00382EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/08/16 9:52 a.m.23 views

CVE-2023-30473

CVE-2023-30473 affects WordPress plugin YML for Yandex Market (author Maxim Glazunov) up to version 3.10.7, with unauthenticated reflected XSS. Patch guidance is to upgrade to 3.10.8 or later. Public sources in connected docs confirm XSS as the vulnerability class and indicate the fix/version. No...

7.1CVSS6AI score0.00382EPSS
Exploits0References1Affected Software1
Openbugbounty
Openbugbounty
added 2023/07/31 12:24 p.m.10 views

maxim-pneu.cz Cross Site Scripting vulnerability OBB-3560426

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.1AI score
Exploits0
The Hacker News
The Hacker News
added 2023/06/20 12:12 p.m.145 views

Zyxel Releases Urgent Security Updates for Critical Vulnerability in NAS Devices

Zyxel has rolled out security updates to address a critical security flaw in its network-attached storage NAS devices that could result in the execution of arbitrary commands on affected systems. Tracked as CVE-2023-27992 CVSS score: 9.8, the issue has been described as a pre-authentication comma...

9.8CVSS8.2AI score0.84195EPSS
Exploits0
Openbugbounty
Openbugbounty
added 2023/06/12 6:43 a.m.14 views

maxim-pneu.cz Cross Site Scripting vulnerability OBB-3417397

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.1AI score
Exploits0
Openbugbounty
Openbugbounty
added 2023/06/08 12:11 a.m.9 views

maxim-pneu.cz Cross Site Scripting vulnerability OBB-3403853

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.1AI score
Exploits0
Openbugbounty
Openbugbounty
added 2023/06/06 10:56 p.m.9 views

maxim-pneu.cz Cross Site Scripting vulnerability OBB-3400079

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.1AI score
Exploits0
Openbugbounty
Openbugbounty
added 2023/06/04 6:52 p.m.11 views

maxim-pneu.cz Cross Site Scripting vulnerability OBB-3387008

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.1AI score
Exploits0
Openbugbounty
Openbugbounty
added 2023/02/22 5:18 p.m.10 views

maxim-pneu.cz Cross Site Scripting vulnerability OBB-3203533

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2023/01/14 12:49 p.m.10 views

maxim-pneu.cz Cross Site Scripting vulnerability OBB-3150154

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Oracle linux
Oracle linux
added 2022/12/12 12:0 a.m.58 views

Unbreakable Enterprise kernel security update

5.15.0-5.76.5.1 - proc: procskipspaces shouldn't think it is working on C strings Linus Torvalds Orabug: 34883037 CVE-2022-4378 - proc: avoid integer type confusion in getproclong Linus Torvalds Orabug: 34883037 CVE-2022-4378 5.15.0-5.76.5 - KVM: x86: Use SRCU to protect zap in...

7.8CVSS0.3AI score0.00431EPSS
Exploits0
Openbugbounty
Openbugbounty
added 2020/10/28 2:56 p.m.7 views

maxim-ecigareta.cz Cross Site Scripting vulnerability OBB-1458456

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

6.2AI score
Exploits0
CERT
CERT
added 2020/08/20 12:0 a.m.53 views

NCR SelfServ ATM dispenser software contains multiple vulnerabilities

Overview NCR SelfServ automated teller machines ATMs running APTRA XFS 05.01.00 or older are vulnerable to physical attacks on the communications bus between the currency dispenser component and the host computer. Description NCR SelfServ ATMs running APTRA XFS 05.01.00 or older contain...

7.6CVSS7.1AI score0.00674EPSS
Exploits2References7
ICS
ICS
added 2019/03/26 12:0 a.m.76 views

PHOENIX CONTACT RAD-80211-XD

1. EXECUTIVE SUMMARY CVSS v3 9.9 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Phoenix Contact Equipment: RAD-80211-XD Vulnerability: Command Injection 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to execute system level commands...

9CVSS9.5AI score0.03463EPSS
Exploits0References5
Packet Storm
Packet Storm
added 2018/08/17 12:0 a.m.579 views

Mikrotik WinBox 6.42 Credential Disclosure

/ Title: Mikrotik WinBox 6.42 - Credential Disclosure golang edition Author: Maxim Yefimenko @slider Date: 2018-08-06 Sotware Link: https://mikrotik.com/download Vendor Page: https://www.mikrotik.com/ Version: 6.29 - 6.42 Tested on: Fedora 28 \ Debian 9 \ Windows 10 \ Android wherever it was...

8.7AI score0.96087EPSS
Exploits23
exploitpack
exploitpack
added 2018/08/17 12:0 a.m.406 views

Mikrotik WinBox 6.42 - Credential Disclosure (golang)

Mikrotik WinBox 6.42 - Credential Disclosure golang / Title: Mikrotik WinBox 6.42 - Credential Disclosure golang edition Author: Maxim Yefimenko @slider Date: 2018-08-06 Sotware Link: https://mikrotik.com/download Vendor Page: https://www.mikrotik.com/ Version: 6.29 - 6.42 Tested on: Fedora 28 ...

6.4CVSS8.7AI score0.96087EPSS
Exploits23
Rows per page
Query Builder