8 matches found
com.github.psi-probe:psi-probe-tomcat10 (>=5.0.0 <=5.3.0), com.github.psi-probe:psi-probe-tomcat11 (>=5.0.0 <=5.3.0) +5 more potentially affected by CVE-2026-3268 via com.github.psi-probe:psi-probe-core (>=3.0.0 <=5.3.0)
com.github.psi-probe:psi-probe-core MAVEN version =3.0.0, =5.0.0, =5.0.0, =3.0.0, =3.0.0, =3.0.0, =3.0.0, =3.0.0, =5.3.0 Source cves: CVE-2026-3268 Source advisory: SNYK:JAVA-COMGITHUBPSIPROBE-15369740...
WordPress tagDiv Composer plugin <= 5.3 - Reflected Cross-Site Scripting via 'data' vulnerability
Reflected Cross-Site Scripting via 'data' vulnerability discovered by Truoc Phan - Techlab Corporation in WordPress Plugin tagDiv Composer versions = 5.3...
CVE-2025-6003
The WordPress Single Sign-On SSO plugin for WordPress is vulnerable to unauthorized access due to a misconfigured capability check on a function in all versions up to, and including, the .5.3 versions of the plugin. This makes it possible for unauthenticated attackers to extract sensitive data...
PT-2023-28677 · Dell · Dell Unity
Name of the Vulnerable Software and Affected Versions: Dell Unity versions prior to 5.3 Description: The issue allows an authenticated, local attacker to exploit a Restricted Shell Bypass vulnerability by authenticating to the device CLI and issuing certain commands. Recommendations: For versions...
PT-2021-19944 · Zope · Accesscontrol +1
Name of the Vulnerable Software and Affected Versions: AccessControl versions 4.0 through 4.2 AccessControl versions 5.0 through 5.1 Zope versions prior to 4.6.3 Zope versions prior to 5.3 Description: The module AccessControl defines security policies for Python code used in restricted code with...
WordPress Cross-Site Scripting Vulnerability (CNVD-2020-02541)
WordPress is a set of blogging platforms developed using the PHP language by the WordPress Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. A cross-site scripting vulnerability exists in WordPress versions 3.7 through 5.3.0. The vulnerability stems...
UBUNTU-CVE-2019-20042
In wp-includes/formatting.php in WordPress 3.7 to 5.3.0, the function wptargetedlinkrel can be used in a particular way to result in a stored cross-site scripting XSS vulnerability. This has been patched in WordPress 5.3.1, along with all the previous WordPress versions from 3.7 to 5.3 via a mino...
PT-2019-5214 · WordPress · Wordpress
Name of the Vulnerable Software and Affected Versions: WordPress versions 3.7 through 5.3 Description: The issue is related to a cross-site scripting XSS error in the block editor of the WordPress content management system. This error can be exploited by authorized users using a specific payload,...