Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

45 matches found

Patchstack
Patchstackadded 2026/03/12 8:8 a.m.2 views

WordPress DukaPress plugin <= 3.2.4 - Reflected XSS vulnerability

Reflected XSS vulnerability discovered by Vuln Seeker Cyber Security Team in WordPress Plugin DukaPress versions = 3.2.4...

7.1CVSS5.8AI score0.00045EPSS
Exploits0References1Affected Software1
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2024-16025

Malicious code in bioql PyPI...

5.4CVSS5.8AI score0.0006EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.4 views

EUVD-2024-51334

Malicious code in bioql PyPI...

7.5CVSS6.6AI score0.0011EPSS
Exploits1References5
RedhatCVE
RedhatCVEadded 2025/05/23 7:34 a.m.8 views

CVE-2024-13093

A vulnerability, which was classified as critical, has been found in code-projects Job Recruitment 1.0. This issue affects some unknown processing of the file /parse/callmainsearchajax.php of the component Seeker Profile Handler. The manipulation of the argument s1 leads to sql injection. The...

7.5CVSS7.8AI score0.0011EPSS
Exploits1References1
Malwarebytes
Malwarebytesadded 2025/02/10 8:5 a.m.7 views

A week in security (February 3 &#8211; February 9)

Last week on Malwarebytes Labs: WhatsApp says Paragon is spying on specific users New AI "agents" could hold people for ransom in 2025 Valley News Live exposed more than a million job seeker’s resumes Small business owners, secure your web shop University site cloned to evade ad detection...

7.1AI score
Exploits0
Malwarebytes
Malwarebytesadded 2025/02/04 4:3 p.m.12 views

Valley News Live exposed more than a million job seeker’s resumes

Making your own bad news is not what Valley News Live had in mind, but negligence comes at a price. Cybernews researchers found an unprotected AWS S3 bucket that belongs to Take Valley News Live, a North Dakota-based television station. Gray Television, the owner of Valley News Live, makes for th...

6.7AI score
Exploits0
NVD
NVDadded 2025/01/02 9:15 a.m.9 views

CVE-2024-13093

A vulnerability, which was classified as critical, has been found in code-projects Job Recruitment 1.0. This issue affects some unknown processing of the file /parse/callmainsearchajax.php of the component Seeker Profile Handler. The manipulation of the argument s1 leads to sql injection. The...

7.5CVSS0.0011EPSS
Exploits1References5
OSV
OSVadded 2025/01/02 9:15 a.m.2 views

CVE-2024-13093

A vulnerability, which was classified as critical, has been found in code-projects Job Recruitment 1.0. This issue affects some unknown processing of the file /parse/callmainsearchajax.php of the component Seeker Profile Handler. The manipulation of the argument s1 leads to sql injection. The...

7.5CVSS5.7AI score0.0011EPSS
Exploits1References5
Cvelist
Cvelistadded 2025/01/02 9:0 a.m.14 views

CVE-2024-13093 code-projects Job Recruitment Seeker Profile _call_main_search_ajax.php sql injection

A vulnerability, which was classified as critical, has been found in code-projects Job Recruitment 1.0. This issue affects some unknown processing of the file /parse/callmainsearchajax.php of the component Seeker Profile Handler. The manipulation of the argument s1 leads to sql injection. The...

6.5CVSS0.0011EPSS
Exploits1References5
CVE
CVEadded 2025/01/02 9:0 a.m.42 views

CVE-2024-13093

CVE-2024-13093 affects code-projects Job Recruitment 1.0, with a SQL injection in the Seeker Profile Handler. The vulnerability is in the file /_parse/_call_main_search_ajax.php, caused by manipulation of the parameter s1. The attack can be launched remotely and, per the provided descriptions, th...

7.5CVSS6.8AI score0.0011EPSS
Exploits1References5Affected Software1
Patchstack
Patchstackadded 2024/12/06 6:43 a.m.3 views

WordPress 3DPrint Lite plugin < 2.1 - Settings Update via CSRF vulnerability

Settings Update via CSRF vulnerability discovered by Vuln Seeker Cybersecurity Team in WordPress Plugin 3DPrint Lite versions 2.1...

4.3CVSS7AI score0.00206EPSS
Exploits2References1Affected Software1
Patchstack
Patchstackadded 2024/07/22 12:0 a.m.13 views

WordPress pz-frontend-manager Plugin < 1.0.6 is vulnerable to Cross Site Request Forgery (CSRF)

Software pz-frontend-manager Type Plugin Vulnerable versions 1.0.6 Fixed in 1.0.6 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-6244 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 00622e75c008 Credits Vuln Seeker...

8.8CVSS6.7AI score0.11383EPSS
Exploits1References4Affected Software1
Patchstack
Patchstackadded 2024/07/16 2:20 a.m.2 views

WordPress Light Poll plugin <= 1.0.0 - Poll Answers Deletion via CSRF vulnerability

Poll Answers Deletion via CSRF vulnerability discovered by Vuln Seeker Cybersecurity Team in WordPress Plugin Light Poll versions = 1.0.0...

8.8CVSS7AI score0.00056EPSS
Exploits0References1Affected Software1
NVD
NVDadded 2024/01/09 6:15 p.m.18 views

CVE-2024-0226

Synopsys Seeker versions prior to 2023.12.0 are vulnerable to a stored cross-site scripting vulnerability through a specially crafted payload...

5.4CVSS4.9AI score0.0006EPSS
Exploits0References1
OSV
OSVadded 2024/01/09 6:15 p.m.2 views

CVE-2024-0226

Synopsys Seeker versions prior to 2023.12.0 are vulnerable to a stored cross-site scripting vulnerability through a specially crafted payload...

5.4CVSS5.7AI score0.0006EPSS
Exploits0References1
Prion
Prionadded 2024/01/09 6:15 p.m.14 views

Cross site scripting

Synopsys Seeker versions prior to 2023.12.0 are vulnerable to a stored cross-site scripting vulnerability through a specially crafted payload...

4.9CVSS6.1AI score0.0006EPSS
Exploits0References1Affected Software1
CVE
CVEadded 2024/01/09 5:41 p.m.39 views

CVE-2024-0226

CVE-2024-0226 affects Synopsys Seeker versions prior to 2023.12.0. The vulnerability is a stored cross-site scripting flaw introduced via a specially crafted payload. The NVD entry rates the base impact as Low for confidentiality and integrity (no availability impact) with network attack vector a...

5.4CVSS5.2AI score0.0006EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2024/01/09 5:41 p.m.11 views

CVE-2024-0226 Stored Cross-Site Scripting in Synopsys Seeker

Synopsys Seeker versions prior to 2023.12.0 are vulnerable to a stored cross-site scripting vulnerability through a specially crafted payload...

4.8CVSS5.4AI score0.0006EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2024/01/09 5:41 p.m.14 views

CVE-2024-0226 Stored Cross-Site Scripting in Synopsys Seeker

Synopsys Seeker versions prior to 2023.12.0 are vulnerable to a stored cross-site scripting vulnerability through a specially crafted payload...

4.8CVSS6.2AI score0.0006EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2024/01/09 12:0 a.m.2 views

PT-2024-15396 · Synopsys · Synopsys Seeker

Name of the Vulnerable Software and Affected Versions: Synopsys Seeker versions prior to 2023.12.0 Description: The issue is a stored cross-site scripting vulnerability that can be exploited through a specially crafted payload. Recommendations: For versions prior to 2023.12.0, update to version...

5.4CVSS6.2AI score0.0006EPSS
Exploits0References6
Rows per page
Query Builder