Lucene search
K

293 matches found

Cvelist
Cvelist
added 2025/05/07 2:20 p.m.18 views

CVE-2025-47665 WordPress N360 | Splash Screen plugin <= 1.0.6 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bistromatic N360 | Splash Screen n360-splash-screen allows Stored XSS.This issue affects N360 | Splash Screen: from n/a through = 1.0.6...

5.9CVSS0.00182EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/05/07 2:20 p.m.6 views

CVE-2025-47665 WordPress N360 | Splash Screen <= 1.0.6 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bistromatic N360 | Splash Screen allows Stored XSS. This issue affects N360 | Splash Screen: from n/a through 1.0.6...

5.9CVSS5.7AI score0.00182EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/05/07 12:0 a.m.4 views

WordPress plugin N360 | Splash Screen 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

5.9CVSS6.2AI score0.00182EPSS
Exploits0References1
Citrix
Citrix
added 2025/03/31 12:0 a.m.18 views

Licensed uberAgent still shows Evaluation Version splash screen at login

An operating system with uberAgent installed continues to show a splash screen during user login, stating the agent is running an Evaluation Version. The uberAgent.log file shows messages similar to the following: 2024-12-06 13:50:25.560 +0100,INFO ,WORKGROUP,SRV2016$,6372,LicenseCheck,Starting...

7.1AI score
Exploits0
Citrix
Citrix
added 2025/03/07 12:0 a.m.20 views

uberAgent on MacOS displays splash screen at login, fails to recognize license file

uberAgent on MacOS displays a splash screen at login advising users: "Evaluation Version. Not for Production Use." uberAgent.log will show failure to read the licensing file. LicenseCheck,Starting license verification LicenseCheck,Copying license files from to cache LicenseCheck,Reading license...

7.1AI score
Exploits0
Vulnrichment
Vulnrichment
added 2024/12/06 8:24 a.m.9 views

CVE-2024-11368 Splash Sync <= 2.0.7 - Reflected Cross-Site Scripting

The Splash Sync plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of addqueryarg without appropriate escaping on the URL in all versions up to, and including, 2.0.7. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages tha...

6.1CVSS7.4AI score0.0038EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/12/06 8:24 a.m.17 views

CVE-2024-11368 Splash Sync <= 2.0.7 - Reflected Cross-Site Scripting

The Splash Sync plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of addqueryarg without appropriate escaping on the URL in all versions up to, and including, 2.0.7. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages tha...

6.1CVSS0.0038EPSS
Exploits0References3
CVE
CVE
added 2024/12/06 8:24 a.m.53 views

CVE-2024-11368

CVE-2024-11368 affects Splash Sync (WordPress) up to version 2.0.6. The vulnerability is a reflected Cross‑Site Scripting (XSS) caused by improper escaping in add_query_arg, enabling unauthenticated attackers to inject scripts into pages that a user visits after being tricked into performing an a...

6.1CVSS7.4AI score0.0038EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/12/06 12:0 a.m.3 views

WordPress plugin Splash Sync 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plug-in. A cross-site scripting...

6.1CVSS7.5AI score0.0038EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/12/06 12:0 a.m.4 views

PT-2024-16940 · WordPress · Splash Sync

Name of the Vulnerable Software and Affected Versions: Splash Sync plugin for WordPress versions up to, and including, 2.0.6 Description: The issue arises from the use of add query arg without proper escaping on the URL, allowing unauthenticated attackers to inject arbitrary web scripts into page...

6.1CVSS6.8AI score0.0038EPSS
Exploits0References6
Patchstack
Patchstack
added 2024/12/05 10:45 p.m.5 views

WordPress Splash Sync plugin <= 2.0.7 - Reflected Cross-Site Scripting vulnerability

Reflected Cross-Site Scripting vulnerability discovered by vgo0 in WordPress Plugin Splash Sync versions = 2.0.7...

6.1CVSS6.3AI score0.0038EPSS
Exploits0References1Affected Software1
Citrix
Citrix
added 2024/10/18 12:0 a.m.11 views

VDA Installer Only Displays Splash Screen then Closes

When installing the workstation VDA, the Installer Splash Screen appears for a second then disappears. Nothing is logged in the installer logs There are no crashes reported in the eventlogs DebugView shows the installer exits with status Code: 1 Using the Citrix VDA Cleanup Utility Tool does not...

7.1AI score
Exploits0
SUSE CVE
SUSE CVE
added 2024/03/06 4:34 a.m.6 views

SUSE CVE-2023-52561

In the Linux kernel, the following vulnerability has been resolved: arm64: dts: qcom: sdm845-db845c: Mark cont splash memory region as reserved Adding a reserved memory region for the framebuffer memory the splash memory region set up by the bootloader. It fixes a kernel panic arm-smmu: Unhandled...

5.5CVSS6.2AI score0.00225EPSS
Exploits0References6
NVD
NVD
added 2024/03/02 10:15 p.m.40 views

CVE-2023-52561

In the Linux kernel, the following vulnerability has been resolved: arm64: dts: qcom: sdm845-db845c: Mark cont splash memory region as reserved Adding a reserved memory region for the framebuffer memory the splash memory region set up by the bootloader. It fixes a kernel panic arm-smmu: Unhandled...

5.5CVSS7.3AI score0.00225EPSS
Exploits0References3
OSV
OSV
added 2024/03/02 10:15 p.m.0 views

DEBIAN-CVE-2023-52561

In the Linux kernel, the following vulnerability has been resolved: arm64: dts: qcom: sdm845-db845c: Mark cont splash memory region as reserved Adding a reserved memory region for the framebuffer memory the splash memory region set up by the bootloader. It fixes a kernel panic arm-smmu: Unhandled...

5.5CVSS5.2AI score0.00225EPSS
Exploits0References1
OSV
OSV
added 2024/03/02 10:15 p.m.1 views

UBUNTU-CVE-2023-52561

In the Linux kernel, the following vulnerability has been resolved: arm64: dts: qcom: sdm845-db845c: Mark cont splash memory region as reserved Adding a reserved memory region for the framebuffer memory the splash memory region set up by the bootloader. It fixes a kernel panic arm-smmu: Unhandled...

5.5CVSS6AI score0.00225EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/03/02 12:0 a.m.7 views

PT-2024-14629

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to v5.10.y Description The issue is related to the Linux kernel, where a reserved memory region for the framebuffer memory the splash memory region set up by the bootloader was not properly marked. This led to a...

5.5CVSS6.6AI score0.00225EPSS
Exploits0
Openbugbounty
Openbugbounty
added 2024/01/06 4:57 p.m.6 views

traffic-splash.com Cross Site Scripting vulnerability OBB-3829324

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
NVD
NVD
added 2023/12/07 11:15 p.m.31 views

CVE-2023-5058

Improper Input Validation in the processing of user-supplied splash screen during system boot in Phoenix SecureCore™ Technology™ 4 potentially allows denial-of-service attacks or arbitrary code execution...

7.8CVSS0.00271EPSS
Exploits0References4
OSV
OSV
added 2023/12/07 11:15 p.m.4 views

CVE-2023-5058

Improper Input Validation in the processing of user-supplied splash screen during system boot in Phoenix SecureCore™ Technology™ 4 potentially allows denial-of-service attacks or arbitrary code execution...

7.8CVSS6AI score0.00271EPSS
Exploits0References4
Rows per page
Query Builder