Lucene search
K

173 matches found

RedhatCVE
RedhatCVE
added 2025/02/06 2:34 a.m.5 views

CVE-2025-24749

Cross-Site Request Forgery CSRF vulnerability in Overt Software Solutions LTD EZPZ SAML SP Single Sign On SSO allows Cross Site Request Forgery. This issue affects EZPZ SAML SP Single Sign On SSO: from n/a through 1.2.5...

7.1CVSS5.1AI score0.0013EPSS
Exploits0References1
NVD
NVD
added 2025/01/31 9:15 a.m.5 views

CVE-2025-24749

Cross-Site Request Forgery CSRF vulnerability in Overt Software Solutions LTD EZPZ SAML SP Single Sign On SSO allows Cross Site Request Forgery. This issue affects EZPZ SAML SP Single Sign On SSO: from n/a through 1.2.5...

7.1CVSS0.0013EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/01/31 8:24 a.m.9 views

CVE-2025-24749 WordPress EZPZ SAML SP Single Sign On (SSO) plugin <= 1.2.5 - CSRF to Stored XSS vulnerability

Cross-Site Request Forgery CSRF vulnerability in Overt Software Solutions LTD EZPZ SAML SP Single Sign On SSO allows Cross Site Request Forgery. This issue affects EZPZ SAML SP Single Sign On SSO: from n/a through 1.2.5...

7.1CVSS6.9AI score0.0013EPSS
Exploits0References1
NVD
NVD
added 2024/07/10 6:15 p.m.31 views

CVE-2024-37205

Insertion of Sensitive Information into Log File vulnerability in SERVIT Software Solutions.This issue affects affiliate-toolkit: from n/a through 3.4.4...

5.3CVSS0.00443EPSS
Exploits0References1
CVE
CVE
added 2024/07/10 5:50 p.m.54 views

CVE-2024-37205

CVE-2024-37205 affects the WordPress affiliate-toolkit plugin up to version 3.4.4. The issue is the insertion of sensitive information into log files, which may expose data. CVSS v3.1 base score 5.3 (Medium). Patch status in the connected data shows Patched; no exploit details are provided.

5.3CVSS5.7AI score0.00443EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/07/10 5:50 p.m.27 views

CVE-2024-37205 WordPress affiliate-toolkit plugin <= 3.4.4 - Sensitive Data Exposure via Log File vulnerability

Insertion of Sensitive Information into Log File vulnerability in SERVIT Software Solutions.This issue affects affiliate-toolkit: from n/a through 3.4.4...

5.3CVSS0.00443EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/07/10 5:50 p.m.17 views

CVE-2024-37205 WordPress affiliate-toolkit plugin <= 3.4.4 - Sensitive Data Exposure via Log File vulnerability

Insertion of Sensitive Information into Log File vulnerability in SERVIT Software Solutions.This issue affects affiliate-toolkit: from n/a through 3.4.4...

5.3CVSS7.2AI score0.00443EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/07/01 12:0 a.m.3 views

Savignano Software Solutions S/Notify Security Breach

Savignano Software Solutions S/Notify is an email encryption program from Savignano Software Solutions, Germany. A security vulnerability previously existed in Savignano Software Solutions S/Notify version 4.0.2, which stemmed from the presence of a cross-site request forgery CSRF vulnerability...

8.8CVSS6.7AI score0.00147EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/04/11 12:0 a.m.15 views

CVE-2024-25376

An issue discovered in Thesycon Software Solutions Gmbh & Co. KG TUSBAudio MSI-based installers before 5.68.0 allows a local attacker to execute arbitrary code via the msiexec.exe repair mode...

7.8AI score0.00376EPSS
Exploits1References1
NVD
NVD
added 2024/03/27 12:15 p.m.11 views

CVE-2024-29817

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in SERVIT Software Solutions affiliate-toolkit allows Stored XSS.This issue affects affiliate-toolkit: from n/a through 3.4.5...

6.5CVSS6.4AI score0.00339EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/03/27 11:56 a.m.19 views

CVE-2024-29817 WordPress affiliate-toolkit – WordPress Affiliate Plugin plugin <= 3.4.5 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in SERVIT Software Solutions affiliate-toolkit allows Stored XSS.This issue affects affiliate-toolkit: from n/a through 3.4.5...

6.5CVSS6.6AI score0.00339EPSS
Exploits0References1
CVE
CVE
added 2024/03/27 11:56 a.m.55 views

CVE-2024-29817

CVE-2024-29817 affects the WordPress plugin affiliate-toolkit (affiliate-toolkit – WordPress Affiliate Plugin). It is a Stored Cross‑Site Scripting vulnerability caused by improper input neutralization during web page generation, specifically related to the ratings/input handling path. Affected v...

6.5CVSS8.6AI score0.00339EPSS
Exploits0References1
Prion
Prion
added 2023/12/19 8:15 p.m.14 views

Open redirect

URL Redirection to Untrusted Site 'Open Redirect' vulnerability in SERVIT Software Solutions affiliate-toolkit – WordPress Affiliate Plugin.This issue affects affiliate-toolkit – WordPress Affiliate Plugin: from n/a through 3.3.9...

5.8CVSS7.1AI score0.00414EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/12/19 7:48 p.m.85 views

CVE-2023-45105

CVE-2023-45105 is an Open Redirect vulnerability in the WordPress plugin affiliate-toolkit – WordPress Affiliate Plugin for versions ≤ 3.3.9. The root cause is insufficient URL validation in the plugin’s redirect flow (atkpout.php), allowing unauthenticated attackers to redirect users to untruste...

6.1CVSS7AI score0.00414EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2023/11/30 4:15 p.m.13 views

CVE-2023-46086

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in SERVIT Software Solutions affiliate-toolkit – WordPress Affiliate Plugin allows Reflected XSS.This issue affects affiliate-toolkit – WordPress Affiliate Plugin: from n/a through 3.4.3...

7.1CVSS0.00412EPSS
Exploits0References1
OSV
OSV
added 2023/11/30 4:15 p.m.1 views

CVE-2023-46086

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in SERVIT Software Solutions affiliate-toolkit – WordPress Affiliate Plugin allows Reflected XSS.This issue affects affiliate-toolkit – WordPress Affiliate Plugin: from n/a through 3.4.3...

6.1CVSS7.3AI score0.00412EPSS
Exploits0References1
Prion
Prion
added 2023/11/30 4:15 p.m.18 views

Cross site scripting

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in SERVIT Software Solutions affiliate-toolkit – WordPress Affiliate Plugin allows Reflected XSS.This issue affects affiliate-toolkit – WordPress Affiliate Plugin: from n/a through 3.4.3...

5.8CVSS7.1AI score0.00412EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/11/30 3:50 p.m.21 views

CVE-2023-46086 WordPress affiliate-toolkit – WordPress Affiliate Plugin Plugin <= 3.4.3 is vulnerable to Cross Site Scripting (XSS)

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in SERVIT Software Solutions affiliate-toolkit – WordPress Affiliate Plugin allows Reflected XSS.This issue affects affiliate-toolkit – WordPress Affiliate Plugin: from n/a through 3.4.3...

7.1CVSS7.2AI score0.00412EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/08/02 12:0 a.m.29 views

CVE-2022-46484

Information disclosure in password protected surveys in Data Illusion Survey Software Solutions NGSurvey v2.4.28 and below allows attackers to view the password to access and arbitrarily submit surveys...

7.6AI score0.00711EPSS
Exploits0References1
CVE
CVE
added 2023/08/02 12:0 a.m.54 views

CVE-2022-46484

The CVE-2022-46484 entry affects Data Illusion Survey Software Solutions NGSurvey (NGSurvey) v2.4.28 and earlier. The vulnerability enables information disclosure by allowing attackers to view the access password, which in turn could be used to access and arbitrarily submit surveys. The connected...

7.5CVSS7.4AI score0.00711EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder