Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7650 matches found

NVD
NVDadded 2019/12/26 3:15 p.m.12 views

CVE-2019-19541

The ListingPro theme before v2.0.14.2 for WordPress has Persistent XSS via the Best Day/Night field on the new listing submit page...

5.4CVSS5.4AI score0.00717EPSS
Exploits2References1
OSV
OSVadded 2019/12/26 3:15 p.m.2 views

CVE-2019-19542

The ListingPro theme before v2.0.14.2 for WordPress has Persistent XSS via the Good For field on the new listing submit page...

5.4CVSS6.1AI score0.00717EPSS
Exploits2References1
NVD
NVDadded 2019/12/26 3:15 p.m.17 views

CVE-2019-19542

The ListingPro theme before v2.0.14.2 for WordPress has Persistent XSS via the Good For field on the new listing submit page...

5.4CVSS5.4AI score0.00717EPSS
Exploits2References1
OSV
OSVadded 2019/12/26 3:15 p.m.2 views

CVE-2019-19541

The ListingPro theme before v2.0.14.2 for WordPress has Persistent XSS via the Best Day/Night field on the new listing submit page...

5.4CVSS6.1AI score
Exploits0References1
Prion
Prionadded 2019/12/26 3:15 p.m.15 views

Cross site scripting

The ListingPro theme before v2.0.14.2 for WordPress has Persistent XSS via the Good For field on the new listing submit page...

3.5CVSS5.3AI score0.00717EPSS
Exploits2References1Affected Software1
Prion
Prionadded 2019/12/26 3:15 p.m.13 views

Cross site scripting

The ListingPro theme before v2.0.14.2 for WordPress has Persistent XSS via the Best Day/Night field on the new listing submit page...

3.5CVSS5.3AI score0.00717EPSS
Exploits2References1Affected Software1
Cvelist
Cvelistadded 2019/12/26 2:33 p.m.15 views

CVE-2019-19541

The ListingPro theme before v2.0.14.2 for WordPress has Persistent XSS via the Best Day/Night field on the new listing submit page...

5.4AI score0.00717EPSS
Exploits2References1
CVE
CVEadded 2019/12/26 2:33 p.m.68 views

CVE-2019-19541

CVE-2019-19541 affects the ListingPro WordPress Directory Theme prior to v2.0.14.2, exposing a persistent XSS vulnerability via the Best Day/Night field on the new listing submit page. Public details in connected records describe the vulnerable input fields and the exploit path, including known P...

5.4CVSS5.3AI score0.00717EPSS
Exploits2References1Affected Software1
Cvelist
Cvelistadded 2019/12/26 2:33 p.m.17 views

CVE-2019-19542

The ListingPro theme before v2.0.14.2 for WordPress has Persistent XSS via the Good For field on the new listing submit page...

5.4AI score0.00717EPSS
Exploits2References1
CVE
CVEadded 2019/12/26 2:33 p.m.74 views

CVE-2019-19542

CVE-2019-19542 affects the ListingPro WordPress Directory Theme prior to v2.0.14.2, where a Persistent XSS vulnerability exists via the Good For field on the new listing submit page. Multiple sources (NVD, Red Hat, CNVD/WPVulndb, CVE.org) confirm a stored/reflected cross-site scripting flaw in Li...

5.4CVSS5.3AI score0.00717EPSS
Exploits2References1Affected Software1
The Hacker News
The Hacker Newsadded 2019/12/25 4:44 p.m.68 views

How Organizations Can Defend Against Advanced Persistent Threats

Advanced persistent threats APTs have emerged to be legitimate concerns for all organizations. APTs are threat actors that breach networks and infrastructures and stealthily lurk within them over extended spans of time. They typically perform complex hacks that allow them to steal or destroy data...

0.5AI score
Exploits0
The Hacker News
The Hacker Newsadded 2019/12/25 4:44 p.m.8 views

How Organizations Can Defend Against Advanced Persistent Threats

Advanced persistent threats APTs have emerged to be legitimate concerns for all organizations. APTs are threat actors that breach networks and infrastructures and stealthily lurk within them over extended spans of time. They typically perform complex hacks that allow them to steal or destroy data...

5.9AI score
Exploits0
Packet Storm
Packet Stormadded 2019/12/17 12:0 a.m.150 views

Zendesk SweetHawk Survey 1.6 Cross Site Scripting

Exploit Title: Zendesk App SweetHawk Survey 1.6 - Persistent Cross-Site Scripting Date: 2019-12-17 Exploit Author: MTK Vendor Homepage: https://sweethawk.co/zendesk/survey-app Software Link: https://www.zendesk.com/apps/support/survey/ Version: Up to v1.6 Tested on: Zendesk - Firefox/Windows...

7.4AI score
Exploits0
NVD
NVDadded 2019/12/16 8:15 p.m.17 views

CVE-2019-16779

In RubyGem excon before 0.71.0, there was a race condition around persistent connections, where a connection which is interrupted such as by a timeout would leave data on the socket. Subsequent requests would then read this data, returning content from the previous response. The race condition...

5.9CVSS5.8AI score0.014EPSS
Exploits0References5
OSV
OSVadded 2019/12/16 8:15 p.m.1 views

DEBIAN-CVE-2019-16779

In RubyGem excon before 0.71.0, there was a race condition around persistent connections, where a connection which is interrupted such as by a timeout would leave data on the socket. Subsequent requests would then read this data, returning content from the previous response. The race condition...

5.9CVSS5.9AI score0.014EPSS
Exploits0References1
Prion
Prionadded 2019/12/16 8:15 p.m.21 views

Race condition

In RubyGem excon before 0.71.0, there was a race condition around persistent connections, where a connection which is interrupted such as by a timeout would leave data on the socket. Subsequent requests would then read this data, returning content from the previous response. The race condition...

4.3CVSS5.7AI score0.014EPSS
Exploits0References5Affected Software4
UbuntuCve
UbuntuCveadded 2019/12/16 8:15 p.m.25 views

CVE-2019-16779

In RubyGem excon before 0.71.0, there was a race condition around persistent connections, where a connection which is interrupted such as by a timeout would leave data on the socket. Subsequent requests would then read this data, returning content from the previous response. The race condition...

5.9CVSS6.2AI score0.014EPSS
Exploits0References3
OSV
OSVadded 2019/12/16 8:15 p.m.2 views

UBUNTU-CVE-2019-16779

In RubyGem excon before 0.71.0, there was a race condition around persistent connections, where a connection which is interrupted such as by a timeout would leave data on the socket. Subsequent requests would then read this data, returning content from the previous response. The race condition...

5.9CVSS6.2AI score0.014EPSS
Exploits0References4
Cvelist
Cvelistadded 2019/12/16 7:35 p.m.18 views

CVE-2019-16779 In RubyGem excon, interrupted Persistent Connections May Leak Response Data

In RubyGem excon before 0.71.0, there was a race condition around persistent connections, where a connection which is interrupted such as by a timeout would leave data on the socket. Subsequent requests would then read this data, returning content from the previous response. The race condition...

5.8CVSS5.7AI score0.014EPSS
Exploits0References5
Debian CVE
Debian CVEadded 2019/12/16 7:35 p.m.31 views

CVE-2019-16779

In RubyGem excon before 0.71.0, there was a race condition around persistent connections, where a connection which is interrupted such as by a timeout would leave data on the socket. Subsequent requests would then read this data, returning content from the previous response. The race condition...

5.9CVSS5.5AI score0.014EPSS
Exploits0
Rows per page
Query Builder