Lucene search
K

11 matches found

Positive Technologies
Positive Technologies
added 2026/06/03 12:0 a.m.12 views

PT-2026-45900

Name of the Vulnerable Software and Affected Versions Laravel affected versions not specified Description A CRLF injection flaw allows for mail relay abuse, email hijacking, and header abuse. CRLF injection occurs when an attacker inserts Carriage Return CR and Line Feed LF characters into an inp...

5.8AI score0.00048EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2026/02/19 7:28 a.m.8 views

CVE-2026-1714

The ShopLentor – WooCommerce Builder for Elementor & Gutenberg +21 Modules – All in One Solution plugin for WordPress is vulnerable to Email Relay Abuse in all versions up to, and including, 3.3.2. This is due to the lack of validation on the 'sendto', 'producttitle', 'wlmessage', and 'wlemail'...

8.6CVSS5.8AI score0.00507EPSS
Exploits0References1
NVD
NVD
added 2026/02/18 5:16 a.m.8 views

CVE-2026-1714

The ShopLentor – WooCommerce Builder for Elementor & Gutenberg +21 Modules – All in One Solution plugin for WordPress is vulnerable to Email Relay Abuse in all versions up to, and including, 3.3.2. This is due to the lack of validation on the 'sendto', 'producttitle', 'wlmessage', and 'wlemail'...

8.6CVSS0.00507EPSS
Exploits0References8
CVE
CVE
added 2026/02/18 4:35 a.m.14 views

CVE-2026-1714

The CVE concerns the WordPress plugin ShopLentor – WooCommerce Builder for Elementor & Gutenberg +21 Modules (All in One Solution). Affected versions: all up to and including 3.3.2. The vulnerability resides in the woolentor_suggest_price_action AJAX endpoint, where there is no validation on the ...

8.6CVSS5.8AI score0.00507EPSS
Exploits0References8
Cvelist
Cvelist
added 2026/02/18 4:35 a.m.29 views

CVE-2026-1714 ShopLentor <= 3.3.2 - Unauthenticated Email Relay Abuse via 'woolentor_suggest_price_action' AJAX Action

The ShopLentor – WooCommerce Builder for Elementor & Gutenberg +21 Modules – All in One Solution plugin for WordPress is vulnerable to Email Relay Abuse in all versions up to, and including, 3.3.2. This is due to the lack of validation on the 'sendto', 'producttitle', 'wlmessage', and 'wlemail'...

8.6CVSS0.00507EPSS
Exploits0References8
Vulnrichment
Vulnrichment
added 2026/02/18 4:35 a.m.4 views

CVE-2026-1714 ShopLentor <= 3.3.2 - Unauthenticated Email Relay Abuse via 'woolentor_suggest_price_action' AJAX Action

The ShopLentor – WooCommerce Builder for Elementor & Gutenberg +21 Modules – All in One Solution plugin for WordPress is vulnerable to Email Relay Abuse in all versions up to, and including, 3.3.2. This is due to the lack of validation on the 'sendto', 'producttitle', 'wlmessage', and 'wlemail'...

8.6CVSS5.8AI score0.00507EPSS
Exploits0References8
ATTACKERKB
ATTACKERKB
added 2026/02/18 4:35 a.m.5 views

CVE-2026-1714

The ShopLentor – WooCommerce Builder for Elementor & Gutenberg +21 Modules – All in One Solution plugin for WordPress is vulnerable to Email Relay Abuse in all versions up to, and including, 3.3.2. This is due to the lack of validation on the 'sendto', 'producttitle', 'wlmessage', and 'wlemail'...

8.6CVSS5.8AI score0.00507EPSS
Exploits0References9
CNNVD
CNNVD
added 2026/02/18 12:0 a.m.6 views

WordPress plugin ShopLentor – WooCommerce Builder for Elementor & Gutenberg +21 Modules – All in One Solution 注入漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows users to create personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be installed t...

8.6CVSS5.8AI score0.00507EPSS
Exploits0References8
OSV
OSV
added 2019/08/29 1:15 a.m.5 views

CVE-2019-13405

A broken access control vulnerability found in Advan VD-1 firmware version 230 leads to insecure ADB service. An attacker can send a POST request to cgibin/AdbSetting.cgi to enable ADB without any authentication then take the compromised device as a relay or to install mining software...

9.8CVSS5.8AI score0.02929EPSS
Exploits1References3
Metasploit
Metasploit
added 2013/05/15 1:52 a.m.49 views

SAP SMB Relay Abuse

This module exploits provides several SMB Relay abuse through different SAP services and functions. The attack is done through specially crafted requests including a UNC Path which will be accessing by the SAP system while trying to process the request. In order to get the hashes the...

0.2AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2004/07/25 12:0 a.m.22 views

SUSE-SA:2003:0012: hypermail

The remote host is missing the patch for the advisory SUSE-SA:2003:0012 hypermail. Hypermail is a tool to convert a Unix mail-box file to a set of cross- referenced HTML documents. During an internal source code review done by Thomas Biege several bugs where found in hypermail and its tools. Thes...

7.5CVSS5.6AI score0.049EPSS
Exploits0References1
Rows per page
Query Builder