Lucene search
K

810 matches found

OSV
OSV
added 2019/10/29 7:15 p.m.13 views

CVE-2018-10727

Reflected Cross-Site Scripting XSS vulnerability in the fabrikreferrer hidden field in the Fabrikar Fabrik component through v3.8.1 for Joomla! allows remote attackers to inject arbitrary web script via the HTTP Referer header...

6.1CVSS5.9AI score
Exploits0References1
Prion
Prion
added 2019/10/29 7:15 p.m.14 views

Cross site scripting

Reflected Cross-Site Scripting XSS vulnerability in the fabrikreferrer hidden field in the Fabrikar Fabrik component through v3.8.1 for Joomla! allows remote attackers to inject arbitrary web script via the HTTP Referer header...

4.3CVSS6.1AI score0.01047EPSS
Exploits1References1Affected Software1
NVD
NVD
added 2019/10/10 5:15 p.m.11 views

CVE-2015-9472

The incoming-links plugin before 0.9.10b for WordPress has referrers.php XSS via the Referer HTTP header...

6.1CVSS6.1AI score0.01318EPSS
Exploits0References3
Cvelist
Cvelist
added 2019/10/10 4:13 p.m.17 views

CVE-2015-9472

The incoming-links plugin before 0.9.10b for WordPress has referrers.php XSS via the Referer HTTP header...

6.1AI score0.01318EPSS
Exploits0References3
NVD
NVD
added 2019/08/21 6:15 p.m.11 views

CVE-2012-6715

The formbuilder plugin before 0.9.1 for WordPress has XSS via a Referer header...

6.1CVSS6.1AI score0.00913EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2019/08/21 6:15 p.m.1 views

CVE-2012-6715

The formbuilder plugin before 0.9.1 for WordPress has XSS via a Referer header...

6.1CVSS5.4AI score0.00913EPSS
Exploits0References3
Prion
Prion
added 2019/08/21 6:15 p.m.9 views

Default credentials

The formbuilder plugin before 0.9.1 for WordPress has XSS via a Referer header...

4.3CVSS6AI score0.00913EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2019/08/21 5:46 p.m.16 views

CVE-2012-6715

The formbuilder plugin before 0.9.1 for WordPress has XSS via a Referer header...

6AI score0.00913EPSS
Exploits0References1
NVD
NVD
added 2019/08/14 3:15 p.m.18 views

CVE-2015-9314

The newstatpress plugin before 1.0.4 for WordPress has XSS related to the Referer header...

6.1CVSS6.1AI score0.00923EPSS
Exploits0References1
Prion
Prion
added 2019/08/14 3:15 p.m.14 views

Cross site request forgery (csrf)

The newstatpress plugin before 1.0.4 for WordPress has XSS related to the Referer header...

4.3CVSS6.3AI score0.00923EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2019/08/14 2:52 p.m.52 views

CVE-2015-9314

The CVE-2015-9314 entry concerns the WordPress plugin NewStatPress, affected versions prior to 1.0.4. The vulnerability is an XSS issue tied to the Referer header, impacting the plugin’s handling of HTTP Referer data. Several connected sources corroborate the same flaw (XSS related to Referer hea...

6.1CVSS6AI score0.00923EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2019/08/14 2:52 p.m.17 views

CVE-2015-9314

The newstatpress plugin before 1.0.4 for WordPress has XSS related to the Referer header...

6.1AI score0.00923EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2019/08/07 12:0 a.m.7 views

PT-2019-11768 · Jenkins · Jenkins Gitlab Authentication Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins Gitlab Authentication Plugin version 1.4 and earlier Description: The issue allows attackers to redirect users to a URL outside Jenkins after a successful login, implementing an open redirect. This can be used by malicious sites to...

6.1CVSS6AI score0.00965EPSS
Exploits0References6
NVD
NVD
added 2019/07/29 4:15 p.m.26 views

CVE-2019-6726

The WP Fastest Cache plugin through 0.8.9.0 for WordPress allows remote attackers to delete arbitrary files because wppostratingsclearfastestcache and rmfolderrecursively in wpFastestCache.php mishandle ../ in an HTTP Referer header...

6.5CVSS6.6AI score0.04348EPSS
Exploits3References5
OSV
OSV
added 2019/07/29 4:15 p.m.4 views

CVE-2019-6726

The WP Fastest Cache plugin through 0.8.9.0 for WordPress allows remote attackers to delete arbitrary files because wppostratingsclearfastestcache and rmfolderrecursively in wpFastestCache.php mishandle ../ in an HTTP Referer header...

6.5CVSS6.8AI score0.04348EPSS
Exploits3References5
Prion
Prion
added 2019/05/27 11:29 p.m.12 views

Cross site scripting

EmpireCMS 7.5.0 has XSS via the HTTP Referer header to e/member/doaction.php...

4.3CVSS5.9AI score0.00826EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2019/05/27 11:29 p.m.3 views

CVE-2019-12362

EmpireCMS 7.5.0 has XSS via the HTTP Referer header to e/member/doaction.php...

6.1CVSS6.4AI score0.00826EPSS
Exploits1References1
Cvelist
Cvelist
added 2019/05/27 10:50 p.m.15 views

CVE-2019-12362

EmpireCMS 7.5.0 has XSS via the HTTP Referer header to e/member/doaction.php...

6AI score0.00826EPSS
Exploits1References1
OSV
OSV
added 2019/05/13 1:29 p.m.2 views

CVE-2018-12300

Arbitrary Redirect in echo-server.html in Seagate NAS OS version 4.3.15.1 allows attackers to disclose information in the Referer header via the 'state' URL parameter...

6.1CVSS5.7AI score0.02698EPSS
Exploits1References1
Prion
Prion
added 2019/05/13 1:29 p.m.13 views

Design/Logic Flaw

Arbitrary Redirect in echo-server.html in Seagate NAS OS version 4.3.15.1 allows attackers to disclose information in the Referer header via the 'state' URL parameter...

5.8CVSS6AI score0.02698EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder