Lucene search
K

36136 matches found

NVD
NVD
added 2026/06/11 2:16 a.m.9 views

CVE-2026-2827

The Open User Map PRO plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'oumlocationnotification' parameter in versions up to, and including, 1.4.31 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject...

4.7CVSS0.00188EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/11 1:27 a.m.12 views

EUVD-2026-36198

The Open User Map PRO plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'oumlocationnotification' parameter in versions up to, and including, 1.4.31 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject...

4.7CVSS5.7AI score0.00188EPSS
Exploits0References2
CVE
CVE
added 2026/06/11 1:27 a.m.23 views

CVE-2026-2827

CVE-2026-2827 affects the Open User Map PRO plugin for WordPress. The vulnerability is a Stored Cross-Site Scripting (XSS) via the oum_location_notification parameter in versions up to and including 1.4.31, caused by insufficient input sanitization and output escaping. Unauthenticated attackers c...

4.7CVSS5.7AI score0.00188EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/06/11 1:27 a.m.31 views

CVE-2026-2827 Open User Map PRO <= 1.4.31 - Unauthenticated Stored Cross-Site Scripting via 'oum_location_notification'

The Open User Map PRO plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'oumlocationnotification' parameter in versions up to, and including, 1.4.31 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject...

4.7CVSS0.00188EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/06/11 12:0 a.m.21 views

PT-2026-48610

The Open User Map PRO plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'oum location notification' parameter in versions up to, and including, 1.4.31 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject...

4.7CVSS5.7AI score0.00188EPSS
Exploits0References3
NVD
NVD
added 2026/06/10 3:16 a.m.17 views

CVE-2025-58468

A cross-site request forgery CSRF vulnerability has been reported to affect Notification Center. The remote attackers can then exploit the vulnerability to gain privileges or hijack user identities. We have already fixed the vulnerability in the following version: Notification Center 1.10.0.3291...

5.1CVSS0.00184EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/10 1:38 a.m.37 views

CVE-2025-58468 Notification Center

A cross-site request forgery CSRF vulnerability has been reported to affect Notification Center. The remote attackers can then exploit the vulnerability to gain privileges or hijack user identities. We have already fixed the vulnerability in the following version: Notification Center 1.10.0.3291...

5.1CVSS0.00184EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/10 1:38 a.m.12 views

EUVD-2025-210096

A cross-site request forgery CSRF vulnerability has been reported to affect Notification Center. The remote attackers can then exploit the vulnerability to gain privileges or hijack user identities. We have already fixed the vulnerability in the following version: Notification Center 1.10.0.3291...

5.1CVSS5.4AI score0.00184EPSS
Exploits0References1
CVE
CVE
added 2026/06/10 1:38 a.m.21 views

CVE-2025-58468

CVE-2025-58468—Notification Center describes a cross-site request forgery (CSRF) vulnerability that could allow remote attackers to gain privileges or hijack user identities. The advisory states the issue is fixed in Notification Center version 1.10.0.3291 and later. From the connected records, n...

5.1CVSS5.4AI score0.00184EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/06/10 1:38 a.m.10 views

CVE-2025-58468 Notification Center

A cross-site request forgery CSRF vulnerability has been reported to affect Notification Center. The remote attackers can then exploit the vulnerability to gain privileges or hijack user identities. We have already fixed the vulnerability in the following version: Notification Center 1.10.0.3291...

5.1CVSS5.4AI score0.00184EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/06/10 12:0 a.m.16 views

PT-2026-48355

A cross-site request forgery CSRF vulnerability has been reported to affect Notification Center. The remote attackers can then exploit the vulnerability to gain privileges or hijack user identities. We have already fixed the vulnerability in the following version: Notification Center 1.10.0.3291...

5.1CVSS5.4AI score0.00184EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/06/10 12:0 a.m.11 views

QNAP Systems Notification Center 跨站请求伪造漏洞

QNAP Systems Notification Center is a system event alert and notification software developed by QNAP Systems, a company based in Taiwan, China. Versions of QNAP Systems Notification Center prior to 1.10.0.3291 contained a cross-site request forgery vulnerability. This vulnerability allows remote...

5.1CVSS5.2AI score0.00184EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/09 5:6 p.m.30 views

CVE-2026-42973 Windows Push Notification Information Disclosure Vulnerability

...

5.5CVSS0.00404EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/06/09 5:6 p.m.10 views

CVE-2026-42973 Windows Push Notification Information Disclosure Vulnerability

...

5.5CVSS5.4AI score0.00404EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/06/09 5:6 p.m.7 views

CVE-2026-42971 Windows Push Notification Information Disclosure Vulnerability

...

5.5CVSS5.4AI score0.00459EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/06/09 5:6 p.m.9 views

CVE-2026-42970 Windows Push Notification Information Disclosure Vulnerability

...

5.5CVSS5.4AI score0.00404EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/09 5:6 p.m.31 views

CVE-2026-42971 Windows Push Notification Information Disclosure Vulnerability

...

5.5CVSS0.00459EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/09 5:6 p.m.154 views

CVE-2026-42970 Windows Push Notification Information Disclosure Vulnerability

...

5.5CVSS0.00404EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/06/09 5:6 p.m.7 views

CVE-2026-42969 Windows Push Notification Information Disclosure Vulnerability

...

5.5CVSS5.4AI score0.00388EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/09 5:6 p.m.28 views

CVE-2026-42969 Windows Push Notification Information Disclosure Vulnerability

...

5.5CVSS0.00388EPSS
Exploits0References1
Rows per page
Query Builder