Lucene search
K

4 matches found

NVD
NVD
added yesterday8 views

CVE-2026-59877

protobufjs compiles protobuf definitions into JavaScript JS functions. Prior to 7.6.5 and 8.6.6, protobufjs parsed option names by advancing through schema tokens until reaching an = token without checking for end of input, so a crafted .proto schema that opens an option declaration and ends...

5.3CVSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2025/12/02 12:0 a.m.10 views

PT-2025-48651

The Zigaform plugin for WordPress is vulnerable to Sensitive Information Exposure in versions up to, and including, 7.6.5. This is due to the plugin exposing a public AJAX endpoint that retrieves form submission data without performing authorization checks to verify ownership or access rights. Th...

5.3CVSS5.8AI score0.00265EPSS
Exploits0References6
OSV
OSV
added 2023/06/29 2:15 a.m.5 views

CVE-2023-2982

The WordPress Social Login and Register Discord, Google, Twitter, LinkedIn plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 7.6.4. This is due to insufficient encryption on the user being supplied during a login validated through the plugin. This makes...

9.8CVSS5.8AI score0.46242EPSS
Exploits4References5
ATTACKERKB
ATTACKERKB
added 2020/07/29 5:15 p.m.3 views

CVE-2020-15086

In TYPO3 installations with the "mediace" extension from version 7.6.2 and before version 7.6.5, it has been discovered that an internal verification mechanism can be used to generate arbitrary checksums. The allows to inject arbitrary data having a valid cryptographic message authentication code...

9.8CVSS9AI score0.02721EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder