Lucene search
K

127 matches found

OSV
OSV
added 2022/06/27 9:15 a.m.3 views

CVE-2022-1845

The WP Post Styling WordPress plugin before 1.3.1 does not have CSRF checks in various actions, which could allow attackers to make a logged in admin delete plugin's data, update the settings, add new entries and more via CSRF attacks...

4.3CVSS5.8AI score0.00412EPSS
Exploits2References1
ATTACKERKB
ATTACKERKB
added 2022/06/27 9:15 a.m.5 views

CVE-2022-1845

The WP Post Styling WordPress plugin before 1.3.1 does not have CSRF checks in various actions, which could allow attackers to make a logged in admin delete plugin's data, update the settings, add new entries and more via CSRF attacks...

4.3CVSS5.8AI score0.00412EPSS
Exploits2References2
NVD
NVD
added 2022/06/27 9:15 a.m.14 views

CVE-2022-1845

The WP Post Styling WordPress plugin before 1.3.1 does not have CSRF checks in various actions, which could allow attackers to make a logged in admin delete plugin's data, update the settings, add new entries and more via CSRF attacks...

4.3CVSS0.00412EPSS
Exploits2References1
Cvelist
Cvelist
added 2022/06/27 8:57 a.m.17 views

CVE-2022-1845 WP Post Styling < 1.3.1 - Multiple CSRF

The WP Post Styling WordPress plugin before 1.3.1 does not have CSRF checks in various actions, which could allow attackers to make a logged in admin delete plugin's data, update the settings, add new entries and more via CSRF attacks...

5AI score0.00412EPSS
Exploits2References1
CVE
CVE
added 2022/06/27 8:57 a.m.70 views

CVE-2022-1845

The CVE-2022-1845 entry concerns the WordPress WP Post Styling plugin (version

4.3CVSS4.5AI score0.00412EPSS
Exploits2References1Affected Software1
CNNVD
CNNVD
added 2022/06/27 12:0 a.m.2 views

WordPress plugin WP Post Styling 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a set of blogging platforms developed using the PHP language. WordPress plugin is an application plugin. WordPress WP Post Styling plugin version prior to 1.3.1 is vulnerable to cross-site request forgery,...

4.3CVSS5.5AI score0.00412EPSS
Exploits2References2
OSSF Malicious Packages
OSSF Malicious Packages
added 2022/06/20 8:22 p.m.5 views

Malicious code in jive-styling-toolkit (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a59989394c92f8fba37cb005d3969162434ceead403efd05bcb866970e799795 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSV
OSV
added 2022/06/20 8:22 p.m.8 views

MAL-2022-4034 Malicious code in jive-styling-toolkit (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a59989394c92f8fba37cb005d3969162434ceead403efd05bcb866970e799795 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
WPVulnDB
WPVulnDB
added 2022/05/31 12:0 a.m.17 views

WP Post Styling < 1.3.1 - Multiple CSRF

The plugin does not have CSRF checks in various actions, which could allow attackers to make a logged in admin delete plugin's data, update the settings, add new entries and more via CSRF attacks PoC...

4.3CVSS4.5AI score0.00412EPSS
Exploits2Affected Software1
wpexploit
wpexploit
added 2022/05/31 12:0 a.m.112 views

WP Post Styling < 1.3.1 - Multiple CSRF

The plugin does not have CSRF checks in various actions, which could allow attackers to make a logged in admin delete plugin's data, update the settings, add new entries and more via CSRF attacks HTMLFormElement.prototype.submit.call document.getElementById"test" ;...

4.3CVSS0.7AI score0.00412EPSS
Exploits2
ATTACKERKB
ATTACKERKB
added 2022/05/19 6:15 p.m.7 views

CVE-2022-1416

Missing sanitization of data in Pipeline error messages in GitLab CE/EE affecting all versions starting from 1.0.2 before 14.8.6, all versions from 14.9.0 before 14.9.4, and all versions from 14.10.0 before 14.10.1 allows for rendering of attacker controlled HTML tags and CSS styling...

5.4CVSS5.9AI score0.00708EPSS
Exploits1References4Affected Software1
UbuntuCve
UbuntuCve
added 2022/05/19 6:15 p.m.33 views

CVE-2022-1416

Missing sanitization of data in Pipeline error messages in GitLab CE/EE affecting all versions starting from 1.0.2 before 14.8.6, all versions from 14.9.0 before 14.9.4, and all versions from 14.10.0 before 14.10.1 allows for rendering of attacker controlled HTML tags and CSS styling...

5.4CVSS6.1AI score0.00708EPSS
Exploits1References4
CVE
CVE
added 2021/06/24 1:15 p.m.158 views

CVE-2021-29961

CVE-2021-29961 affects Mozilla Firefox (pre-89 releases). The issue is a content spoofing vulnerability where styling/rendering an oversized element failed to clip correctly, enabling an attacker to paint over the user interface. Root cause: incorrect clipping during rendering of oversized selec...

4.3CVSS5.2AI score0.0076EPSS
Exploits0References3Affected Software1
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.22 views

SUSE: Security Advisory (SUSE-SU-2019:2902-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.8AI score0.02628EPSS
Exploits1References2
VulnCheck KEV
VulnCheck KEV
added 2020/06/03 12:0 a.m.3 views

VulnCheck KEV: CVE-2015-5468

Directory traversal vulnerability in the WP e-Commerce Shop Styling plugin before 2.6 for WordPress allows remote attackers to read arbitrary files via a .. dot dot in the filename parameter to includes/download.php...

7.5CVSS7.3AI score0.24093EPSS
Exploits2References1
Tenable Nessus
Tenable Nessus
added 2019/11/13 12:0 a.m.54 views

openSUSE Security Update : gdb (openSUSE-2019-2494)

This update for gdb fixes the following issues : Update to gdb 8.3.1: jscECO-368 Security issues fixed : - CVE-2019-1010180: Fixed a potential buffer overflow when loading ELF sections larger than the file. bsc1142772 Upgrade libipt from v2.0 to v2.0.1. - Enable librpm for version librpm.so.3...

7.8CVSS6.9AI score0.02628EPSS
Exploits1References7
OPENSUSE Linux
OPENSUSE Linux
added 2019/11/13 12:0 a.m.120 views

Security update for gdb (moderate)

openSUSE Security Update: Security update for gdb Announcement ID: openSUSE-SU-2019:2493-1 Rating: moderate References: 1115034 1142772 1145692 Cross-References: CVE-2019-1010180 Affected Products: openSUSE Leap 15.0 An update that solves one vulnerability and has two fixes is now available...

7.8CVSS7.1AI score0.02628EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2019/11/13 12:0 a.m.25 views

openSUSE Security Update : gdb (openSUSE-2019-2493)

This update for gdb fixes the following issues : Update to gdb 8.3.1: jscECO-368 Security issues fixed : - CVE-2019-1010180: Fixed a potential buffer overflow when loading ELF sections larger than the file. bsc1142772 Upgrade libipt from v2.0 to v2.0.1. - Enable librpm for version librpm.so.3...

7.8CVSS6.9AI score0.02628EPSS
Exploits1References7
OSV
OSV
added 2019/11/12 7:12 p.m.10 views

OPENSUSE-SU-2019:2493-1 Security update for gdb

This update for gdb fixes the following issues: Update to gdb 8.3.1: jscECO-368 Security issues fixed: - CVE-2019-1010180: Fixed a potential buffer overflow when loading ELF sections larger than the file. bsc1142772 Upgrade libipt from v2.0 to v2.0.1. - Enable librpm for version librpm.so.3...

7.8CVSS7.9AI score0.02628EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2019/11/08 12:0 a.m.77 views

SUSE SLED15 / SLES15 Security Update : gdb (SUSE-SU-2019:2913-1)

This update for gdb fixes the following issues : Update to gdb 8.3.1: jscECO-368 Security issues fixed : CVE-2019-1010180: Fixed a potential buffer overflow when loading ELF sections larger than the file. bsc1142772 Upgrade libipt from v2.0 to v2.0.1. Enable librpm for version librpm.so.3...

7.8CVSS6.9AI score0.02628EPSS
Exploits1References6
Rows per page
Query Builder