Lucene search
K

32 matches found

OSV
OSV
added 2025/08/14 6:52 p.m.4 views

MAL-2025-27414 Malicious code in nexus-ui-plugin (npm)

The package nexus-ui-plugin was found to contain malicious code...

7.2AI score
Exploits0
Patchstack
Patchstack
added 2023/11/03 12:0 a.m.5 views

WordPress ShortCodes UI Plugin <= 1.9.8 is vulnerable to Cross Site Scripting (XSS)

Software ShortCodes UI Type Plugin Vulnerable versions = 1.9.8 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-47231 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 1d2b471bd5be Credits Abdi Pranata Required...

5.4CVSS5.8AI score0.00389EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/10/10 2:31 p.m.24 views

CVE-2023-44994 WordPress ShortCodes UI Plugin <= 1.9.8 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in Bainternet ShortCodes UI plugin = 1.9.8 versions...

4.3CVSS9AI score0.00214EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/10/10 2:31 p.m.15 views

CVE-2023-44994 WordPress ShortCodes UI Plugin <= 1.9.8 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in Bainternet ShortCodes UI plugin = 1.9.8 versions...

4.3CVSS7.1AI score0.00214EPSS
Exploits0References1
CVE
CVE
added 2023/10/10 2:31 p.m.34 views

CVE-2023-44994

CVE-2023-44994 is a CSRF vulnerability in the WordPress ShortCodes UI plugin (Bainternet ShortCodes UI) affecting versions

8.8CVSS6.5AI score0.00214EPSS
Exploits0References1Affected Software1
OSSF Malicious Packages
OSSF Malicious Packages
added 2022/06/30 9:45 a.m.3 views

Malicious code in material-ui-plugin-styles-provider-cache (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c532d2260b90e64adf2ec199da8ee4d191a0c4803afeaa57c2327d49db0c6969 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSV
OSV
added 2022/06/30 9:45 a.m.10 views

MAL-2022-4492 Malicious code in material-ui-plugin-styles-provider-cache (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c532d2260b90e64adf2ec199da8ee4d191a0c4803afeaa57c2327d49db0c6969 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
Github Security Blog
Github Security Blog
added 2022/05/17 4:17 a.m.26 views

Improper Neutralization of Input During Web Page Generation in Apache Solr

Cross-site scripting XSS vulnerability in the Admin UI Plugin / Stats page in Apache Solr 4.x before 4.10.3 allows remote attackers to inject arbitrary web script or HTML via the fieldvaluecache object...

4.3CVSS5.6AI score0.04702EPSS
Exploits0References3Affected Software1
Prion
Prion
added 2015/01/06 3:59 p.m.21 views

Cross site scripting

Cross-site scripting XSS vulnerability in the Admin UI Plugin / Stats page in Apache Solr 4.x before 4.10.3 allows remote attackers to inject arbitrary web script or HTML via the fieldvaluecache object...

4.3CVSS6.1AI score0.04702EPSS
Exploits0References2Affected Software1
UbuntuCve
UbuntuCve
added 2015/01/06 3:59 p.m.30 views

CVE-2014-3628

Cross-site scripting XSS vulnerability in the Admin UI Plugin / Stats page in Apache Solr 4.x before 4.10.3 allows remote attackers to inject arbitrary web script or HTML via the fieldvaluecache object...

4.3CVSS5.9AI score0.04702EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2015/01/06 3:0 p.m.29 views

CVE-2014-3628

Cross-site scripting XSS vulnerability in the Admin UI Plugin / Stats page in Apache Solr 4.x before 4.10.3 allows remote attackers to inject arbitrary web script or HTML via the fieldvaluecache object...

4.3CVSS5.6AI score0.04702EPSS
Exploits0
Cvelist
Cvelist
added 2015/01/06 3:0 p.m.27 views

CVE-2014-3628

Cross-site scripting XSS vulnerability in the Admin UI Plugin / Stats page in Apache Solr 4.x before 4.10.3 allows remote attackers to inject arbitrary web script or HTML via the fieldvaluecache object...

5.5AI score0.04702EPSS
Exploits0References2
Rows per page
Query Builder