Lucene search
K

5106 matches found

Patchstack
Patchstack
added 2023/05/03 12:0 a.m.15 views

WordPress WPPizza Plugin <= 3.17.1 is vulnerable to Cross Site Scripting (XSS)

Software WPPizza Type Plugin Vulnerable versions = 3.17.1 Fixed in 3.17.2 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-32105 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 82b4feb29bbf Credits Le Ngoc Anh Required...

7.1CVSS5.6AI score0.00396EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2023/05/03 12:0 a.m.12 views

WordPress JupiterX Theme <= 3.0.0 is vulnerable to Local File Inclusion

Software JupiterX Type Theme Vulnerable versions = 3.0.0 Fixed in 3.1.0 OWASP Top 10 A1: Injection Classification Local File Inclusion CVE CVE-2023-32110 Patch priority High CVSS severity High 7.6 Developer Claim ownership PSID 5d8f9e2208af Credits Rafie Muhammad Patchstack Required privilege...

8.8CVSS6.8AI score0.00809EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2023/05/03 12:0 a.m.10 views

WordPress Library Viewer Plugin <= 2.0.6 is vulnerable to Cross Site Scripting (XSS)

Software Library Viewer Type Plugin Vulnerable versions = 2.0.6 Fixed in 2.0.6.1 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-32102 Patch priority Medium CVSS severity Medium 6.5 Developer Claim ownership PSID 0ff4626c41da Credits Mika Required...

6.5CVSS5.6AI score0.00374EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2023/05/03 12:0 a.m.9 views

WordPress FV Flowplayer Video Player Plugin <= 7.5.32.7212 is vulnerable to Cross Site Scripting (XSS)

Software FV Flowplayer Video Player Type Plugin Vulnerable versions = 7.5.32.7212 Fixed in 7.5.35.7212 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-30499 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 08f2f9dc3464...

7.1CVSS5.6AI score0.00396EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2023/05/02 12:0 a.m.13 views

WordPress Advanced Custom Fields Plugin < 5.12.5 is vulnerable to PHP Object Injection

Software Advanced Custom Fields Type Plugin Vulnerable versions 5.12.5 Fixed in 5.12.5 OWASP Top 10 A1: Injection Classification PHP Object Injection CVE CVE-2023-1196 Patch priority Medium CVSS severity Medium 4.9 Developer Claim ownership PSID 8c55b8a9942a Credits Nguyen Huu Do Required privile...

8.8CVSS7.2AI score0.0108EPSS
Exploits3References3Affected Software1
Patchstack
Patchstack
added 2023/05/02 12:0 a.m.13 views

WordPress Advanced Custom Fields PRO Plugin < 6.1.0 is vulnerable to PHP Object Injection

Software Advanced Custom Fields PRO Type Plugin Vulnerable versions 6.1.0 Fixed in 6.1.0 OWASP Top 10 A1: Injection Classification PHP Object Injection CVE CVE-2023-1196 Patch priority Medium CVSS severity Medium 4.9 Developer Claim ownership PSID 322be262bcd9 Credits Nguyen Huu Do Required...

8.8CVSS6.7AI score0.0108EPSS
Exploits3References2Affected Software1
Patchstack
Patchstack
added 2023/05/02 12:0 a.m.10 views

WordPress WP Visitor Statistics (Real Time Traffic) Plugin < 6.9 is vulnerable to SQL Injection

Software WP Visitor Statistics Real Time Traffic Type Plugin Vulnerable versions 6.9 Fixed in 6.9 OWASP Top 10 A1: Injection Classification SQL Injection CVE CVE-2023-0600 Patch priority High CVSS severity High 9.3 Developer Claim ownership PSID 05f734351f7a Credits Trần Quốc Trường An Required...

9.8CVSS7.2AI score0.04234EPSS
Exploits2References3Affected Software1
Patchstack
Patchstack
added 2023/05/02 12:0 a.m.14 views

WordPress WP EasyPay Plugin < 4.1 is vulnerable to Cross Site Scripting (XSS)

Software WP EasyPay Type Plugin Vulnerable versions 4.1 Fixed in 4.1 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-1465 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 2b3a789b9109 Credits Pablo Sanchez Required privilege...

6.1CVSS5.9AI score0.00458EPSS
Exploits2References3Affected Software1
Patchstack
Patchstack
added 2023/04/28 12:0 a.m.9 views

WordPress Maintenance Switch Plugin <= 1.5.2 is vulnerable to Cross Site Scripting (XSS)

Software Maintenance Switch Type Plugin Vulnerable versions = 1.5.2 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2022-47590 Patch priority Low CVSS severity Low 7.1 Developer Claim ownership PSID 56383f0b4655 Credits minhtuanact Required...

7.1CVSS6AI score0.00382EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2023/04/28 12:0 a.m.8 views

WordPress Photo Gallery Slideshow & Masonry Tiled Gallery Plugin <= 1.0.13 is vulnerable to Cross Site Scripting (XSS)

Software Photo Gallery Slideshow & Masonry Tiled Gallery Type Plugin Vulnerable versions = 1.0.13 Fixed in 1.0.14 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-2402 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID...

6.1CVSS5.9AI score0.00433EPSS
Exploits0References3Affected Software1
Patchstack
Patchstack
added 2023/04/28 12:0 a.m.8 views

WordPress Depicter Slider Plugin <= 1.9.0 is vulnerable to Broken Access Control

Software Depicter Slider Type Plugin Vulnerable versions = 1.9.0 Fixed in 1.9.1 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2022-47176 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 539ee2ac709d Credits thiennv Required privilege...

6.9AI score0.00518EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2023/04/27 12:0 a.m.10 views

WordPress Zephyr Project Manager Plugin <= 3.3.9 is vulnerable to Open Redirection

Software Zephyr Project Manager Type Plugin Vulnerable versions = 3.3.9 Fixed in 3.3.91 OWASP Top 10 A6: Security Misconfiguration Classification Open Redirection CVE CVE-2023-31237 Patch priority Low CVSS severity Low 4.7 Developer Claim ownership PSID 0a67e197ec76 Credits Nguyen Xuan Chien...

6.1CVSS6.9AI score0.00362EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2023/04/27 12:0 a.m.14 views

WordPress Ad Inserter Plugin < 2.7.27 is vulnerable to PHP Object Injection

Software Ad Inserter Type Plugin Vulnerable versions 2.7.27 Fixed in 2.7.27 OWASP Top 10 A8: Insecure Deserialization Classification PHP Object Injection CVE CVE-2023-1549 Patch priority Low CVSS severity Low 4.4 Developer Igor Funa PSID 3b84de757ee4 Credits Nguyen Huu Do Required privilege...

7.2CVSS6.9AI score0.16903EPSS
Exploits2References3Affected Software1
Patchstack
Patchstack
added 2023/04/27 12:0 a.m.10 views

WordPress Orbit Fox by ThemeIsle Plugin < 2.10.24 is vulnerable to Server Side Request Forgery (SSRF)

Software Orbit Fox by ThemeIsle Type Plugin Vulnerable versions 2.10.24 Fixed in 2.10.24 OWASP Top 10 A3: Sensitive Data Exposure Classification Server Side Request Forgery SSRF CVE CVE-2023-2287 Patch priority Medium CVSS severity Medium 5.5 Developer Claim ownership PSID b60604d1a545 Credits Al...

4.3CVSS6.9AI score0.00557EPSS
Exploits2References4Affected Software1
Patchstack
Patchstack
added 2023/04/27 12:0 a.m.11 views

WordPress Active Directory Integration / LDAP Integration Plugin < 4.1.1 is vulnerable to Sensitive Data Exposure

Software Active Directory Integration / LDAP Integration Type Plugin Vulnerable versions 4.1.1 Fixed in 4.1.1 OWASP Top 10 A3: Sensitive Data Exposure Classification Sensitive Data Exposure CVE CVE-2023-0812 Patch priority High CVSS severity High 7.5 Developer Claim ownership PSID 79df970a00a6...

7.5CVSS6.8AI score0.00819EPSS
Exploits2References3Affected Software1
Patchstack
Patchstack
added 2023/04/27 12:0 a.m.12 views

WordPress LIQUID SPEECH BALLOON Plugin < 1.2 is vulnerable to Cross Site Request Forgery (CSRF)

Software LIQUID SPEECH BALLOON Type Plugin Vulnerable versions 1.2 Fixed in 1.2 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-27889 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID b1811e420432 Credits Ryo Sato of BroadBa...

8.8CVSS7AI score0.00457EPSS
Exploits0References3Affected Software1
Patchstack
Patchstack
added 2023/04/27 12:0 a.m.14 views

WordPress WP Directory Kit Plugin <= 1.1.9 is vulnerable to Open Redirection

Software WP Directory Kit Type Plugin Vulnerable versions = 1.1.9 Fixed in 1.2.0 OWASP Top 10 A6: Security Misconfiguration Classification Open Redirection CVE CVE-2023-31229 Patch priority Low CVSS severity Low 4.7 Developer Claim ownership PSID e18f8bf074f1 Credits Nguyen Xuan Chien Required...

6.1CVSS6.9AI score0.00326EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2023/04/26 12:0 a.m.11 views

WordPress Responsive Filterable Portfolio Plugin < 1.0.20 is vulnerable to Cross Site Scripting (XSS)

Software Responsive Filterable Portfolio Type Plugin Vulnerable versions 1.0.20 Fixed in 1.0.20 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-2119 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID fdef3fcbfd28 Credits Marco...

6.1CVSS5.9AI score0.00567EPSS
Exploits0References3Affected Software1
Patchstack
Patchstack
added 2023/04/26 12:0 a.m.9 views

WordPress User IP and Location Plugin <= 2.2 is vulnerable to Cross Site Scripting (XSS)

Software User IP and Location Type Plugin Vulnerable versions = 2.2 Fixed in 2.2.1 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-30780 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID e801bae1a40a Credits deokhunKim Required...

6.5CVSS6AI score0.00361EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2023/04/25 12:0 a.m.14 views

WordPress Autoptimize Plugin < 3.1.7 is vulnerable to Cross Site Scripting (XSS)

Software Autoptimize Type Plugin Vulnerable versions 3.1.7 Fixed in 3.1.7 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-2113 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 45f6a5c2bef1 Credits Juampa Rodríguez Required...

4.8CVSS6AI score0.0047EPSS
Exploits1References5Affected Software1
Rows per page
Query Builder