Lucene search
K

220 matches found

CNNVD
CNNVD
added 2025/09/05 12:0 a.m.4 views

WordPress plugin Parallax Scrolling Enllax.js 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forgery...

4.3CVSS6.5AI score0.00139EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/09/04 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2020-7019

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Elasticsearch before 7.9.0 and 6.8.12 a field disclosure flaw was found when running a scrolling search with Field Level Security. If a user runs the same...

6.5CVSS6.6AI score0.01204EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/07/22 12:0 a.m.5 views

WordPress plugin Ajax Load More 安全漏洞

WordPress Ajax Load More plugin is an open source plugin , mainly used to achieve infinite scrolling of website content and lazy loading function , optimize the user experience through AJAX technology . WordPress Ajax Load More plugin has an authorization issue vulnerability, the vulnerability...

8.8CVSS6.9AI score0.00984EPSS
Exploits1References3
OSV
OSV
added 2025/06/08 1:39 p.m.3 views

SUSE-SU-2025:20394-1 Security update for less

This update for less fixes the following issues: - Updated to version 668 Fixed crash when using --header on command line Fixed possible crash when scrolling left/right or toggling -S Fixed bug when using stop in a lesskey file Fixed bug when using --shift or --match-shift on command line with a...

8.6CVSS7.6AI score0.00628EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/05/22 6:30 p.m.6 views

CVE-2021-29632

In FreeBSD 13.0-STABLE before n247428-9352de39c3dc, 12.2-STABLE before r370674, 13.0-RELEASE before p6, and 12.2-RELEASE before p12, certain conditions involving use of the highlight buffer while text is scrolling on the console, console data may overwrite data structures associated with the syst...

7.5CVSS7AI score0.00855EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/04/02 12:0 a.m.16 views

openSUSE 15 Security Update : opera (openSUSE-SU-2025:0111-1)

The remote openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the openSUSE- SU-2025:0111-1 advisory. - Update to 117.0.5408.163 DNA-120683 Issue back Sometimes onboarding is blank and useless DNA-121682 Backport fix for CVE-2025-2783 to O132, O133, GX132...

8.3CVSS8.3AI score0.08404EPSS
Exploits6References3
Ubuntu
Ubuntu
added 2025/02/10 2:20 p.m.81 views

USN-7261-1: Vim vulnerability

It was discovered that Vim incorrectly handled certain internal calls when scrolling a window. An attacker could possibly use this issue to cause a denial of service...

5.5CVSS5.4AI score0.00261EPSS
Exploits0
OSV
OSV
added 2025/02/10 2:20 p.m.3 views

USN-7261-1 vim vulnerability

It was discovered that Vim incorrectly handled certain internal calls when scrolling a window. An attacker could possibly use this issue to cause a denial of service...

5.5CVSS6.1AI score0.00261EPSS
Exploits0References2
OSV
OSV
added 2025/01/20 11:15 p.m.5 views

AZL-55815 CVE-2025-24014 affecting package vim for versions less than 9.1.0791-3

Vim is an open source, command line text editor. A segmentation fault was found in Vim before 9.1.1043. In silent Ex mode -s -e, Vim typically doesn't show a screen and just operates silently in batch mode. However, it is still possible to trigger the function that handles the scrolling of a gui...

5.5CVSS6.5AI score0.00261EPSS
Exploits0References1
NVD
NVD
added 2025/01/20 11:15 p.m.19 views

CVE-2025-24014

Vim is an open source, command line text editor. A segmentation fault was found in Vim before 9.1.1043. In silent Ex mode -s -e, Vim typically doesn't show a screen and just operates silently in batch mode. However, it is still possible to trigger the function that handles the scrolling of a gui...

5.5CVSS0.00261EPSS
Exploits0References5
OSV
OSV
added 2025/01/20 11:15 p.m.6 views

AZL-55818 CVE-2025-24014 affecting package vim for versions less than 9.1.0791-3

Vim is an open source, command line text editor. A segmentation fault was found in Vim before 9.1.1043. In silent Ex mode -s -e, Vim typically doesn't show a screen and just operates silently in batch mode. However, it is still possible to trigger the function that handles the scrolling of a gui...

5.5CVSS6.1AI score0.00261EPSS
Exploits0References1
OSV
OSV
added 2025/01/20 11:15 p.m.4 views

UBUNTU-CVE-2025-24014

Vim is an open source, command line text editor. A segmentation fault was found in Vim before 9.1.1043. In silent Ex mode -s -e, Vim typically doesn't show a screen and just operates silently in batch mode. However, it is still possible to trigger the function that handles the scrolling of a gui...

5.5CVSS6AI score0.00261EPSS
Exploits0References9
Vulnrichment
Vulnrichment
added 2025/01/20 10:53 p.m.5 views

CVE-2025-24014 segmentation fault in win_line() in Vim < 9.1.1043

Vim is an open source, command line text editor. A segmentation fault was found in Vim before 9.1.1043. In silent Ex mode -s -e, Vim typically doesn't show a screen and just operates silently in batch mode. However, it is still possible to trigger the function that handles the scrolling of a gui...

4.2CVSS4.4AI score0.00261EPSS
Exploits0References2
OSV
OSV
added 2025/01/16 10:41 a.m.6 views

CLSA-2025-1737024110 vim: Fix of CVE-2021-3903

CVE-2021-3903: fix invalid memory access when scrolling without valid screen...

7.8CVSS7.1AI score0.00601EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/11/09 11:57 a.m.19 views

CVE-2024-51716 WordPress Twitter real time search scrolling plugin <= 7.0 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in gopiplus Twitter real time search scrolling twitter-real-time-search-scrolling allows Reflected XSS.This issue affects Twitter real time search scrolling: from n/a through = 7.0...

7.1CVSS0.00259EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/11/04 9:45 a.m.6 views

WordPress Twitter real time search scrolling plugin <= 7.0 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by SOPROBRO Patchstack Alliance in WordPress Plugin Twitter real time search scrolling versions = 7.0...

7.1CVSS6.1AI score0.00259EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2024/08/27 12:0 a.m.34 views

Fedora 40 : webkitgtk (2024-6b8845e3f0)

The remote Fedora 40 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-6b8845e3f0 advisory. Fix web process cache suspend/resume when sandbox is enabled. Fix accelerated images disappearing after scrolling. Fix video flickering with DMA-BUF...

9.8CVSS6.4AI score0.01157EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2024/08/23 12:0 a.m.5 views

PT-2024-41388 · Suse +4 · Libjavascriptcoregtk-4 0-18 +12

This update for webkit2gtk3 fixes the following issues: Update to version 2.44.3 bsc1228696 bsc1228697 bsc1228698: - Fix web process cache suspend/resume when sandbox is enabled. - Fix accelerated images dissapearing after scrolling. - Fix video flickering with DMA-BUF sink. - Fix pointer lock...

9.6CVSS7.8AI score0.01344EPSS
Exploits1References44
NVD
NVD
added 2024/08/06 2:15 a.m.18 views

CVE-2023-5000

The Horizontal scrolling announcements plugin for WordPress is vulnerable to SQL Injection via the plugin's 'hsas-shortcode' shortcode in versions up to, and including, 2.4 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. Th...

8.8CVSS0.00613EPSS
Exploits0References3
CVE
CVE
added 2024/08/06 1:49 a.m.44 views

CVE-2023-5000

CVE-2023-5000 pertains to the WordPress plugin Horizontal scrolling announcements where an SQL Injection exists via the shortcode hsas-shortcode in versions up to 2.4. The issue arises from insufficient escaping of user input and inadequate preparation of the SQL query, enabling authenticated att...

8.8CVSS8.6AI score0.00613EPSS
Exploits0References3
Rows per page
Query Builder