Lucene search
K

17 matches found

EUVD
EUVD
added 2025/12/01 11:51 a.m.5 views

EUVD-2025-199984

Cross-Site Request Forgery CSRF vulnerability in Tekrom Technology Inc. T-Soft E-Commerce allows Cross Site Request Forgery.This issue affects T-Soft E-Commerce: through 28112025...

5.4CVSS6.4AI score0.00099EPSS
Exploits0References2
Openbugbounty
Openbugbounty
added 2023/11/28 7:53 p.m.6 views

deine-erfolgreiche-bewerbung.com Improper Access Control vulnerability OBB-3797080

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

7AI score
Exploits0
Openbugbounty
Openbugbounty
added 2023/11/28 7:44 p.m.5 views

deepgulfenergy.com Improper Access Control vulnerability OBB-3797059

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

7AI score
Exploits0
Openbugbounty
Openbugbounty
added 2023/11/28 2:57 p.m.5 views

tickets.aqualandia.net Cross Site Scripting vulnerability OBB-3796777

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2023/11/28 11:50 a.m.5 views

seiwatei.net Cross Site Scripting vulnerability OBB-3796686

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Patchstack
Patchstack
added 2023/11/28 12:0 a.m.7 views

WordPress WP Tripadvisor Review Widgets Plugin <= 11.0.2 is vulnerable to Arbitrary File Upload

Software WP Tripadvisor Review Widgets Type Plugin Vulnerable versions = 11.0.2 Fixed in 11.1 OWASP Top 10 A3: Injection Classification Arbitrary File Upload CVE CVE-2023-48275 Patch priority Medium CVSS severity Medium 8 Developer Claim ownership PSID bf86f8d389e5 Credits Rafie Muhammad Patchsta...

8CVSS7.2AI score0.00535EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2023/11/28 12:0 a.m.16 views

WordPress Shortcodes Ultimate Plugin <= 5.13.3 is vulnerable to Insecure Direct Object References (IDOR)

Software Shortcodes Ultimate Type Plugin Vulnerable versions = 5.13.3 Fixed in 7.0.0 OWASP Top 10 A1: Broken Access Control Classification Insecure Direct Object References IDOR CVE CVE-2023-6226 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 7b259d4a9888 Credits Francesc...

4.3CVSS6.8AI score0.00529EPSS
Exploits1References3Affected Software1
Patchstack
Patchstack
added 2023/11/28 12:0 a.m.17 views

WordPress Widgets for Yelp Reviews Plugin <= 11.0.2 is vulnerable to Arbitrary File Upload

Software Widgets for Yelp Reviews Type Plugin Vulnerable versions = 11.0.2 Fixed in 11.1 OWASP Top 10 A3: Injection Classification Arbitrary File Upload CVE CVE-2023-48275 Patch priority Medium CVSS severity Medium 8 Developer Claim ownership PSID 323b86ec1718 Credits Rafie Muhammad Patchstack...

8CVSS7.2AI score0.00535EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2023/11/28 12:0 a.m.12 views

WordPress Widgets for SourceForge Reviews Plugin <= 11.0.2 is vulnerable to Arbitrary File Upload

Software Widgets for SourceForge Reviews Type Plugin Vulnerable versions = 11.0.2 Fixed in 11.1 OWASP Top 10 A3: Injection Classification Arbitrary File Upload CVE CVE-2023-48275 Patch priority Medium CVSS severity Medium 8 Developer Claim ownership PSID 54da1ae2f502 Credits Rafie Muhammad...

8CVSS7.2AI score0.00535EPSS
Exploits0References2Affected Software1
Openbugbounty
Openbugbounty
added 2022/11/28 11:54 a.m.13 views

gecmodasa.ac.in Cross Site Scripting vulnerability OBB-3076269

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Patchstack
Patchstack
added 2020/10/07 12:0 a.m.15 views

WordPress HyperComments plugin <= 1.2.2 - Unauthenticated Arbitrary File Deletion vulnerability

Unauthenticated Arbitrary File Deletion vulnerability found by Lenon Leite in WordPress HyperComments plugin versions = 1.2.2. Solution 2020-12-09 - we were unable to find a patched version of this plugin. There's only note from wordpress.org available: "This plugin has been closed as of November...

3.3AI score
Exploits0References1Affected Software1
Cisco Threats
Cisco Threats
added 2017/11/28 6:47 p.m.14 views

Threat Outbreak Alert RuleID31471: Email Messages Distributing Malicious Software on November 28, 2017

Medium Alert ID: 56066 First Published: 2017 November 28 18:47 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID31471 may contain the following files: Name |...

0.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2017/11/28 1:5 p.m.18 views

vsetv.by XSS vulnerability

Open Bug Bounty ID: OBB-440608 Description| Value ---|--- Affected Website:| vsetv.by Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention Cheat Sheet...

6.4AI score
Exploits0
Openbugbounty
Openbugbounty
added 2017/08/30 1:15 p.m.14 views

mborayhu.coop.py XSS vulnerability

Vulnerable URL: http://www.mborayhu.coop.py/galeria.php?=2%22%27--!%3E%3Cscript%3EalertOPENBUGBOUNTY%3C/script%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 28.11.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not...

6.3AI score
Exploits0
Cisco Threats
Cisco Threats
added 2016/11/28 5:5 p.m.7 views

Threat Outbreak Alert RuleID26450: Email Messages Distributing Malicious Software on November 28, 2016

Medium Alert ID: 49888 First Published: 2016 November 28 17:05 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID26450 may contain the following files: Name |...

Exploits0
Circl
Circl
added 2016/11/28 12:0 a.m.21 views

CVE-2016-9315

creationtimestamp| type| source ---|---|--- 2016-11-28 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/41361...

8.8CVSS6.8AI score0.0898EPSS
Exploits5References1
Openbugbounty
Openbugbounty
added 2015/11/28 5:14 a.m.11 views

autoracingalley.com XSS vulnerability

Vulnerable URL: https://www.autoracingalley.com/previewimage.asp?image=%22%3E%3Csvg/onload=prompt%28/XSSPOSED/%29%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 26.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not...

6.3AI score
Exploits0
Rows per page
Query Builder