Lucene search
K

2431 matches found

Positive Technologies
Positive Technologies
added 2026/01/07 12:0 a.m.5 views

PT-2026-1601

Name of the Vulnerable Software and Affected Versions Responsive Pricing Table plugin for WordPress versions prior to 5.1.13 Description The software is susceptible to Stored Cross-Site Scripting due to insufficient input sanitization and output escaping. An authenticated attacker with Author-lev...

6.4CVSS5.5AI score0.00598EPSS
Exploits0References5
Patchstack
Patchstack
added 2026/01/06 11:20 p.m.8 views

WordPress Responsive Pricing Table plugin <= 5.1.12 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'table_currency' vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via 'tablecurrency' vulnerability discovered by Muhammad Yudha - DJ in WordPress Plugin Responsive Pricing Table versions = 5.1.12...

6.4CVSS5.6AI score0.00234EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2026/01/06 9:15 p.m.3 views

CVE-2025-29004

Incorrect Privilege Assignment vulnerability in AA-Team Premium Age Verification / Restriction for WordPress, AA-Team Responsive Coming Soon Landing Page / Holding Page for WordPress allows Privilege Escalation.This issue affects Premium Age Verification / Restriction for WordPress: from n/a...

8.8CVSS0.00254EPSS
Exploits0References2
CVE
CVE
added 2026/01/06 8:25 p.m.13 views

CVE-2025-29004

CVE-2025-29004 is an privilege escalation vulnerability affecting AA-Team Premium Age Verification / Restriction for WordPress and AA-Team Responsive Coming Soon Landing Page / Holding Page for WordPress. Multiple sources (NVD, Red Hat, CIRCL, Patchstack, PT Security) describe an incorrect privil...

8.8CVSS5.2AI score0.00254EPSS
Exploits0References2
NVD
NVD
added 2026/01/06 5:15 p.m.7 views

CVE-2025-69363

Missing Authorization vulnerability in CyberChimps Responsive Addons for Elementor responsive-addons-for-elementor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Responsive Addons for Elementor: from n/a through = 2.0.8...

6.5CVSS0.00205EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/01/06 4:36 p.m.2 views

CVE-2025-69363 WordPress Responsive Addons for Elementor plugin <= 2.0.8 - Broken Access Control vulnerability

Missing Authorization vulnerability in CyberChimps Responsive Addons for Elementor responsive-addons-for-elementor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Responsive Addons for Elementor: from n/a through = 2.0.8...

6.5CVSS6.6AI score0.00205EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/01/06 4:36 p.m.24 views

CVE-2025-69363 WordPress Responsive Addons for Elementor plugin <= 2.0.8 - Broken Access Control vulnerability

Missing Authorization vulnerability in CyberChimps Responsive Addons for Elementor responsive-addons-for-elementor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Responsive Addons for Elementor: from n/a through = 2.0.8...

6.5CVSS0.00205EPSS
Exploits0References1
CVE
CVE
added 2026/01/06 4:36 p.m.11 views

CVE-2025-69363

CVE-2025-69363 : Missing Authorization / broken access control in CyberChimps Responsive Addons for Elementor (responsive-addons-for-elementor

6.5CVSS6.6AI score0.00205EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/01/06 12:0 a.m.6 views

PT-2026-1490

Name of the Vulnerable Software and Affected Versions CyberChimps Responsive Addons for Elementor versions through 2.0.8 Description The software contains a missing authorization issue, allowing exploitation of incorrectly configured access control security levels. Recommendations Update Responsi...

6.5AI score0.00205EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/01/06 12:0 a.m.5 views

WordPress plugin Responsive Addons for Elementor 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to host a personal blog site on a PHP and MySQL based server.WordPress plugin is an application plugin. A security...

6.5CVSS6.5AI score0.00205EPSS
Exploits0References1
OSV
OSV
added 2026/01/05 7:15 a.m.3 views

CVE-2025-15461

A flaw has been found in UTT 进取 520W 1.7.7-180627. This vulnerability affects the function strcpy of the file /goform/formTaskEdit. Executing a manipulation of the argument selDateType can lead to buffer overflow. The attack can be executed remotely. The exploit has been published and may be used...

8.7CVSS6.3AI score0.00811EPSS
Exploits1References5
OSV
OSV
added 2026/01/02 6:15 a.m.4 views

CVE-2025-15431

A flaw has been found in UTT 进取 512W 1.7.7-171114. This affects the function strcpy of the file /goform/formFtpServerDirConfig. Executing a manipulation of the argument filename can lead to buffer overflow. The attack can be launched remotely. The exploit has been published and may be used. The...

8.7CVSS6.3AI score0.00687EPSS
Exploits1References5
EUVD
EUVD
added 2026/01/02 5:32 a.m.7 views

EUVD-2026-0706

A vulnerability was detected in UTT 进取 512W 1.7.7-171114. Affected by this issue is the function strcpy of the file /goform/formFtpServerShareDirSelcet. Performing manipulation of the argument oldfilename results in buffer overflow. The attack can be initiated remotely. The exploit is now public...

9CVSS6.7AI score0.00687EPSS
Exploits1References6
NVD
NVD
added 2026/01/02 5:15 a.m.7 views

CVE-2025-15428

A weakness has been identified in UTT 进取 512W 1.7.7-171114. Affected is the function strcpy of the file /goform/formRemoteControl. This manipulation of the argument Profile causes buffer overflow. It is possible to initiate the attack remotely. The exploit has been made available to the public an...

9CVSS0.00811EPSS
Exploits1References5
OSV
OSV
added 2026/01/02 3:15 a.m.6 views

CVE-2025-15424

A vulnerability was found in Yonyou KSOA 9.0. The affected element is an unknown function of the file /worksheet/agentworksdel.jsp of the component HTTP GET Parameter Handler. Performing a manipulation of the argument ID results in sql injection. Remote exploitation of the attack is possible. The...

9.8CVSS5.6AI score0.00392EPSS
Exploits1References6
RedhatCVE
RedhatCVE
added 2026/01/01 12:17 p.m.12 views

CVE-2025-62135

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in landwire Responsive Block Control responsive-block-control allows DOM-Based XSS.This issue affects Responsive Block Control: from n/a through = 1.3.0...

6.5CVSS5.9AI score0.00173EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/01/01 12:0 a.m.4 views

PT-2026-27391

Name of the Vulnerable Software and Affected Versions Firefox versions prior to 149 Firefox ESR versions prior to 115.34 Firefox ESR versions prior to 140.9 Thunderbird versions prior to 149 Thunderbird versions prior to 140.9 Description A sandbox escape issue exists in the Responsive Design Mod...

10CVSS6.4AI score0.00687EPSS
Exploits0References260
NVD
NVD
added 2025/12/31 12:16 p.m.5 views

CVE-2025-62135

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in landwire Responsive Block Control responsive-block-control allows DOM-Based XSS.This issue affects Responsive Block Control: from n/a through = 1.3.0...

6.5CVSS0.00173EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/31 11:56 a.m.4 views

EUVD-2025-205918

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in landwire Responsive Block Control allows DOM-Based XSS.This issue affects Responsive Block Control: from n/a through 1.2.9...

6.5CVSS5.9AI score0.00173EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/12/31 11:56 a.m.24 views

CVE-2025-62135 WordPress Responsive Block Control plugin <= 1.3.0 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in landwire Responsive Block Control responsive-block-control allows DOM-Based XSS.This issue affects Responsive Block Control: from n/a through = 1.3.0...

6.5CVSS0.00173EPSS
Exploits0References1
Rows per page
Query Builder