CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

25 matches found

WordPress Plugin Tera Charts - Local File Inclusion

Multiple local file inclusion vulnerabilities in Tera Charts tera-charts plugin 0.1 for WordPress allow remote attackers to read arbitrary files via a .. dot dot in the fn parameter to 1 charts/treemap.php or 2 charts/zoomabletreemap.php. id: CVE-2014-4940 info: name: WordPress Plugin Tera Charts...

5CVSS7.9AI score0.42619EPSS

Exploits2References4

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2016-1095

Malware in sbrugna...

6.1CVSS6.3AI score0.01342EPSS

Exploits2References4

RedhatCVE•added 2025/05/22 12:58 a.m.•3 views

CVE-2014-4940

Multiple directory traversal vulnerabilities in Tera Charts tera-charts plugin 0.1 for WordPress allow remote attackers to read arbitrary files via a .. dot dot in the fn parameter to 1 charts/treemap.php or 2 charts/zoomabletreemap.php...

5CVSS7.3AI score0.42619EPSS

Exploits2References1

CNVD•added 2016/10/13 12:0 a.m.•3 views

Wordpress tera-charts plugin cross-site scripting vulnerability

WordPress is the WordPress Software Foundation a set of blogging platform developed using the PHP language , the platform supports in PHP and MySQL server set up a personal blog site . tera-charts is one of the plug-ins used to drag and drop charts in the Excel file . A cross-site scripting...

6.1CVSS5.9AI score0.01342EPSS

Exploits2References1

NVD•added 2016/10/10 8:59 p.m.•12 views

CVE-2016-1000151

Reflected XSS in wordpress plugin tera-charts v1.0...

6.1CVSS6AI score0.01342EPSS

Exploits2References3

OSV•added 2016/10/10 8:59 p.m.•0 views

CVE-2016-1000151

Reflected XSS in wordpress plugin tera-charts v1.0...

6.1CVSS5.8AI score

Exploits0References3

Prion•added 2016/10/10 8:59 p.m.•8 views

Cross site scripting

Reflected XSS in wordpress plugin tera-charts v1.0...

4.3CVSS6.2AI score0.01342EPSS

Exploits2References3Affected Software1

Cvelist•added 2016/10/10 8:0 p.m.•17 views

CVE-2016-1000151

Reflected XSS in wordpress plugin tera-charts v1.0...

6AI score0.01342EPSS

Exploits2References3

CVE•added 2016/10/10 8:0 p.m.•38 views

CVE-2016-1000151

CVE-2016-1000151: Reflected XSS in WordPress tera-charts plugin v1.0. The vulnerability is described across multiple sources as an unauthenticated XSS via input handling (e.g., treemap.php?fn=...), allowing script/HTML injection. Exploitation is reported as unauthenticated in the sources; CVSS me...

6.1CVSS5.9AI score0.01342EPSS

Exploits2References3Affected Software1

Patchstack•added 2016/05/11 12:0 a.m.•16 views

WordPress Tera Charts Plugin - Cross Site Scripting

Because of this vulnerability, the attackers can inject arbitrary JavaScript or HTML code. Solution Update the plugin...

6.1CVSS2.1AI score0.01342EPSS

Exploits2References2Affected Software1

wpexploit•added 2016/05/11 12:0 a.m.•18 views

Tera Charts 1.0 - Unauthenticated Cross-Site Scripting (XSS)

The tera-charts WordPress plugin was affected by an Unauthenticated Cross-Site Scripting XSS security vulnerability. http://www.example.com/tera-charts/charts/treemap.php?fn=";alert1;"&userid=1...

4.3CVSS1.1AI score0.01342EPSS

Exploits2References2

WPVulnDB•added 2016/05/11 12:0 a.m.•21 views

Tera Charts 1.0 - Unauthenticated Cross-Site Scripting (XSS)

The tera-charts WordPress plugin was affected by an Unauthenticated Cross-Site Scripting XSS security vulnerability. PoC http://www.example.com/tera-charts/charts/treemap.php?fn=";alert1;...

4.3CVSS0.6AI score0.01342EPSS

Exploits2References2Affected Software1

OpenVAS•added 2015/01/13 12:0 a.m.•18 views

WordPress Tera Charts Multiple Directory Traversal Vulnerability

The WordPress plugin Copyright C 2015 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it and/or modify it...

5CVSS9.5AI score0.42619EPSS

Exploits2References2

WPVulnDB•added 2014/08/01 10:59 a.m.•17 views

Tera Charts 0.1 - charts/zoomabletreemap.php fn Parameter Remote Path Traversal File Disclosure

The tera-charts WordPress plugin was affected by a charts/zoomabletreemap.php fn Parameter Remote Path Traversal File Disclosure security vulnerability...

5CVSS2.7AI score0.42619EPSS

Exploits2References2Affected Software1

wpexploit•added 2014/08/01 12:0 a.m.•19 views

Tera Charts 0.1 - Unauthenticated Remote Path Traversal File Disclosure

The tera-charts WordPress plugin was affected by an Unauthenticated Remote Path Traversal File Disclosure security vulnerability. http://www.example.com/wp-content/plugins/tera-charts/charts/treemap.php?fn=../../../../wp-config.php...

5CVSS2.1AI score0.42619EPSS

Exploits2References2

WPVulnDB•added 2014/08/01 12:0 a.m.•17 views

Tera Charts 0.1 - Unauthenticated Remote Path Traversal File Disclosure

The tera-charts WordPress plugin was affected by an Unauthenticated Remote Path Traversal File Disclosure security vulnerability. PoC http://www.example.com/wp-content/plugins/tera-charts/charts/treemap.php?fn=../../../../wp-config.php...

5CVSS1.4AI score0.42619EPSS

Exploits2References2Affected Software1

NVD•added 2014/07/11 8:55 p.m.•9 views

CVE-2014-4940

5CVSS6.9AI score0.42619EPSS

Exploits2References2

Prion•added 2014/07/11 8:55 p.m.•13 views

Directory traversal

5CVSS7.3AI score0.42619EPSS

Exploits2References2Affected Software1

Cvelist•added 2014/07/11 8:0 p.m.•18 views

CVE-2014-4940

9.5AI score0.42619EPSS

Exploits2References2

CVE•added 2014/07/11 8:0 p.m.•55 views

CVE-2014-4940

Summary: CVE-2014-4940 affects the WordPress plugin Tera Charts (version 0.1). The issue is a Local File Inclusion via a directory-traversal in the fn parameter, exploitable through the pages charts/treemap.php and charts/zoomabletreemap.php, allowing an attacker to read arbitrary server files (e...

5CVSS9.3AI score0.42619EPSS

Exploits2References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by