Lucene search
K

321 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/18 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2023-47260

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Redmine before 4.2.11 and 5.0.x before 5.0.6 allows XSS via thumbnails. CVE-2023-47260 Note that Nessus relies on the presence of the package as reported by the...

6.1CVSS6.1AI score0.00377EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/06/29 2:26 p.m.12 views

CVE-2025-53264

Cross-Site Request Forgery CSRF vulnerability in Konrád Koller ONet Regenerate Thumbnails onet-regenerate-thumbnails allows Cross Site Request Forgery.This issue affects ONet Regenerate Thumbnails: from n/a through = 1.5...

4.3CVSS5.9AI score0.0014EPSS
Exploits0References1
NVD
NVD
added 2025/06/27 2:15 p.m.7 views

CVE-2025-53264

Cross-Site Request Forgery CSRF vulnerability in Konrád Koller ONet Regenerate Thumbnails onet-regenerate-thumbnails allows Cross Site Request Forgery.This issue affects ONet Regenerate Thumbnails: from n/a through = 1.5...

4.3CVSS0.0014EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/06/27 1:21 p.m.12 views

CVE-2025-53264 WordPress ONet Regenerate Thumbnails plugin <= 1.5 - Cross Site Request Forgery (CSRF) Vulnerability

Cross-Site Request Forgery CSRF vulnerability in Konrád Koller ONet Regenerate Thumbnails onet-regenerate-thumbnails allows Cross Site Request Forgery.This issue affects ONet Regenerate Thumbnails: from n/a through = 1.5...

4.3CVSS0.0014EPSS
Exploits0References1
CVE
CVE
added 2025/06/27 1:21 p.m.16 views

CVE-2025-53264

CVE-2025-53264 describes a Cross-Site Request Forgery (CSRF) vulnerability in the WordPress plugin “ONet Regenerate Thumbnails.” According to the gathered documents, the issue affects versions from the earliest listed (n/a) up to and including 1.5. The connected materials do not provide concrete ...

4.3CVSS5.9AI score0.0014EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/06/27 1:21 p.m.3 views

CVE-2025-53264 WordPress ONet Regenerate Thumbnails plugin <= 1.5 - Cross Site Request Forgery (CSRF) Vulnerability

Cross-Site Request Forgery CSRF vulnerability in Konrád Koller ONet Regenerate Thumbnails allows Cross Site Request Forgery. This issue affects ONet Regenerate Thumbnails: from n/a through 1.5...

4.3CVSS7.2AI score0.0014EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/06/27 12:0 a.m.7 views

PT-2025-27171 · Unknown · Onet Regenerate Thumbnails

Name of the Vulnerable Software and Affected Versions: ONet Regenerate Thumbnails versions 1.5 and earlier Description: The issue is a Cross-Site Request Forgery CSRF vulnerability, which allows an attacker to perform unauthorized actions on a user's account. This can be achieved by tricking the...

4.3CVSS6.6AI score0.0014EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/06/27 12:0 a.m.5 views

WordPress plugin ONet Regenerate Thumbnails 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site request forgery vulnerability...

4.3CVSS6.4AI score0.0014EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 6:27 a.m.9 views

CVE-2024-52794

Discourse is an open source platform for community discussion. Users clicking on the lightbox thumbnails could be affected. This problem is patched in the latest version of Discourse. Users are advised to upgrade. There are no known workarounds for this vulnerability...

6.8CVSS6.7AI score0.00274EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 5:24 a.m.7 views

CVE-2023-52219

Deserialization of Untrusted Data vulnerability in Gecka Gecka Terms Thumbnails.This issue affects Gecka Terms Thumbnails: from n/a through 1.1...

9.9CVSS8.5AI score0.00621EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 4:7 a.m.6 views

CVE-2023-47260

Redmine before 4.2.11 and 5.0.x before 5.0.6 allows XSS via thumbnails...

6.1CVSS5.8AI score0.00377EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 11:24 p.m.6 views

CVE-2022-39907

Integer overflow vulnerability in Samsung decoding library for video thumbnails prior to SMR Dec-2022 Release 1 allows local attacker to perform Out-Of-Bounds Write...

7.8CVSS7.5AI score0.00086EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:3 p.m.3 views

CVE-2021-24698

The Simple Download Monitor WordPress plugin before 3.9.6 allows users with a role as low as Contributor to remove thumbnails from downloads they do not own, even if they cannot normally edit the download...

4.3CVSS6.7AI score0.00654EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:43 p.m.5 views

CVE-2021-39184

Electron is a framework for writing cross-platform desktop applications using JavaScript, HTML and CSS. A vulnerability in versions prior to 11.5.0, 12.1.0, and 13.3.0 allows a sandboxed renderer to request a "thumbnail" image of an arbitrary file on the user's system. The thumbnail can potential...

8.6CVSS7.3AI score0.01017EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:3 a.m.6 views

CVE-2018-9379

In multiple functions of MiniThumbFile.java, there is a possible way to view the thumbnails of deleted photos due to a confused deputy. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

5.5CVSS5.6AI score0.00099EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2025/05/19 2:38 p.m.3 views

Astra Linux - уязвимость в thunderbird

When browsing private tabs, some data related to location history or webpage thumbnails could be persisted incorrectly within the sandboxed app bundle after app termination This vulnerability affects Firefox for iOS 127...

6.5CVSS6.3AI score0.00292EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/04/05 2:31 p.m.14 views

CVE-2025-31841

Missing Authorization vulnerability in Frank P. Walentynowicz FPW Category Thumbnails fpw-category-thumbnails allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects FPW Category Thumbnails: from n/a through = 1.9.5...

6.3CVSS7.2AI score0.00235EPSS
Exploits0References1
NVD
NVD
added 2025/04/03 2:15 p.m.19 views

CVE-2025-31841

Missing Authorization vulnerability in Frank P. Walentynowicz FPW Category Thumbnails fpw-category-thumbnails allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects FPW Category Thumbnails: from n/a through = 1.9.5...

6.3CVSS0.00235EPSS
Exploits0References1
CVE
CVE
added 2025/04/03 1:27 p.m.47 views

CVE-2025-31841

Technical details for CVE-2025-31841 (FPW Category Thumbnails) are not publicly disclosed in the provided documents. Monitor for updates from vendors and security advisories for affected versions, impact, and remediation.

6.3CVSS7.2AI score0.00235EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/04/03 12:0 a.m.7 views

WordPress plugin FPW Category Thumbnails 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exist...

6.3CVSS7AI score0.00235EPSS
Exploits0References1
Rows per page
Query Builder