Lucene search
+L

229 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2023-31368

Malicious code in bioql PyPI...

8.8CVSS9AI score0.00324EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/08/26 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2018-18655

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Prayer through 1.3.5 sends a Referer header, containing a user's username, when a user clicks on a link in their email because header.t lacks a no-referrer...

4.3CVSS5AI score0.0084EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 9:15 a.m.3 views

CVE-2024-4462

The Nafeza Prayer Time plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 1.2.9 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level...

4.4CVSS5.9AI score0.00271EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 8:46 a.m.8 views

CVE-2024-3407

The WP Prayer WordPress plugin through 2.0.9 does not have CSRF checks in some places, which could allow attackers to make logged in users perform unwanted actions via CSRF attacks...

5.3CVSS6.8AI score0.00189EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/05/23 8:46 a.m.9 views

CVE-2024-3405

The WP Prayer WordPress plugin through 2.0.9 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack...

7.6CVSS6.7AI score0.00258EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/05/23 5:3 a.m.12 views

CVE-2023-27632

Cross-Site Request Forgery CSRF vulnerability in mmrs151 Daily Prayer Time plugin = 2023.03.08 versions...

8.8CVSS7.1AI score0.00324EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 5:2 a.m.10 views

CVE-2023-27631

Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in mmrs151 Daily Prayer Time plugin = 2023.05.04 versions...

6.5CVSS5.6AI score0.00399EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 1:58 a.m.10 views

CVE-2023-47817

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in mmrs151 Daily Prayer Time plugin = 2023.10.13 versions...

6.5CVSS6.9AI score0.00386EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:49 p.m.6 views

CVE-2021-4412

The WP Prayer plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.6.5. This is due to missing or incorrect nonce validation on the save and export functions. This makes it possible for unauthenticated attackers to save plugin settings and trigger a...

4.3CVSS5.8AI score0.00384EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:31 p.m.7 views

CVE-2021-24523

The Daily Prayer Time WordPress plugin before 2021.08.10 does not sanitise or escape some of its settings before outputting them in the page, leading to Authenticated Stored Cross-Site Scripting issues...

5.4CVSS5.6AI score0.0062EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/05/21 10:46 p.m.8 views

CVE-2008-0936

SQL injection vulnerability in index.php in the Prayer List prayerlist 1.04 module for XOOPS allows remote attackers to execute arbitrary SQL commands via the cid parameter in a view action...

7.5CVSS8.8AI score0.00961EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/21 8:22 p.m.6 views

CVE-2006-1976

Cross-site scripting XSS vulnerability in addRequest.php in Prayer Request Board PRB Beta 1 before 20060320 allows remote attackers to inject arbitrary web script or HTML via the Request field...

2.6CVSS6AI score0.00904EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/06 2:28 a.m.5 views

CVE-2025-22590

Cross-Site Request Forgery CSRF vulnerability in mmrs151 Prayer Times Anywhere prayer-times-anywhere allows Stored XSS.This issue affects Prayer Times Anywhere: from n/a through = 2.0.1...

7.1CVSS7.2AI score0.00171EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 6:47 a.m.8 views

CVE-2024-50534

Cross-Site Request Forgery CSRF vulnerability in techdabang World Prayer Time world-prayer-time allows Stored XSS.This issue affects World Prayer Time: from n/a through = 2.0...

7.1CVSS5.9AI score0.00194EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/01/09 11:11 a.m.15 views

CVE-2024-12515 Muslim Prayer Time-Salah/Iqamah <= 1.8.11 - Authenticated (Contributor+) Stored Cross-Site Scripting

The Muslim Prayer Time-Salah/Iqamah plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Masjid ID parameter in all versions up to, and including, 1.8.11 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...

6.4CVSS0.0033EPSS
Exploits0References3
Patchstack
Patchstack
added 2025/01/09 12:33 a.m.6 views

WordPress Muslim Prayer Time-Salah/Iqamah plugin <= 1.8.8 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by SOPROBRO in WordPress Plugin Muslim Prayer Time-Salah/Iqamah versions = 1.8.8...

6.4CVSS5.7AI score0.0033EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2025/01/09 12:0 a.m.5 views

WordPress plugin Muslim Prayer Time-Salah/Iqamah 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plug-in. A cross-site scripting...

6.4CVSS7.7AI score0.0033EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/01/09 12:0 a.m.8 views

PT-2025-1878 · WordPress · Muslim Prayer Time-Salah/Iqamah

Name of the Vulnerable Software and Affected Versions: The Muslim Prayer Time-Salah/Iqamah plugin for WordPress versions up to, and including, 1.8.8 Description: The issue is related to Stored Cross-Site Scripting via the Masjid ID parameter due to insufficient input sanitization and output...

6.4CVSS5.9AI score0.0033EPSS
Exploits0References6
NVD
NVD
added 2025/01/07 4:15 p.m.19 views

CVE-2025-22590

Cross-Site Request Forgery CSRF vulnerability in mmrs151 Prayer Times Anywhere prayer-times-anywhere allows Stored XSS.This issue affects Prayer Times Anywhere: from n/a through = 2.0.1...

7.1CVSS0.00171EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/01/07 2:57 p.m.7 views

CVE-2025-22590 WordPress Prayer Times Anywhere plugin <= 2.0.1 - CSRF to Stored XSS vulnerability

Cross-Site Request Forgery CSRF vulnerability in mmrs151 Prayer Times Anywhere prayer-times-anywhere allows Stored XSS.This issue affects Prayer Times Anywhere: from n/a through = 2.0.1...

7.1CVSS8.6AI score0.00171EPSS
Exploits0References1
Rows per page
Query Builder