CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

OSV•added 2018/07/07 5:29 p.m.•10 views

CVE-2018-13423

admin/themes/default/items/tag-form.php in Omeka before 2.6.1 allows XSS by adding or editing a tag...

6.1CVSS6AI score

Exploits0References2

NVD•added 2018/07/07 5:29 p.m.•14 views

CVE-2018-13423

admin/themes/default/items/tag-form.php in Omeka before 2.6.1 allows XSS by adding or editing a tag...

6.1CVSS6AI score0.0024EPSS

Exploits0References2

CVE•added 2018/07/07 5:0 p.m.•35 views

CVE-2018-13423

Affected product: Omeka prior to 2.6.1. Vulnerability: Cross-site scripting (XSS) in admin/themes/default/items/tag-form.php triggered by adding or editing a tag. Root cause / nature: The description indicates an XSS flaw in the tag form handling. Impact (as stated): arbitrary script/HTML may be ...

6.1CVSS5.9AI score0.0024EPSS

Exploits0References2Affected Software1

Veracode•added 2017/10/03 5:44 a.m.•17 views

Open Redirect

WordPress is vulnerable to open redirect attacks. It is possible because the library does not properly validate the external URL in wphttpreferer in wp-admin/edit-tag-form.php and wp-admin/user-edit.php, allowing attackers to redirect users to a different website...

5.4CVSS7.1AI score0.04176EPSS

Exploits0References7Affected Software2

UbuntuCve•added 2017/09/23 8:29 p.m.•25 views

CVE-2017-14725

Before version 4.8.2, WordPress was susceptible to an open redirect attack in wp-admin/edit-tag-form.php and wp-admin/user-edit.php...

5.4CVSS6.8AI score0.04176EPSS

Exploits0References3

Prion•added 2017/09/23 8:29 p.m.•18 views

Open redirect

Before version 4.8.2, WordPress was susceptible to an open redirect attack in wp-admin/edit-tag-form.php and wp-admin/user-edit.php...

4.9CVSS5.6AI score0.04176EPSS

Exploits0References6Affected Software1

OSV•added 2017/09/23 8:29 p.m.•22 views

CVE-2017-14725

Before version 4.8.2, WordPress was susceptible to an open redirect attack in wp-admin/edit-tag-form.php and wp-admin/user-edit.php...

5.4CVSS7AI score

Exploits0References6

Debian CVE•added 2017/09/23 8:0 p.m.•25 views

CVE-2017-14725

Before version 4.8.2, WordPress was susceptible to an open redirect attack in wp-admin/edit-tag-form.php and wp-admin/user-edit.php...

5.4CVSS3.2AI score0.04176EPSS

Exploits0

UbuntuCve•added 2009/08/18 9:0 p.m.•26 views

CVE-2009-2853

Wordpress before 2.8.3 allows remote attackers to gain privileges via a direct request to 1 admin-footer.php, 2 edit-category-form.php, 3 edit-form-advanced.php, 4 edit-form-comment.php, 5 edit-link-category-form.php, 6 edit-link-form.php, 7 edit-page-form.php, and 8 edit-tag-form.php in wp-admin...

10CVSS5.9AI score0.01198EPSS

Exploits3References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by