Lucene search
+L

1527 matches found

Patchstack
Patchstack
added 2024/11/21 12:0 a.m.12 views

WordPress CM Table Of Contents – WordPress TOC Plugin Plugin < 1.2.4 is vulnerable to Cross Site Scripting (XSS)

Software CM Table Of Contents – WordPress TOC Plugin Type Plugin Vulnerable versions 1.2.4 Fixed in 1.2.4 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-5029 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 7d80877428bb...

4.8CVSS5.9AI score0.00207EPSS
Exploits1References4Affected Software1
Patchstack
Patchstack
added 2024/11/21 12:0 a.m.10 views

WordPress Dino Game Plugin <= 1.1.0 is vulnerable to Cross Site Scripting (XSS)

Software Dino Game Type Plugin Vulnerable versions = 1.1.0 Fixed in 1.2.0 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-11388 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 3063a938b1ce Credits SOPROBRO Required privilege...

6.4CVSS5.8AI score0.0108EPSS
Exploits0References3Affected Software1
Patchstack
Patchstack
added 2024/11/21 12:0 a.m.12 views

WordPress Premium Packages Plugin <= 5.9.3 is vulnerable to Cross Site Scripting (XSS)

Software Premium Packages Type Plugin Vulnerable versions = 5.9.3 Fixed in 5.9.4 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-11225 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 615d91201bee Credits Peter Thaleikis...

6.1CVSS6AI score0.00507EPSS
Exploits0References3Affected Software1
Patchstack
Patchstack
added 2024/11/21 12:0 a.m.18 views

WordPress System Dashboard Plugin < 2.8.15 is vulnerable to Cross Site Scripting (XSS)

Software System Dashboard Type Plugin Vulnerable versions 2.8.15 Fixed in 2.8.15 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-11107 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 948953d35f1c Credits Dogus Demirkiran...

5.9AI score0.00333EPSS
Exploits1References3Affected Software1
Patchstack
Patchstack
added 2024/11/20 12:0 a.m.15 views

WordPress SEO Plugin by Squirrly SEO Plugin < 12.3.21 is vulnerable to Cross Site Scripting (XSS)

Software SEO Plugin by Squirrly SEO Type Plugin Vulnerable versions 12.3.21 Fixed in 12.3.21 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-10515 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 865200521938 Credits Dmitrii...

3.5CVSS5.8AI score0.00303EPSS
Exploits1References4Affected Software1
Patchstack
Patchstack
added 2024/11/20 12:0 a.m.13 views

WordPress WPAdverts – Classifieds Plugin Plugin <= 2.1.7 is vulnerable to Cross Site Scripting (XSS)

Software WPAdverts – Classifieds Plugin Type Plugin Vulnerable versions = 2.1.7 Fixed in 2.1.8 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-10890 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID cf76651e6ed6 Credits...

6.1CVSS5.6AI score0.00572EPSS
Exploits0References3Affected Software1
Patchstack
Patchstack
added 2024/11/20 12:0 a.m.12 views

WordPress Co-marquage service-public.fr Plugin <= 0.5.76 is vulnerable to Cross Site Scripting (XSS)

Software Co-marquage service-public.fr Type Plugin Vulnerable versions = 0.5.76 Fixed in 0.5.77 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-10522 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 1b874700b5d7 Credits...

6.1CVSS6AI score0.00588EPSS
Exploits0References3Affected Software1
Patchstack
Patchstack
added 2024/11/20 12:0 a.m.18 views

WordPress WP Project Manager Plugin <= 2.6.14 is vulnerable to Broken Access Control

Software WP Project Manager Type Plugin Vulnerable versions = 2.6.14 Fixed in 2.6.15 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-10520 Patch priority Medium CVSS severity Medium 6.5 Developer Claim ownership PSID 33198b86bceb Credits Noah Stead...

5.3CVSS6.5AI score0.00312EPSS
Exploits0References3Affected Software1
Patchstack
Patchstack
added 2024/11/20 12:0 a.m.17 views

WordPress Grip Theme <= 1.0.9 is vulnerable to Arbitrary File Upload

Software Grip Type Theme Vulnerable versions = 1.0.9 Fixed in N/A OWASP Top 10 A3: Injection Classification Arbitrary File Upload CVE CVE-2024-52488 Patch priority High CVSS severity High 9.9 Developer Claim ownership PSID b55cacdb5723 Credits Mika Required privilege Subscriber Published 20...

6.6AI score0.00471EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2024/11/19 12:0 a.m.20 views

WordPress Save as PDF plugin by Pdfcrowd Plugin <= 4.2.1 is vulnerable to Cross Site Scripting (XSS)

Software Save as PDF plugin by Pdfcrowd Type Plugin Vulnerable versions = 4.2.1 Fixed in 4.2.2 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-10891 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID bc2c8b0bae5b Credits Peter...

6.4CVSS5.7AI score0.0027EPSS
Exploits0References3Affected Software1
Patchstack
Patchstack
added 2024/11/19 12:0 a.m.11 views

WordPress Ultimate Classified Listings Plugin <= 1.4 is vulnerable to Cross Site Scripting (XSS)

Software Ultimate Classified Listings Type Plugin Vulnerable versions = 1.4 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-52487 Patch priority Medium CVSS severity Medium 6.5 Developer Claim ownership PSID a096bde3e29d Credits Fariq Fadillah Gusti...

6.8AI score0.003EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2024/11/19 12:0 a.m.11 views

WordPress Classified Listing Plugin <= 3.1.15.1 is vulnerable to Broken Access Control

Software Classified Listing Type Plugin Vulnerable versions = 3.1.15.1 Fixed in 3.1.16 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-11194 Patch priority High CVSS severity High 7.6 Developer Claim ownership PSID 528b93e15121 Credits vgo0 Required...

8.8CVSS6.8AI score0.00548EPSS
Exploits0References3Affected Software1
Patchstack
Patchstack
added 2024/11/18 12:0 a.m.10 views

WordPress HTML5 Lyrics Karaoke Player Plugin <= 2.4 is vulnerable to Cross Site Scripting (XSS)

Software HTML5 Lyrics Karaoke Player Type Plugin Vulnerable versions = 2.4 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-52473 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID bd318a16984e Credits João Pedro S Alcântara...

7.1CVSS6.8AI score0.0026EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2024/11/18 12:0 a.m.12 views

WordPress Open edX LMS Plugin <= 2.6.1 is vulnerable to Cross Site Scripting (XSS)

Software Open edX LMS Type Plugin Vulnerable versions = 2.6.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-52452 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 991dc17302e9 Credits Mika Required privilege Unauthenticat...

6.5AI score0.0032EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2024/11/18 12:0 a.m.15 views

WordPress Google for WooCommerce Plugin <= 2.8.6 is vulnerable to Sensitive Data Exposure

Software Google for WooCommerce Type Plugin Vulnerable versions = 2.8.6 Fixed in 2.8.7 OWASP Top 10 A3: Sensitive Data Exposure Classification Sensitive Data Exposure CVE CVE-2024-10486 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID aafd7d494c83 Credits Francesco Carlucci...

5.3CVSS6.5AI score0.00879EPSS
Exploits0References3Affected Software1
Patchstack
Patchstack
added 2024/11/15 12:0 a.m.26 views

WordPress Simple Local Avatars Plugin <= 2.7.11 is vulnerable to Broken Access Control

Software Simple Local Avatars Type Plugin Vulnerable versions = 2.7.11 Fixed in 2.8.0 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-10786 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 717b24faeea4 Credits Trương Hữu Phúc...

4.3CVSS6.5AI score0.00333EPSS
Exploits0References3Affected Software1
Patchstack
Patchstack
added 2024/11/15 12:0 a.m.32 views

WordPress Jobs for WordPress Plugin < 2.7.8 is vulnerable to Cross Site Scripting (XSS)

Software Jobs for WordPress Type Plugin Vulnerable versions 2.7.8 Fixed in 2.7.8 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-10104 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 470159fcd95b Credits Krugov Artyom Required...

5.9CVSS5.9AI score0.00341EPSS
Exploits1References4Affected Software1
Patchstack
Patchstack
added 2024/11/15 12:0 a.m.14 views

WordPress WordPress Video Robot - The Ultimate Video Importer Plugin <= 1.20.0 is vulnerable to SQL Injection

Software WordPress Video Robot - The Ultimate Video Importer Type Plugin Vulnerable versions = 1.20.0 Fixed in N/A OWASP Top 10 A3: Injection Classification SQL Injection CVE CVE-2024-52431 Patch priority High CVSS severity High 9.3 Developer Claim ownership PSID 535a5d7fd7c2 Credits Bonds Requir...

9.8CVSS7.2AI score0.00445EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/11/14 12:0 a.m.26 views

WordPress Automation By Autonami Plugin < 3.3.0 is vulnerable to SQL Injection

Software Automation By Autonami Type Plugin Vulnerable versions 3.3.0 Fixed in 3.3.0 OWASP Top 10 A1: Injection Classification SQL Injection CVE CVE-2024-9186 Patch priority High CVSS severity High 9.3 Developer Claim ownership PSID 0bc9c96e6168 Credits y4ng0615 Required privilege Unauthenticated...

8.6CVSS6.9AI score0.02241EPSS
Exploits1References3Affected Software1
Patchstack
Patchstack
added 2024/11/14 12:0 a.m.21 views

WordPress WPvivid Backup and Migration Plugin <= 0.9.107 is vulnerable to PHP Object Injection

Software WPvivid Backup and Migration Type Plugin Vulnerable versions = 0.9.107 Fixed in 0.9.108 OWASP Top 10 A1: Injection Classification PHP Object Injection CVE CVE-2024-10962 Patch priority Low CVSS severity Low 9.8 Developer Claim ownership PSID b2861821d90b Credits Webbernaut Required...

8.8CVSS6.8AI score0.00635EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder