Lucene search
K

10 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.9 views

Astra Linux – Vulnerability in python-pymysql

PyMySQL through 1.1.0 allows SQL injection if used with untrusted JSON input, because keys are not escaped by escapedict...

6.3CVSS6.6AI score0.00691EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2026/01/12 5:26 p.m.3 views

CVE-2025-68657 espressif/usb_host_hid Double-Free Race Condition in USB Host HID Device Close Path

Espressif ESP-IDF USB Host HID Human Interface Device Driver allows access to HID devices. Prior to 1.1.0, calls to hidhostdeviceclose can free the same usbtransfert twice. The USB event callback and user code share the hidifacet state without locking, so both can tear down a READY interface...

6.4CVSS6.7AI score0.00139EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/23 10:38 a.m.6 views

CVE-2024-9421

The Login Logout Shortcode plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'class' parameter in all versions up to, and including, 1.1.0 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level...

6.4CVSS5.8AI score0.00288EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 5:15 a.m.5 views

CVE-2023-47819

Cross-Site Request Forgery CSRF vulnerability in Dang Ngoc Binh Easy Call Now by ThikShare plugin = 1.1.0 versions...

8.8CVSS7.1AI score0.00261EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 1:7 a.m.5 views

CVE-2022-46180

Discourse Mermaid discourse-mermaid-theme-component allows users of Discourse, open-source forum software, to create graphs using the Mermaid syntax. Users of discourse-mermaid-theme-component version 1.0.0 who can create posts are able to inject arbitrary HTML on that post. The issue has been...

5.4CVSS6.7AI score0.0047EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/03/03 1:30 p.m.4 views

CVE-2025-25133 WordPress WP Frontend Submit Plugin <= 1.1.0 - Reflected Cross-Site Scripting vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in newbiesup WP Frontend Submit wp-frontend-submit allows Reflected XSS.This issue affects WP Frontend Submit: from n/a through = 1.1.0...

7.1CVSS8.6AI score0.00276EPSS
Exploits0References1
CVE
CVE
added 2025/01/22 2:29 p.m.48 views

CVE-2025-23495

CVE-2025-23495 is a reflected Cross-Site Scripting vulnerability in the NotFound WooCommerce Order Search plugin for WordPress. The description indicates Improper Neutralization of Input During Web Page Generation, enabling reflected XSS. Affected range: WooCommerce Order Search plugins from n/a ...

7.1CVSS7.2AI score0.00382EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/12/27 12:0 a.m.4 views

Smarts Smart Agent 安全漏洞

Smarts Smart Agent is a powerful, flexible and extensible tool from Smarts for monitoring wireless network performance and services from the end user's perspective. A security vulnerability exists in Smarts Smart Agent version v1.1.0, which originates from the /youtubeInfo.php page containing a...

7.5CVSS6.2AI score0.01336EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2024/09/11 12:0 a.m.7 views

PT-2024-31280 · Unknown · Perfex Crm

Name of the Vulnerable Software and Affected Versions: Perfex CRM version 1.1.0 Description: A stored cross-site scripting XSS issue in the Discussion section allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Content parameter. This enables attacker...

5.4CVSS6AI score0.00375EPSS
Exploits1References5
OSSF Malicious Packages
OSSF Malicious Packages
added 2023/04/29 3:50 a.m.3 views

Malicious code in testforconfusion (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 0463d945d1cd3398ce2594034fd52775ac94fe411f1cc645f88f757522abfc1b The OpenSSF Package Analysis project identified 'testforconfusion' @ 1.1.0 npm as malicious. It is considered malicious because: - The package...

6.9AI score
Exploits0References1
Rows per page
Query Builder