Lucene search
K

4 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-48534

Malicious code in bioql PyPI...

6.1CVSS6.5AI score0.00214EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 8:43 a.m.8 views

CVE-2024-7647

The OTA Sync Booking Engine Widget plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.2.7. This is due to missing or incorrect nonce validation on the otasyncwidgetsettingsfnc function. This makes it possible for unauthenticated attackers to...

6.1CVSS6.4AI score0.00214EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/08/21 5:30 a.m.11 views

CVE-2024-7647 OTA Sync Booking Engine Widget 1.2.7 - Cross-Site Request Forgery to Stored Cross-Site Scripting

The OTA Sync Booking Engine Widget plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.2.7. This is due to missing or incorrect nonce validation on the otasyncwidgetsettingsfnc function. This makes it possible for unauthenticated attackers to...

6.1CVSS6.5AI score0.00214EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/08/21 5:30 a.m.31 views

CVE-2024-7647 OTA Sync Booking Engine Widget 1.2.7 - Cross-Site Request Forgery to Stored Cross-Site Scripting

The OTA Sync Booking Engine Widget plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.2.7. This is due to missing or incorrect nonce validation on the otasyncwidgetsettingsfnc function. This makes it possible for unauthenticated attackers to...

6.1CVSS0.00214EPSS
Exploits0References4
Rows per page
Query Builder