Lucene search
K

90 matches found

Cvelist
Cvelist
added 2022/05/23 7:15 a.m.21 views

CVE-2022-1268 Donate Extra <= 2.02 - Reflected Cross-Site Scripting

The Donate Extra WordPress plugin through 2.02 does not sanitise and escape a parameter before outputting it back in the response, leading to a Reflected cross-Site Scripting...

6.3AI score0.00757EPSS
Exploits2References1
Cvelist
Cvelist
added 2022/05/16 2:31 p.m.22 views

CVE-2022-1465 WPC Smart Wishlist for WooCommerce < 2.9.9 - Reflected Cross-Site Scripting

The WPC Smart Wishlist for WooCommerce WordPress plugin before 2.9.9 does not sanitise and escape a parameter before outputting it back in an attribute via an AJAX action, leading to a Reflected Cross-Site Scripting issue...

6.2AI score0.00833EPSS
Exploits2References1
OSV
OSV
added 2022/05/09 5:15 p.m.4 views

CVE-2022-0814

The Ubigeo de Perú para Woocommerce WordPress plugin before 3.6.4 does not properly sanitise and escape some parameters before using them in SQL statements via various AJAX actions, some of which are available to unauthenticated users, leading to SQL Injections...

9.8CVSS5.8AI score0.09495EPSS
Exploits2References1
WPVulnDB
WPVulnDB
added 2022/04/11 12:0 a.m.19 views

Responsive Tabs < 4.0.6 - Author+ Stored Cross-Site Scripting

The plugin does not sanitise and escape some parameters, which could allow users with a role as low as author to perform Cross-Site Scripting attacks PoC As author or above, create/edit a new Tab and put the following payload as its content:...

4.8CVSS2.7AI score0.00576EPSS
Exploits1Affected Software1
NVD
NVD
added 2022/02/14 12:15 p.m.23 views

CVE-2022-0208

The MapPress Maps for WordPress plugin before 2.73.4 does not sanitise and escape the mapid parameter before outputting it back in the "Bad mapid" error message, leading to a Reflected Cross-Site Scripting...

6.1CVSS0.02021EPSS
Exploits2References1
Exploit DB
Exploit DB
added 2017/12/06 12:0 a.m.114 views

Proxifier for Mac 2.19 - Local Privilege Escalation

With CVE-2017-7643 I disclosed a command injection vulnerablity in the KLoader binary that ships with Proxifier = 2.18. Unfortunately 2.19 is also vulnerable to a slightly different attack that yields the same result. When Proxifier is first run, if the KLoader binary is not suid root it gets...

7.8CVSS7.7AI score0.00965EPSS
Exploits8
Packet Storm
Packet Storm
added 2011/08/29 12:0 a.m.34 views

EIN-SOF Solutions Blind SQL Injection

========================================================================= EIN-SOF Solutions BLIND SQL-i Vulnerability ========================================================================== +=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+= +=+=+= +=+=+= +=+=+= /\ |...

0.1AI score
Exploits0
seebug.org
seebug.org
added 2010/08/17 12:0 a.m.16 views

Joomla Component Jgrid 1.0 Local File Inclusion Vulnerability

No description provided by source. Jgrid 1.0 Joomla Component Local File Inclusion Vulnerability Name Jgrid Vendor http://datagrids.clubsareus.org Versions Affected 1.0 Author Salvatore Fresta aka Drosophila Website http://www.salvatorefresta.net Contact salvatorefresta at gmail dot com Date...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2010/07/31 12:0 a.m.34 views

Joomla! Component com_spielothek 1.6.9 - Multiple Blind SQL Injections

Spielothek 1.6.9 Joomla Component Multiple Blind SQL Injection Name Spielothek Vendor http://www.spielban.de Versions Affected 1.6.9 Author Salvatore Fresta aka Drosophila Website http://www.salvatorefresta.net Contact salvatorefresta at gmail dot com Date 2010-07-31 X. INDEX I. ABOUT THE...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2010/07/02 12:0 a.m.19 views

iScripts ReserveLogic 1.0 SQL Injection

iScripts ReserveLogic 1.0 SQL Injection Vulnerability Name iScripts ReserveLogic Vendor http://www.iscripts.com Versions Affected 1.0 Author Salvatore Fresta aka Drosophila Website http://www.salvatorefresta.net Contact salvatorefresta at gmail dot com Date 2010-01-07 X. INDEX I. ABOUT THE...

0.2AI score
Exploits0
Rows per page
Query Builder