Lucene search
K

20 matches found

RedhatCVE
RedhatCVE
added 2026/04/29 2:48 p.m.8 views

CVE-2026-39704

Missing Authorization vulnerability in nfusionsolutions Precious Metals Automated Product Pricing – Pro precious-metals-automated-product-pricing-pro allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Precious Metals Automated Product Pricing – Pro: from n/...

5.3CVSS5.1AI score0.0016EPSS
Exploits0References1
EUVD
EUVD
added 2026/04/08 9:31 a.m.12 views

EUVD-2026-20408

Missing Authorization vulnerability in nfusionsolutions Precious Metals Automated Product Pricing Pro precious-metals-automated-product-pricing-pro allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Precious Metals Automated Product Pricing Pro: from n/a...

5.3CVSS5.9AI score0.0016EPSS
Exploits0References2
NVD
NVD
added 2026/04/08 9:16 a.m.4 views

CVE-2026-39704

Missing Authorization vulnerability in nfusionsolutions Precious Metals Automated Product Pricing – Pro precious-metals-automated-product-pricing-pro allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Precious Metals Automated Product Pricing – Pro: from n/...

5.3CVSS0.0016EPSS
Exploits0References1
CVE
CVE
added 2026/04/08 8:30 a.m.26 views

CVE-2026-39704

CVE-2026-39704 concerns a missing authorization (broken access control) vulnerability in the WordPress plugin Precious Metals Automated Product Pricing – Pro (nfusionsolutions). Affected versions are through 4.0.5, where improperly configured access control security levels can be exploited. The P...

5.3CVSS5.1AI score0.0016EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/04/08 8:30 a.m.29 views

CVE-2026-39704 WordPress Precious Metals Automated Product Pricing – Pro plugin <= 4.0.5 - Broken Access Control vulnerability

Missing Authorization vulnerability in nfusionsolutions Precious Metals Automated Product Pricing – Pro precious-metals-automated-product-pricing-pro allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Precious Metals Automated Product Pricing – Pro: from n/...

5.3CVSS0.0016EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/04/08 8:30 a.m.2 views

CVE-2026-39704 WordPress Precious Metals Automated Product Pricing – Pro plugin <= 4.0.5 - Broken Access Control vulnerability

Missing Authorization vulnerability in nfusionsolutions Precious Metals Automated Product Pricing – Pro precious-metals-automated-product-pricing-pro allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Precious Metals Automated Product Pricing – Pro: from n/...

5.3CVSS5.1AI score0.0016EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/04/08 8:30 a.m.3 views

CVE-2026-39704

Missing Authorization vulnerability in nfusionsolutions Precious Metals Automated Product Pricing – Pro precious-metals-automated-product-pricing-pro allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Precious Metals Automated Product Pricing – Pro: from n/...

5.3CVSS5.1AI score0.0016EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/04/08 12:0 a.m.10 views

WordPress plugin Precious Metals Automated Product Pricing Pro 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

5.3CVSS5.8AI score0.0016EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/04/08 12:0 a.m.7 views

PT-2026-31266

Name of the Vulnerable Software and Affected Versions Precious Metals Automated Product Pricing – Pro versions through 4.0.5 Description A missing authorization issue exists in nfusionsolutions Precious Metals Automated Product Pricing – Pro, allowing exploitation of incorrectly configured access...

5.3CVSS5.8AI score0.0016EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/03/25 12:0 a.m.8 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from improper updates to the list of allowed metals. This vulnerability could lead to out-of-bound...

7.8CVSS5.8AI score0.00129EPSS
Exploits0References7
Patchstack
Patchstack
added 2025/01/24 10:41 p.m.3 views

WordPress Precious Metals Charts and Widgets for WordPress plugin <= 1.2.8 - Authenticated (Contributor+) Stored Cross-site Scripting vulnerability

Authenticated Contributor+ Stored Cross-site Scripting vulnerability discovered by Peter Thaleikis in WordPress Plugin Precious Metals Charts and Widgets for WordPress versions = 1.2.8...

6.4CVSS6.4AI score0.00216EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2025/01/24 11:15 a.m.4 views

CVE-2024-13572

The Precious Metals Charts and Widgets for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'nfusion-widget' shortcode in all versions up to, and including, 1.2.8 due to insufficient input sanitization and output escaping on user supplied attributes. Th...

5.4CVSS5.9AI score0.00216EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/01/24 12:0 a.m.5 views

WordPress plugin Precious Metals Charts and Widgets for WordPress 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists in...

6.4CVSS8AI score0.00216EPSS
Exploits0References3
Openbugbounty
Openbugbounty
added 2024/04/04 10:44 a.m.7 views

durbinmetals.co.uk Cross Site Scripting vulnerability OBB-3901250

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
HackRead
HackRead
added 2024/01/30 5:19 p.m.14 views

FBI Warns of Tech Support Courier Scam Aiming at Cash and Metals

By Deeba Ahmed Seniors, Beware: This Tech Support Scam Goes Beyond Just Receiving Calls. This is a post from HackRead.com Read the original post: FBI Warns of Tech Support Courier Scam Aiming at Cash and Metals...

7.3AI score
Exploits0
ThreatPost
ThreatPost
added 2020/11/02 5:16 p.m.15 views

Texas Gold-Dealer Mined for Payment Details in Months-Long Data Breach

A popular precious-metals dealer, JM Bullion, has been the victim of a payment-skimmer attack. The company’s response was less than solid gold — it took months to notify its users of the breach. The Dallas-based company sells gold, platinum, silver, copper and palladium bullion, in the form of...

0.1AI score
Exploits0References8
Openbugbounty
Openbugbounty
added 2020/10/19 5:27 p.m.10 views

metals-casting.com Cross Site Scripting vulnerability OBB-1425639

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

6.2AI score
Exploits0
CNVD
CNVD
added 2016/06/12 12:0 a.m.2 views

Remote Command Execution Vulnerability in Office System of Nonferrous Metals Technology and Economic Research Institute (NMTRI)

Nonferrous metal technology and economic research institute office office system is a set of enterprise daily office system. The product has a remote command execution vulnerability that can be exploited by an attacker to remotely execute commands and gain server privileges...

7.8AI score
Exploits0References1
Cisco Threats
Cisco Threats
added 2015/03/26 7:40 p.m.12 views

Threat Outbreak Alert RuleID14296: Email Messages Distributing Malicious Software on March 26, 2015

Medium Alert ID: 38075 First Published: 2015 March 26 19:40 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID14296 may contain the following files: Name | Si...

0.3AI score
Exploits0
ThreatPost
ThreatPost
added 2010/02/09 4:23 p.m.12 views

Comerica Bank Sued for Failed 2-Factor Authentication

A metals supply company in Michigan is suing its bank for poor security practices after a successful phishing attack against an employee allowed thieves to steal more than half a million dollars last year. Read the full article. KrebsonSecurity...

3AI score
Exploits0References2
Rows per page
Query Builder