Lucene search
K

797 matches found

CNNVD
CNNVD
added 2025/01/02 12:0 a.m.4 views

WordPress plugin Interactive UK Map 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed in the PHP language. WordPress plugin is an application plugin that supports personal blogs on PHP and MySQL servers. A cross-site scripting vulnerability exists in WordPress...

7.1CVSS7.4AI score0.00254EPSS
Exploits0References1
HackRead
HackRead
added 2024/11/20 6:42 p.m.9 views

US and UK Military Social Network “Forces Penpals” Exposes SSN, PII Data

Forces Penpals, a social network for US and UK military personnel, exposed the sensitive data of 1.1M users,…...

7.3AI score
Exploits0
HackRead
HackRead
added 2024/11/03 9:9 p.m.9 views

Half of Online Child Grooming Cases Now Happen on Snapchat, Reports UK Charity

Online grooming crimes against children have reached a record high, with Snapchat being the most popular platform for…...

7.3AI score
Exploits0
HackRead
HackRead
added 2024/10/31 3:58 p.m.12 views

New Xiū gǒu Phishing Kit Hits UK, US, Japan, Australia Across Key Sectors

Cybersecurity researchers uncovered the "Xiū gǒu" phishing kit targeting users in the UK, US, Spain, Australia, and Japan.…...

7.3AI score
Exploits0
Patchstack
Patchstack
added 2024/10/24 7:58 a.m.5 views

WordPress Button contact VR plugin <= 4.7.9.1 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by UKO Patchstack Alliance in WordPress Plugin Button contact VR versions = 4.7.9.1...

5.9CVSS6.1AI score0.00284EPSS
Exploits0Affected Software1
NVD
NVD
added 2024/10/20 10:15 a.m.20 views

CVE-2024-44061

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WPFactory EU/UK VAT Manager for WooCommerce eu-vat-for-woocommerce.This issue affects EU/UK VAT Manager for WooCommerce: from n/a through = 2.12.14...

7.1CVSS0.00249EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/10/20 9:6 a.m.14 views

CVE-2024-44061 WordPress EU/UK VAT Manager for WooCommerce plugin <= 2.12.14 - CSRF to Cross Site Scripting (XSS) vulnerability

: Improper Neutralization of Script-Related HTML Tags in a Web Page Basic XSS vulnerability in WPFactory EU/UK VAT Manager for WooCommerce allows Cross-Site Scripting XSS.This issue affects EU/UK VAT Manager for WooCommerce: from n/a through 2.12.14...

7.1CVSS6.2AI score0.00249EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/10/20 9:6 a.m.38 views

CVE-2024-44061 WordPress EU/UK VAT Manager for WooCommerce plugin <= 2.12.14 - CSRF to Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WPFactory EU/UK VAT Manager for WooCommerce eu-vat-for-woocommerce.This issue affects EU/UK VAT Manager for WooCommerce: from n/a through = 2.12.14...

7.1CVSS0.00249EPSS
Exploits0References1
CVE
CVE
added 2024/10/20 9:6 a.m.55 views

CVE-2024-44061

CVE-2024-44061 is a basic XSS vulnerability in the WPFactory EU/UK VAT Manager for WooCommerce plugin. The flaw is caused by improper neutralization of script-related HTML tags in a web page, enabling cross-site scripting. Affected software: EU/UK VAT Manager for WooCommerce versions n/a through ...

7.1CVSS5.9AI score0.00249EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2024/10/20 12:0 a.m.3 views

WordPress plugin EU/UK VAT Manager for WooCommerce 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. WordPress plugin is an application plugin that supports personal blog sites on PHP and MySQL servers. A cross-site scripting vulnerability exists in the...

7.1CVSS5.9AI score0.00249EPSS
Exploits0References2
HackRead
HackRead
added 2024/10/09 1:59 p.m.5 views

Dragonz Lab Secures $9M from Syndicate Capital to Boost ‘Dragonz Land’ Ecosystem

Abu Dhabi, UAE, October 9, 2024 – Dragonz Lab, a Web3 gaming studio originating from the UK, today…...

7.3AI score
Exploits0
Qualys Blog
Qualys Blog
added 2024/10/02 5:37 p.m.59 views

Threat Brief: Understanding Akira Ransomware

Overview Akira is a prolific ransomware that has been operating since March 2023 and has targeted multiple industries, primarily in North America, the UK, and Australia. It functions as a Ransomware as a Service RaaS and exfiltrates data prior to encryption, achieving double extortion. According ...

9.8CVSS10AI score0.99984EPSS
Exploits73
Wired Threat Level
Wired Threat Level
added 2024/10/01 4:59 p.m.11 views

Notorious Evil Corp Hackers Targeted NATO Allies for Russian Intelligence

UK law enforcement and international partners have released new details about the cybercriminal gang Evil Corp, including its use of the Lockbit ransomware platform and ties to Russian intelligence...

7.3AI score
Exploits0
Patchstack
Patchstack
added 2024/09/30 12:0 a.m.9 views

WordPress EU/UK VAT Manager for WooCommerce Plugin <= 2.12.12 is vulnerable to Cross Site Scripting (XSS)

Software EU/UK VAT Manager for WooCommerce Type Plugin Vulnerable versions = 2.12.12 Fixed in 2.12.14 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-8788 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 6156bb422739...

6.1CVSS5.7AI score0.00409EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2024/09/28 2:15 a.m.11 views

CVE-2024-8788

The EU/UK VAT Manager for WooCommerce plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of addqueryarg without appropriate escaping on the URL in all versions up to, and including, 2.12.11. This makes it possible for unauthenticated attackers to inject arbitrary...

6.1CVSS0.00409EPSS
Exploits0References3
NVD
NVD
added 2024/09/28 2:15 a.m.31 views

CVE-2024-9189

The EU/UK VAT Manager for WooCommerce plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the algwceuvatexemptvatfromadmin function in all versions up to, and including, 2.12.12. This makes it possible for unauthenticated attackers to updat...

5.3CVSS0.0048EPSS
Exploits0References3
CVE
CVE
added 2024/09/28 2:4 a.m.32 views

CVE-2024-9189

CVE-2024-9189 affects the EU/UK VAT Manager for WooCommerce WordPress plugin (versions

5.3CVSS5.5AI score0.0048EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2024/09/28 2:4 a.m.7 views

CVE-2024-8788 EU/UK VAT Manager for WooCommerce <= 2.12.12 - Reflected Cross-Site Scripting

The EU/UK VAT Manager for WooCommerce plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of addqueryarg without appropriate escaping on the URL in all versions up to, and including, 2.12.11. This makes it possible for unauthenticated attackers to inject arbitrary...

6.1CVSS6.4AI score0.00409EPSS
Exploits0References3
CVE
CVE
added 2024/09/28 2:4 a.m.34 views

CVE-2024-8788

Summary: CVE-2024-8788 affects the EU/UK VAT Manager for WooCommerce plugin for WordPress, with reflected XSS caused by insufficient escaping of add_query_arg usage. Affected versions are up to 2.12.11; exploitation is unauthenticated and requires user interaction (e.g., the target user clicking ...

6.1CVSS6.3AI score0.00409EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2024/09/28 2:4 a.m.21 views

CVE-2024-8788 EU/UK VAT Manager for WooCommerce <= 2.12.12 - Reflected Cross-Site Scripting

The EU/UK VAT Manager for WooCommerce plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of addqueryarg without appropriate escaping on the URL in all versions up to, and including, 2.12.11. This makes it possible for unauthenticated attackers to inject arbitrary...

6.1CVSS0.00409EPSS
Exploits0References3
Rows per page
Query Builder