Lucene search
K

7 matches found

NVD
NVD
added 2026/06/27 8:16 a.m.15 views

CVE-2026-11987

The Dokan: AI Powered WooCommerce Multivendor Marketplace Solution – Build Your Own Amazon, eBay, Etsy plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 5.0.4 via the 'id' parameter due to missing validation on a user controlled key. This...

4.3CVSS0.00271EPSS
Exploits0References14
RedhatCVE
RedhatCVE
added 2025/12/03 10:2 p.m.4 views

CVE-2025-64298

NMIS/BioDose V22.02 and previous version installations where the embedded Microsoft SQLServer Express is used are exposed in the Windows share accessed by clients in networked installs. By default, this directory has insecure directory paths that allow access to the SQL Server database and...

8.6CVSS7.3AI score0.00205EPSS
Exploits0References1
CVE
CVE
added 2025/10/18 6:42 a.m.24 views

CVE-2025-11741

CVE-2025-11741 affects the WPC Smart Quick View for WooCommerce plugin for WordPress. The vulnerability is an Information Exposure via the woosq_quickview AJAX endpoint caused by insufficient access restrictions, enabling unauthenticated attackers to read data from password-protected, private, or...

5.3CVSS5.8AI score0.00306EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-28526

Malicious code in bioql PyPI...

7.1CVSS6.7AI score0.00281EPSS
Exploits0References2
Github Security Blog
Github Security Blog
added 2022/02/27 12:0 a.m.23 views

Exposure of Resource to Wrong Sphere in microweber

Exposure of Resource to Wrong Sphere in microweber prior to 1.3 allows users to add deleted products to a cart and buy it...

5.5CVSS2.8AI score0.00631EPSS
Exploits1References4Affected Software1
OwnCloud
OwnCloud
added 2012/08/10 11:42 a.m.45 views

Server: Insufficiently random values

The rand and mtrand functions in PHP 5.4.x do not produce cryptographically strong random numbers, which allows attackers to leverage exposures in products that rely on these functions for security-relevant functionality, as demonstrated by the password-reset functionality in ownCloud 4.0.x. For...

5.1CVSS4.6AI score0.03013EPSS
Exploits0Affected Software1
securityvulns
securityvulns
added 2009/11/11 12:0 a.m.277 views

Cisco Security Advisory: Transport Layer Security Renegotiation Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Transport Layer Security Renegotiation Vulnerability Advisory ID: cisco-sa-20091109-tls http://www.cisco.com/warp/public/707/cisco-sa-20091109-tls.shtml Revision 1.0 For Public Release 2009 November 9 1600 UTC GMT Summary...

5.8CVSS0.9AI score0.87264EPSS
Exploits14
Rows per page
Query Builder