Lucene search
K

6 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2021-34178

Malicious code in bioql PyPI...

5.8CVSS5.7AI score0.00684EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/05/22 9:5 p.m.6 views

CVE-2021-24781

The Image Source Control WordPress plugin before 2.3.1 allows users with a role as low as Contributor to change arbitrary post meta fields of arbitrary posts even those they should not be able to edit...

4.3CVSS6.7AI score0.00768EPSS
Exploits2References1
OSV
OSV
added 2023/06/07 2:15 a.m.5 views

CVE-2021-4351

The Frontend File Manager plugin for WordPress is vulnerable to Unauthenticated Post Meta Change in versions up to, and including, 18.2. This is due to lacking authentication protections, capability checks, and sanitization, all on the wpfmfilemetaupdate AJAX action. This makes it possible for...

5.3CVSS5.8AI score0.00684EPSS
Exploits1References2
Cvelist
Cvelist
added 2023/06/07 1:51 a.m.32 views

CVE-2021-4351 Frontend File Manager <= 18.2 - Unauthenticated Post Meta Change

The Frontend File Manager plugin for WordPress is vulnerable to Unauthenticated Post Meta Change in versions up to, and including, 18.2. This is due to lacking authentication protections, capability checks, and sanitization, all on the wpfmfilemetaupdate AJAX action. This makes it possible for...

5.8CVSS5.9AI score0.00684EPSS
Exploits1References2
WPVulnDB
WPVulnDB
added 2021/10/04 12:0 a.m.14 views

Image Source Control < 2.3.1 - Contributor+ Arbitrary Post Meta Value Change

The plugin allows users with a role as low as Contributor to change arbitrary post meta fields of arbitrary posts even those they should not be able to edit PoC Run while in the Post/Page editor as a contributor jQuery.postajaxurl, action: "iscsavemeta", nonce: iscData.nonce, id:781, key:...

4.3CVSS4.5AI score0.00768EPSS
Exploits2References1Affected Software1
Patchstack
Patchstack
added 2021/07/12 12:0 a.m.8 views

WordPress Frontend File Manager plugin <= 18.2 - Unauthenticated Post Meta Change and Arbitrary File Download vulnerability

Unauthenticated Post Meta Change and Arbitrary File Download vulnerability discovered by Jerome Bruandet NinTechNet in WordPress Frontend File Manager plugin versions = 18.2. Solution Update the WordPress Frontend File Manager plugin to the latest available version at least 18.3...

3.4AI score
Exploits0References2Affected Software1
Rows per page
Query Builder