Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2014-9340

Malware in sbrugna...

6.8CVSS6.4AI score0.01151EPSS
Exploits1References4
CNVD
CNVDadded 2015/01/06 12:0 a.m.2 views

WordPress plugin Timed Popup (wp-timed-popup) cross-site request forgery vulnerability

WordPress is a set of WordPress Software Foundation's blogging platform developed using the PHP language, which supports personal blog sites on servers with PHP and MySQL. A cross-site request forgery vulnerability in WordPress plugin Timed Popup wp-timed-popup versions prior to 1.3 allows remote...

6.8CVSS6.7AI score0.01151EPSS
Exploits1References1
NVD
NVDadded 2015/01/05 8:59 p.m.15 views

CVE-2014-9525

Multiple cross-site request forgery CSRF vulnerabilities in the Timed Popup wp-timed-popup plugin 1.3 for WordPress allow remote attackers to hijack the authentication of administrators for requests that 1 change plugin settings via unspecified vectors or 2 conduct cross-site scripting XSS attack...

6.8CVSS6.7AI score0.01151EPSS
Exploits1References3
Prion
Prionadded 2015/01/05 8:59 p.m.14 views

Cross site request forgery (csrf)

Multiple cross-site request forgery CSRF vulnerabilities in the Timed Popup wp-timed-popup plugin 1.3 for WordPress allow remote attackers to hijack the authentication of administrators for requests that 1 change plugin settings via unspecified vectors or 2 conduct cross-site scripting XSS attack...

6.8CVSS7AI score0.01151EPSS
Exploits1References3Affected Software1
Cvelist
Cvelistadded 2015/01/05 8:0 p.m.22 views

CVE-2014-9525

Multiple cross-site request forgery CSRF vulnerabilities in the Timed Popup wp-timed-popup plugin 1.3 for WordPress allow remote attackers to hijack the authentication of administrators for requests that 1 change plugin settings via unspecified vectors or 2 conduct cross-site scripting XSS attack...

6.7AI score0.01151EPSS
Exploits1References3
CVE
CVEadded 2015/01/05 8:0 p.m.42 views

CVE-2014-9525

CVE-2014-9525 affects the WordPress Timed Popup (wp-timed-popup) plugin v1.3. It contains CSRF vulnerabilities that allow remote attackers to hijack administrator authentication to change plugin settings via unspecified vectors, and also to perform XSS through the sc_popup_subtitle parameter on w...

6.8CVSS6.8AI score0.01151EPSS
Exploits1References3Affected Software1
Patchstack
Patchstackadded 2015/01/05 12:0 a.m.87 views

WordPress Timed Popup Plugin <= 1.3 - Multiple CSRF and XSS

Because of these cross site request forgery vulnerabilities, the attackers can hijack the authentication of administrators for requests. In that way they can change plugin settings via unspecified vectors or conduct cross-site scripting attacks. Solution Update the plugin...

6.8CVSS3.1AI score0.01151EPSS
Exploits1References1Affected Software1
WPVulnDB
WPVulnDBadded 2014/12/14 3:55 p.m.11 views

Timed Popup <= 1.3 - CSRF & Stored XSS

The wp-timed-popup WordPress plugin was affected by a CSRF & Stored XSS security vulnerability...

1.8AI score
Exploits0References1Affected Software1
Packet Storm
Packet Stormadded 2014/12/12 12:0 a.m.21 views

WordPress Timed Popup 1.3 CSRF / XSS

Title: WordPress 'Timed Popup' plugin - CSRF/XSS Version: 1.3 Author: Morten Nørtoft, Kenneth Jepsen, Mikkel Vej Date: 2014/12/12 Download: https://wordpress.org/plugins/wp-timed-popup/ Notified WordPress: 2014/11/27 ---------------------------------------------------------------- Description:...

Exploits0
Rows per page
Query Builder