6202 matches found
CVE-2024-54471
creationtimestamp| type| source ---|---|--- 2025-03-20 15:38:16+00:00| seen| https://bsky.app/profile/wts.dev/post/3lkszql3xpc2b 2025-03-20 17:07:57+00:00| seen| https://bsky.app/profile/hnws.bsky.social/post/3lkt6qxszvi2x 2025-03-20 17:08:05+00:00| seen|...
CVE-2024-9309
creationtimestamp| type| source ---|---|--- 2025-03-20 11:40:53+00:00| seen| https://bsky.app/profile/cyberalerts.bsky.social/post/3lksmi34chk2v 2025-03-20 12:48:39+00:00| seen| https://mastodon.social/users/CyberSignaler/statuses/114194836150364747...
CVE-2024-8581
creationtimestamp| type| source ---|---|--- 2025-03-20 11:40:44+00:00| seen| https://bsky.app/profile/cyberalerts.bsky.social/post/3lksmhtme252n 2025-03-20 12:48:30+00:00| seen| https://mastodon.social/users/CyberSignaler/statuses/114194835702582245...
CVE-2024-13881
The Link My Posts WordPress plugin through 1.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...
CVE-2024-13881
The Link My Posts WordPress plugin through 1.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...
CVE-2024-13881
CVE-2024-13881 affects the Link My Posts WordPress plugin (versions up to 1.0). The issue is a Reflected Cross-Site Scripting vulnerability where user-supplied input is not properly sanitized/escaped before being output on the page, potentially impacting high-privilege users (e.g., admins). The C...
CVE-2024-13881 LinkMyPosts <= 1.0 - Reflected XSS
The Link My Posts WordPress plugin through 1.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...
CVE-2024-13881 LinkMyPosts <= 1.0 - Reflected XSS
The Link My Posts WordPress plugin through 1.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...
CVE-2025-23120
creationtimestamp| type| source ---|---|--- 2025-03-19 21:33:08+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114191236315023587 2025-03-19 22:59:50+00:00| seen| https://bsky.app/profile/etguenni.bsky.social/post/3lkrbxa63js2j 2025-03-19 22:59:56+00:00| seen|...
CVE-2025-2476
creationtimestamp| type| source ---|---|--- 2025-03-19 19:18:21+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/8127 2025-03-19 19:54:04+00:00| seen| https://infosec.exchange/users/vuldb/statuses/114190846798466515 2025-03-19 19:57:35+00:00| seen|...
CVE-2024-13790
creationtimestamp| type| source ---|---|--- 2025-03-19 08:49:01+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/8036 2025-03-19 09:40:19+00:00| seen| https://bsky.app/profile/cyberalerts.bsky.social/post/3lkpvbnadmm24 2025-03-19 10:43:20+00:00| seen|...
CVE-2024-13412
creationtimestamp| type| source ---|---|--- 2025-03-19 07:49:35+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/8031 2025-03-19 08:42:07+00:00| seen| https://bsky.app/profile/potato.software/post/3lkprzjya2g2r 2025-03-19 10:28:11+00:00| seen| https://t.me/cvedetector/20628 2025-03-19...
CVE-2024-13410
creationtimestamp| type| source ---|---|--- 2025-03-19 07:34:10+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lkpoa2d4et26 2025-03-19 07:40:19+00:00| seen| https://bsky.app/profile/cyberalerts.bsky.social/post/3lkpol2gbfw24 2025-03-19 07:49:36+00:00| seen|...
WordPress plugin LifterLMS 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...
CERTFR-2025-ACT-011
creationtimestamp| type| source ---|---|--- 2025-03-17 14:17:36+00:00| seen| https://social.numerique.gouv.fr/users/certfr/statuses/114178198997319032 2025-03-17 14:17:36+00:00| seen| https://bsky.app/profile/cert-fr.bsky.social/post/3lkldtl2fgz2u 2025-03-17 14:51:15+00:00| seen|...
CVE-2024-13407
The Omnipress plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.5.4 via the megamenu block due to insufficient restrictions on which posts can be included. This makes it possible for authenticated attackers, with Contributor-level access and above,...
CVE-2025-23744
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in dvs11 Random Posts, Mp3 Player + ShareButton random-posts-mp3-player-sharebutton allows Reflected XSS.This issue affects Random Posts, Mp3 Player + ShareButton: from n/a through = 1.4.1...
WordPress plugin Random Posts, Mp3 Player + ShareButton 跨站脚本漏洞
WordPress and WordPress plugin are products of the WordPress Foundation, a blogging platform developed in the PHP language. The platform supports personal blog sites on servers running PHP and MySQL. WordPress plugin is an application plugin. A cross-site scripting vulnerability exists in WordPre...
GHSA-RWP7-7VC6-8477
creationtimestamp| type| source ---|---|--- 2025-03-14 18:23:01+00:00| seen| https://bsky.app/profile/buherator.bsky.social/post/3lkea5pding2d 2025-04-04 18:18:29+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114281067875557615 2025-04-04 18:18:29+00:00| seen|...
OESA-2025-1272 python-aiohttp security update
Async http client/server framework asyncio. Security Fixes: aiohttp is an asynchronous HTTP client/server framework for asyncio and Python. When using aiohttp as a web server and configuring static routes, it is necessary to specify the root path for static files. Additionally, the option...