Lucene search
K

500 matches found

CVE
CVE
added 2024/02/05 5:45 a.m.61 views

CVE-2024-24870

The CVE-2024-24870 entry describes a Stored XSS in the WordPress Advanced iFrame plugin (≤ 2023.10) due to Improper Neutralization of Input During Web Page Generation. Affected component: Advanced iFrame plugin; root cause: insufficient input sanitization/escaping in the advanced_iframe context. ...

6.5CVSS5.6AI score0.00289EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2024/02/01 10:15 a.m.28 views

CVE-2023-52175

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Michael Uno miunosoft Auto Amazon Links – Amazon Associates Affiliate Plugin allows Stored XSS.This issue affects Auto Amazon Links – Amazon Associates Affiliate Plugin: from n/a through 5.1.1...

6.5CVSS6.4AI score0.00337EPSS
Exploits0References1
OSV
OSV
added 2024/02/01 10:5 a.m.15 views

CVE-2023-52175 WordPress Auto Amazon Links Plugin <= 5.1.1 is vulnerable to Cross Site Scripting (XSS)

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Michael Uno miunosoft Auto Amazon Links – Amazon Associates Affiliate Plugin allows Stored XSS.This issue affects Auto Amazon Links – Amazon Associates Affiliate Plugin: from n/a through 5.1.1...

6.5CVSS6.8AI score0.00337EPSS
Exploits0References4
CVE
CVE
added 2024/01/31 5:54 p.m.42 views

CVE-2024-22282

CVE-2024-22282 affects the WordPress SimpleMap Store Locator plugin (

7.1CVSS7.1AI score0.00331EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/01/31 5:54 p.m.22 views

CVE-2024-22282 WordPress SimpleMap Store Locator Plugin <= 2.6.1 is vulnerable to Cross Site Scripting (XSS)

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Michael Torbert SimpleMap Store Locator allows Reflected XSS.This issue affects SimpleMap Store Locator: from n/a through 2.6.1...

7.1CVSS7.2AI score0.00331EPSS
Exploits0References1
ICS
ICS
added 2024/01/11 7:0 a.m.36 views

Horner Automation Cscape

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION : Low attack complexity Vendor : Horner Automation Equipment : Cscape Vulnerability : Stack-Based Buffer Overflow 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to execute arbitrary code. 3. TECHNICAL...

7.8CVSS7.9AI score0.00213EPSS
Exploits0References10
OSV
OSV
added 2024/01/05 9:15 a.m.4 views

CVE-2023-52129

Cross-Site Request Forgery CSRF vulnerability in Michael Winkler teachPress.This issue affects teachPress: from n/a through 9.0.4...

8.8CVSS5.8AI score0.00179EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/01/05 8:42 a.m.19 views

CVE-2023-52129 WordPress teachPress Plugin <= 9.0.4 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in Michael Winkler teachPress.This issue affects teachPress: from n/a through 9.0.4...

6.3CVSS8.9AI score0.00179EPSS
Exploits0References1
Openbugbounty
Openbugbounty
added 2023/12/22 5:31 p.m.9 views

michael-soetbeer.de Improper Access Control vulnerability OBB-3820022

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

7AI score
Exploits0
OSV
OSV
added 2023/12/18 11:15 p.m.3 views

CVE-2023-49163

Cross-Site Request Forgery CSRF vulnerability in Michael Winkler teachPress.This issue affects teachPress: from n/a through 9.0.5...

8.8CVSS7.3AI score0.0027EPSS
Exploits0References1
Prion
Prion
added 2023/12/18 11:15 p.m.16 views

Cross site request forgery (csrf)

Cross-Site Request Forgery CSRF vulnerability in Michael Winkler teachPress.This issue affects teachPress: from n/a through 9.0.5...

6.8CVSS7.2AI score0.0027EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/12/18 10:17 p.m.70 views

CVE-2023-49163

CVE-2023-49163: teachPress for WordPress is affected up to version 9.0.5 by a Cross-Site Request Forgery (CSRF) in delete_database() that can enable unauthenticated actions. Patch: upgrade to 9.0.6 (fixes CSRF issue). The vulnerability is documented as CSRF with unauthenticated context and has be...

8.8CVSS8.5AI score0.0027EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2023/12/18 4:15 p.m.3 views

CVE-2023-48755

Cross-Site Request Forgery CSRF vulnerability in Michael Winkler teachPress.This issue affects teachPress: from n/a through 9.0.4...

8.8CVSS7.3AI score0.00261EPSS
Exploits0References1
NVD
NVD
added 2023/12/18 4:15 p.m.14 views

CVE-2023-48755

Cross-Site Request Forgery CSRF vulnerability in Michael Winkler teachPress.This issue affects teachPress: from n/a through 9.0.4...

8.8CVSS0.00261EPSS
Exploits0References1
Prion
Prion
added 2023/12/18 4:15 p.m.14 views

Cross site request forgery (csrf)

Cross-Site Request Forgery CSRF vulnerability in Michael Winkler teachPress.This issue affects teachPress: from n/a through 9.0.4...

6.8CVSS7.2AI score0.00261EPSS
Exploits0References1Affected Software1
Openbugbounty
Openbugbounty
added 2023/12/15 6:45 p.m.4 views

michael-jackson.cz Improper Access Control vulnerability OBB-3814869

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

7AI score
Exploits0
Openbugbounty
Openbugbounty
added 2023/12/07 5:19 p.m.4 views

michaelandsonslandscape.com Improper Access Control vulnerability OBB-3805533

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

7AI score
Exploits0
OSV
OSV
added 2023/12/07 1:15 p.m.4 views

CVE-2023-45762

URL Redirection to Untrusted Site 'Open Redirect' vulnerability in Michael Uno miunosoft Responsive Column Widgets.This issue affects Responsive Column Widgets: from n/a through 1.2.7...

6.1CVSS7.3AI score0.00393EPSS
Exploits0References1
CVE
CVE
added 2023/12/07 12:17 p.m.71 views

CVE-2023-45762

CVE-2023-45762 is an Open Redirect vulnerability in the WordPress plugin Responsive Column Widgets (versions

6.1CVSS7AI score0.00393EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2023/11/14 10:15 p.m.6 views

CVE-2023-47520

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Michael Uno miunosoft Responsive Column Widgets plugin = 1.2.7 versions...

6.1CVSS7.3AI score0.00412EPSS
Exploits0References1
Rows per page
Query Builder