Lucene search
K

321 matches found

Patchstack
Patchstack
added 2025/03/31 2:1 p.m.4 views

WordPress Related Posts Widget with Thumbnails plugin <= 1.2 - CSRF to Stored XSS vulnerability

CSRF to Stored XSS vulnerability discovered by Abdi Pranata in WordPress Plugin Related Posts Widget with Thumbnails versions = 1.2...

7.1CVSS6.2AI score0.00135EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/03/31 2:1 p.m.5 views

WordPress wordpress related Posts with thumbnails plugin <= 3.0.0.1 - CSRF to Stored XSS vulnerability

CSRF to Stored XSS vulnerability discovered by Abdi Pranata in WordPress Plugin wordpress related Posts with thumbnails versions = 3.0.0.1...

7.1CVSS6.2AI score0.00135EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVE
added 2025/03/26 2:41 p.m.7 views

CVE-2025-30585

Cross-Site Request Forgery CSRF vulnerability in marynixie Generate Post Thumbnails generate-post-thumbnails allows Cross Site Request Forgery.This issue affects Generate Post Thumbnails: from n/a through = 0.8...

4.3CVSS7.2AI score0.00186EPSS
Exploits0References1
NVD
NVD
added 2025/03/24 2:15 p.m.4 views

CVE-2025-30585

Cross-Site Request Forgery CSRF vulnerability in marynixie Generate Post Thumbnails generate-post-thumbnails allows Cross Site Request Forgery.This issue affects Generate Post Thumbnails: from n/a through = 0.8...

4.3CVSS0.00186EPSS
Exploits0References1
CVE
CVE
added 2025/03/24 1:47 p.m.54 views

CVE-2025-30585

CVE-2025-30585 : CSRF vulnerability in the WordPress plugin Generate Post Thumbnails (

4.3CVSS7.2AI score0.00186EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/03/24 1:47 p.m.14 views

CVE-2025-30585 WordPress Generate Post Thumbnails plugin <= 0.8 - Cross Site Request Forgery (CSRF) Vulnerability

Cross-Site Request Forgery CSRF vulnerability in marynixie Generate Post Thumbnails generate-post-thumbnails allows Cross Site Request Forgery.This issue affects Generate Post Thumbnails: from n/a through = 0.8...

4.3CVSS0.00186EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/03/24 1:47 p.m.3 views

CVE-2025-30585 WordPress Generate Post Thumbnails plugin <= 0.8 - Cross Site Request Forgery (CSRF) Vulnerability

Cross-Site Request Forgery CSRF vulnerability in marynixie Generate Post Thumbnails generate-post-thumbnails allows Cross Site Request Forgery.This issue affects Generate Post Thumbnails: from n/a through = 0.8...

4.3CVSS7.3AI score0.00186EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/03/24 1:32 p.m.3 views

WordPress Generate Post Thumbnails plugin <= 0.8 - Cross Site Request Forgery (CSRF) Vulnerability

Cross Site Request Forgery CSRF Vulnerability discovered by Nabil Irawan in WordPress Plugin Generate Post Thumbnails versions = 0.8...

4.3CVSS6.8AI score0.00186EPSS
Exploits0Affected Software1
CNNVD
CNNVD
added 2025/03/24 12:0 a.m.4 views

WordPress plugin Generate Post Thumbnails 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plugin that supports personal blog sites on PHP and MySQL servers. A cross-site request forgery vulnerability exists i...

4.3CVSS8.4AI score0.00186EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/02/07 6:6 p.m.19 views

CVE-2025-20891

Out-of-bounds read in decoding malformed bitstream of video thumbnails in libsthmbc.so prior to SMR Jan-2025 Release 1 allows local attackers to read arbitrary memory. User interaction is required for triggering this vulnerability...

5.5CVSS6.6AI score0.00139EPSS
Exploits0References1
OSV
OSV
added 2025/02/04 8:15 a.m.6 views

CVE-2025-20891

Out-of-bounds read in decoding malformed bitstream of video thumbnails in libsthmbc.so prior to SMR Jan-2025 Release 1 allows local attackers to read arbitrary memory. User interaction is required for triggering this vulnerability...

5.5CVSS5.9AI score0.00139EPSS
Exploits0References1
NVD
NVD
added 2025/02/04 8:15 a.m.44 views

CVE-2025-20891

Out-of-bounds read in decoding malformed bitstream of video thumbnails in libsthmbc.so prior to SMR Jan-2025 Release 1 allows local attackers to read arbitrary memory. User interaction is required for triggering this vulnerability...

5.5CVSS0.00139EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/02/04 7:19 a.m.11 views

CVE-2025-20891

Out-of-bounds read in decoding malformed bitstream of video thumbnails in libsthmbc.so prior to SMR Jan-2025 Release 1 allows local attackers to read arbitrary memory. User interaction is required for triggering this vulnerability...

5.3CVSS5.4AI score0.00139EPSS
Exploits0References1
CVE
CVE
added 2025/02/04 7:19 a.m.71 views

CVE-2025-20891

CVE-2025-20891 : Out-of-bounds read in decoding malformed bitstreams of video thumbnails in libsthmbc.so, enabling local attackers to read memory. Affected on Samsung Mobile devices prior to SMR Jan-2025 Release 1; exploitation requires user interaction. Multiple sources confirm the issue and ref...

5.5CVSS6.9AI score0.00139EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2025/02/04 12:0 a.m.10 views

PT-2025-4173 · Unknown · Libsthmbc.So

Name of the Vulnerable Software and Affected Versions: libsthmbc.so versions prior to SMR Jan-2025 Release 1 Description: The issue is related to an out-of-bounds read in the decoding of malformed bitstreams of video thumbnails in libsthmbc.so. This allows local attackers to read arbitrary memory...

5.5CVSS6.7AI score0.00139EPSS
Exploits0References7
OSV
OSV
added 2025/01/17 11:15 p.m.4 views

CVE-2018-9379

In multiple functions of MiniThumbFile.java, there is a possible way to view the thumbnails of deleted photos due to a confused deputy. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

5.5CVSS5.9AI score0.00099EPSS
Exploits0References1
NVD
NVD
added 2025/01/17 11:15 p.m.12 views

CVE-2018-9379

In multiple functions of MiniThumbFile.java, there is a possible way to view the thumbnails of deleted photos due to a confused deputy. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

5.5CVSS0.00099EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/01/17 12:0 a.m.7 views

PT-2025-1334 · Unknown · Minithumbfile.Java

Name of the Vulnerable Software and Affected Versions: MiniThumbFile.java affected versions not specified Description: The issue in MiniThumbFile.java allows for the potential disclosure of local information without requiring additional execution privileges. This could lead to the exposure of...

5.5CVSS8.9AI score0.00099EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/01/17 12:0 a.m.4 views

Google Pixel和Google Nexus 代码问题漏洞

Google Pixel and Google Nexus are both a smartphone from the American company Google Google. Google Pixel and Google Nexus have a security vulnerability. An attacker exploiting the vulnerability can view thumbnails of deleted photos...

5.5CVSS9AI score0.00099EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/01/16 12:0 a.m.4 views

matrix-media-repo 代码问题漏洞

matrix-media-repo is a highly configurable multi-domain media repository for Matrix in the t2bot.io open source. A code issue vulnerability exists in matrix-media-repo that stems from the fact that if Matrix Media Repo has SVG or JPEGXL thumbnails enabled, a user can upload files claiming to be o...

6.8CVSS6.9AI score0.00618EPSS
Exploits0References3
Rows per page
Query Builder