Lucene search
K

29 matches found

VulnCheck KEV
VulnCheck KEV
added 2026/02/12 12:0 a.m.18 views

VulnCheck KEV: CVE-2015-5471

Absolute path traversal vulnerability in include/user/download.php in the Swim Team plugin 1.44.10777 for WordPress allows remote attackers to read arbitrary files via a full pathname in the file parameter...

5.3CVSS7.4AI score0.32714EPSS
In wildExploits2References2
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/08/14 6:52 p.m.3 views

Malicious code in @marcos_feitoza/timer-tracker-swim (npm)

The package @marcosfeitoza/timer-tracker-swim was found to contain malicious code...

7AI score
Exploits0
OSV
OSV
added 2025/08/14 6:52 p.m.2 views

MAL-2025-9097 Malicious code in @marcos_feitoza/timer-tracker-swim (npm)

The package @marcosfeitoza/timer-tracker-swim was found to contain malicious code...

7.2AI score
Exploits0
vulnersOsv
vulnersOsv
added 2025/07/15 8:0 p.m.13 views

ai.swim:swim-js (=3.10.0), ai.swim:swim-vm (=3.10.0) +3052 more potentially affected by CVE-2025-50106 via org.graalvm.sdk:graal-sdk (>=19.0.0 <=21.0.0.2)

org.graalvm.sdk:graal-sdk MAVEN version =19.0.0, =0.0.1, =0.1.5, =0.1.5, =0.0.2, =0.0.2, =1.5.1, =1.0.0, =1.0.2, =1.0.0, =1.0.2, =1.0.2, =1.1.4 and more Source cves: CVE-2025-50106 Source advisory: SNYK:JAVA-ORGGRAALVMSDK-11998131...

8.1CVSS7.1AI score0.00611EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2025/07/15 7:45 p.m.8 views

ai.swim:swim-js (=3.10.0), ai.swim:swim-vm (=3.10.0) +3052 more potentially affected by CVE-2025-30754 via org.graalvm.sdk:graal-sdk (>=19.0.0 <=21.0.0.2)

org.graalvm.sdk:graal-sdk MAVEN version =19.0.0, =0.0.1, =0.1.5, =0.1.5, =0.0.2, =0.0.2, =1.5.1, =1.0.0, =1.0.2, =1.0.0, =1.0.2, =1.0.2, =1.1.4 and more Source cves: CVE-2025-30754 Source advisory: SNYK:JAVA-ORGGRAALVMSDK-11023285...

4.8CVSS6.7AI score0.00381EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2025/04/15 9:0 p.m.7 views

ai.swim:swim-js (=3.10.0), ai.swim:swim-vm (=3.10.0) +3052 more potentially affected by CVE-2025-21587 via org.graalvm.sdk:graal-sdk (>=19.0.0 <=21.0.0.2)

org.graalvm.sdk:graal-sdk MAVEN version =19.0.0, =0.0.1, =0.1.5, =0.1.5, =0.0.2, =0.0.2, =1.5.1, =1.0.0, =1.0.2, =1.0.0, =1.0.2, =1.0.2, =1.1.4 and more Source cves: CVE-2025-21587 Source advisory: SNYK:JAVA-ORGGRAALVMSDK-9728156...

7.4CVSS6.7AI score0.00688EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2025/04/15 9:0 p.m.8 views

ai.swim:swim-js (=3.10.0), ai.swim:swim-vm (=3.10.0) +3052 more potentially affected by CVE-2025-30698 via org.graalvm.sdk:graal-sdk (>=19.0.0 <=21.0.0.2)

org.graalvm.sdk:graal-sdk MAVEN version =19.0.0, =0.0.1, =0.1.5, =0.1.5, =0.0.2, =0.0.2, =1.5.1, =1.0.0, =1.0.2, =1.0.0, =1.0.2, =1.0.2, =1.1.4 and more Source cves: CVE-2025-30698 Source advisory: SNYK:JAVA-ORGGRAALVMSDK-9728203...

5.6CVSS6.7AI score0.00518EPSS
Exploits0
Openbugbounty
Openbugbounty
added 2024/07/21 2:49 p.m.8 views

swim-sm.eu Cross Site Scripting vulnerability OBB-3947982

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2023/09/20 4:29 p.m.11 views

web.metroswimshop.com Cross Site Scripting vulnerability OBB-3700620

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.1AI score
Exploits0
Openbugbounty
Openbugbounty
added 2023/05/09 12:14 a.m.8 views

swim-h2020.eu Cross Site Scripting vulnerability OBB-3311403

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.1AI score
Exploits0
Openbugbounty
Openbugbounty
added 2022/09/07 6:31 a.m.13 views

swim-sm.eu Cross Site Scripting vulnerability OBB-2897129

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2022/04/27 4:5 p.m.11 views

swim-school.auksys.com Cross Site Scripting vulnerability OBB-2567848

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Exploits0
Openbugbounty
Openbugbounty
added 2021/10/28 5:8 p.m.10 views

swim-performance.de Improper Access Control vulnerability OBB-2215906

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

0.1AI score
Exploits0
Vulnrichment
Vulnrichment
added 2019/04/18 1:30 a.m.11 views

CVE-2019-1841 Cisco DNA Center Unintended Proxy Via SWIM Import Interface Vulnerability

A vulnerability in the Software Image Management feature of Cisco DNA Center could allow an authenticated, remote attacker to access to internal services without additional authentication. The vulnerability is due to insufficient validation of user-supplied input. An attacker could exploit this...

6.5CVSS7AI score0.02644EPSS
Exploits0References2
Cvelist
Cvelist
added 2019/04/18 1:30 a.m.18 views

CVE-2019-1841 Cisco DNA Center Unintended Proxy Via SWIM Import Interface Vulnerability

A vulnerability in the Software Image Management feature of Cisco DNA Center could allow an authenticated, remote attacker to access to internal services without additional authentication. The vulnerability is due to insufficient validation of user-supplied input. An attacker could exploit this...

6.5CVSS8.1AI score0.02644EPSS
Exploits0References2
Cisco
Cisco
added 2019/04/17 4:0 p.m.44 views

Cisco DNA Center Unintended Proxy Via SWIM Import Interface Vulnerability

A vulnerability in the Software Image Management feature of Cisco DNA Center could allow an authenticated, remote attacker to access to internal services without additional authentication. The vulnerability is due to insufficient validation of user-supplied input. An attacker could exploit this...

6.5CVSS1.8AI score0.02644EPSS
Exploits0References1
Openbugbounty
Openbugbounty
added 2017/06/16 11:45 p.m.9 views

swim-media.com XSS vulnerability

Vulnerable URL: http://swim-media.com/?s=%27;alert/XSSPOSED///%27;alert/XSSPOSED///%22;alert/XSSPOSED///%22;alert/XSSPOSED///--%3E%3C/sCRipT%3E%22%3E%27%3E%3CsCRipT%3Ealert/XSSPOSED/%3C/sCRipT%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 29.07.2017 Vulnerability...

6.3AI score
Exploits0
Openbugbounty
Openbugbounty
added 2016/07/08 8:14 p.m.10 views

boards.adultswim.com XSS vulnerability

Vulnerable URL: http://boards.adultswim.com/?lang=%27-prompt%28%27OPENBUGBOUNTY%27%29-%27 Details: Description| Value ---|--- Patched:| Yes, at 13.07.2017 Latest check for patch:| 13.07.2017 01:56 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not...

6.3AI score
Exploits0
Prion
Prion
added 2016/01/12 7:59 p.m.11 views

Path traversal

Absolute path traversal vulnerability in include/user/download.php in the Swim Team plugin 1.44.10777 for WordPress allows remote attackers to read arbitrary files via a full pathname in the file parameter...

5CVSS7.2AI score0.32714EPSS
Exploits2References6Affected Software1
Cvelist
Cvelist
added 2016/01/12 7:0 p.m.16 views

CVE-2015-5471

Absolute path traversal vulnerability in include/user/download.php in the Swim Team plugin 1.44.10777 for WordPress allows remote attackers to read arbitrary files via a full pathname in the file parameter...

5.7AI score0.32714EPSS
Exploits2References6
Rows per page
Query Builder