Lucene search
+L

7 matches found

cnnvd
cnnvd
added 2026/03/16 12:0 a.m.7 views

Craft CMS 安全漏洞

Craft CMS is an open-source content management system developed by Craft Studio. Vulnerabilities existed in versions of Craft CMS from 4.0.0-RC1 to 4.17.6, as well as in versions 5.0.0-RC1 to 5.9.12. These vulnerabilities stemmed from a potential exploit where low-privilege users or unverified...

9.8CVSS5.8AI score0.0773EPSS
Exploits1References2
cvelist
cvelist
added 2026/01/22 4:52 p.m.19 views

CVE-2026-22483 WordPress teachPress plugin <= 9.0.12 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in winkm89 teachPress teachpress allows Cross Site Request Forgery.This issue affects teachPress: from n/a through = 9.0.12...

5.4CVSS0.00129EPSS
Exploits0References1
attackerkb
attackerkb
added 2026/01/22 4:52 p.m.5 views

CVE-2026-22353

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in winkm89 teachPress teachpress allows Stored XSS.This issue affects teachPress: from n/a through = 9.0.12...

6.5CVSS5.2AI score0.00161EPSS
Exploits0References2
patchstack
patchstack
added 2025/09/22 7:8 p.m.9 views

WordPress WooMS Plugin <= 9.12 - Cross Site Scripting (XSS) Vulnerability

Cross Site Scripting XSS Vulnerability discovered by Nabil Irawan in WordPress Plugin WooMS versions = 9.12...

5.9CVSS6AI score0.00276EPSS
Exploits0Affected Software1
cvelist
cvelist
added 2025/09/22 6:24 p.m.14 views

CVE-2025-57956 WordPress WooMS Plugin <= 9.12 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in wpcraft WooMS wooms allows Stored XSS.This issue affects WooMS: from n/a through = 9.12...

5.9CVSS0.00276EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2025/09/22 12:0 a.m.6 views

PT-2025-38807

Name of the Vulnerable Software and Affected Versions wpcraft WooMS versions through 9.12 Description An authorization issue exists in wpcraft WooMS, allowing exploitation due to incorrectly configured access control security levels. Recommendations At the moment, there is no information about a...

5.3CVSS6.4AI score0.00353EPSS
Exploits0References3
ptsecurity
ptsecurity
added 2021/08/16 12:0 a.m.5 views

PT-2021-15283 · Pulse Secure · Pulse Connect Secure

Name of the Vulnerable Software and Affected Versions: Pulse Connect Secure versions prior to 9.1R12 Description: A vulnerability could allow an authenticated administrator to perform an arbitrary file delete via a maliciously crafted web request. Recommendations: For versions prior to 9.1R12,...

6.5CVSS6.4AI score0.01378EPSS
Exploits0References4
Rows per page
Query Builder