Lucene search
K

7 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.9 views

EUVD-2022-15752

Malicious code in bioql PyPI...

4.8CVSS5.1AI score0.00588EPSS
Exploits2References1
CNVD
CNVD
added 2022/03/16 12:0 a.m.39 views

WordPress Sync QCloud COS plugin cross-site scripting vulnerability

WordPress is a set of blogging platform developed by Wordpress Foundation using PHP language. WordPress plugin is a WordPress application plugin. WordPress Sync QCloud COS plugin version prior to 2.0.1 contains a cross-site scripting vulnerability that stems from the plugin's failure to escape so...

4.8CVSS1AI score0.00588EPSS
Exploits2References1
ATTACKERKB
ATTACKERKB
added 2022/03/14 3:15 p.m.5 views

CVE-2022-0659

The Sync QCloud COS WordPress plugin before 2.0.1 does not escape some of its settings, allowing high privilege users such as admin to perform Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed...

4.8CVSS5.5AI score0.00588EPSS
Exploits2References2
NVD
NVD
added 2022/03/14 3:15 p.m.22 views

CVE-2022-0659

The Sync QCloud COS WordPress plugin before 2.0.1 does not escape some of its settings, allowing high privilege users such as admin to perform Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed...

4.8CVSS0.00588EPSS
Exploits2References1
Prion
Prion
added 2022/03/14 3:15 p.m.13 views

Cross site scripting

The Sync QCloud COS WordPress plugin before 2.0.1 does not escape some of its settings, allowing high privilege users such as admin to perform Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed...

3.5CVSS4.8AI score0.00588EPSS
Exploits2References1Affected Software1
Cvelist
Cvelist
added 2022/03/14 2:41 p.m.33 views

CVE-2022-0659 Sync iCloud COS < 2.0.1 - Admin+ Stored Cross-Site Scripting

The Sync QCloud COS WordPress plugin before 2.0.1 does not escape some of its settings, allowing high privilege users such as admin to perform Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed...

5AI score0.00588EPSS
Exploits2References1
Patchstack
Patchstack
added 2022/02/17 12:0 a.m.27 views

WordPress Sync QCloud COS plugin <= 2.0.0 - Stored Cross-Site Scripting (XSS) vulnerability

Stored Cross-Site Scripting XSS vulnerability discovered by fuzzyap1 in WordPress Sync QCloud COS plugin versions = 2.0.0. Solution Update the WordPress Sync QCloud COS plugin to the latest available version at least 2.0.1...

4.8CVSS1.7AI score0.00588EPSS
Exploits2References3Affected Software1
Rows per page
Query Builder