Lucene search
K

26 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2019-19017

Malware in sbrugna...

6.1CVSS6.2AI score0.03393EPSS
Exploits5References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2025-30660

Malicious code in bioql PyPI...

5.4CVSS6.5AI score0.00284EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/09/24 6:30 p.m.3 views

CVE-2025-57994

Authorization Bypass Through User-Controlled Key vulnerability in Sayful Islam Upcoming Events Lists upcoming-events-lists allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Upcoming Events Lists: from n/a through = 1.4.0...

5.4CVSS5.9AI score0.00284EPSS
Exploits0References1
NVD
NVD
added 2025/09/22 7:16 p.m.2 views

CVE-2025-57994

Authorization Bypass Through User-Controlled Key vulnerability in Sayful Islam Upcoming Events Lists upcoming-events-lists allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Upcoming Events Lists: from n/a through = 1.4.0...

5.4CVSS0.00284EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/09/22 7:0 p.m.9 views

WordPress Upcoming Events Lists Plugin <= 1.4.0 - Insecure Direct Object References (IDOR) Vulnerability

Insecure Direct Object References IDOR Vulnerability discovered by Nabil Irawan in WordPress Plugin Upcoming Events Lists versions = 1.4.0...

5.4CVSS6.8AI score0.00284EPSS
Exploits0Affected Software1
Vulnrichment
Vulnrichment
added 2025/09/22 6:24 p.m.2 views

CVE-2025-57994 WordPress Upcoming Events Lists Plugin <= 1.4.0 - Insecure Direct Object References (IDOR) Vulnerability

Authorization Bypass Through User-Controlled Key vulnerability in Sayful Islam Upcoming Events Lists allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Upcoming Events Lists: from n/a through 1.4.0...

5.4CVSS6.6AI score0.00284EPSS
Exploits0References1
CVE
CVE
added 2025/09/22 6:24 p.m.9 views

CVE-2025-57994

Technical details are not publicly available in the provided documents for CVE-2025-57994 (Upcoming Events Lists). Monitor for updates and rely on official advisories for affected versions, impact, and fixes.

5.4CVSS5.9AI score0.00284EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/09/22 6:24 p.m.11 views

CVE-2025-57994 WordPress Upcoming Events Lists Plugin <= 1.4.0 - Insecure Direct Object References (IDOR) Vulnerability

Authorization Bypass Through User-Controlled Key vulnerability in Sayful Islam Upcoming Events Lists upcoming-events-lists allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Upcoming Events Lists: from n/a through = 1.4.0...

5.4CVSS0.00284EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/09/22 12:0 a.m.4 views

PT-2025-38844

Name of the Vulnerable Software and Affected Versions Sayful Islam Upcoming Events Lists versions through 1.4.0 Description An authorization bypass exists due to user-controlled keys and incorrectly configured access control security levels in Upcoming Events Lists. This allows for bypassing...

5.4CVSS6.6AI score0.00284EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/09/22 12:0 a.m.7 views

WordPress plugin Upcoming Events Lists security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed using the PHP language, with the ability to host personal blog sites on PHP and MySQL based servers.WordPress...

5.4CVSS5.8AI score0.00284EPSS
Exploits0References1
Qualys Blog
Qualys Blog
added 2024/03/07 5:10 p.m.20 views

Qualys Updates Login Page to Improve User Experience and Highlight Latest Qualys News

With an eye to updating the overall user experience UI, continuing to fortify security, and keeping you informed of the latest Qualys news, were optimizing our login at the end of May 2024. This UI overhaul of sorts aims not only to refresh the aesthetic appeal but also to integrate robust...

7.5AI score
Exploits0
Talos Blog
Talos Blog
added 2023/01/26 11:15 p.m.19 views

What Old is New Again and What's Old is Me?

Welcome to this weeks edition of the Threat Source newsletter. Whats old is new again and whats old is still old. The fact that we are seeing a comeback of this USB thumb drive nonsense is giving me heartburn, and a headache, and my left eye is twitching … and maybe numbness in my legs? Yes, I am...

7.8AI score
Exploits0
Talos Blog
Talos Blog
added 2019/09/26 10:53 a.m.54 views

Threat Source newsletter (Sept. 26)

Newsletter compiled by Jon Munshaw. Welcome to this week’s Threat Source newsletter — the perfect place to get caught up on all things Talos from the past week. An attacker known as “Tortoiseshell” is using a phony, malicious website to deliver malware. The site specifically targets U.S. military...

7.7AI score
Exploits0
0day.today
0day.today
added 2019/03/19 12:0 a.m.154 views

MyBB Upcoming Events Plugin 1.32 - Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: MyBB Upcoming Events Plugin 1.32 - Cross-Site Scripting Author: 0xB9 Twitter: @0xB9Sec Contact: 0xB9atpm.me Software Link: https://community.mybb.com/mods.php?action=view&pid=1231 Version: 1.32 Tested on: Ubuntu 18.04 CVE:...

4.3CVSS0.03393EPSS
Exploits5
Packet Storm
Packet Storm
added 2019/03/19 12:0 a.m.90 views

MyBB Upcoming Events 1.32 Cross Site Scripting

Exploit Title: MyBB Upcoming Events Plugin 1.32 - Cross-Site Scripting Date: 3/8/2019 Author: 0xB9 Twitter: @0xB9Sec Contact: 0xB9atpm.me Software Link: https://community.mybb.com/mods.php?action=view&pid=1231 Version: 1.32 Tested on: Ubuntu 18.04 CVE: CVE-2019-9650 1. Description: This plugin...

4.3CVSS6.4AI score0.03393EPSS
Exploits5
exploitpack
exploitpack
added 2019/03/19 12:0 a.m.16 views

MyBB Upcoming Events Plugin 1.32 - Cross-Site Scripting

MyBB Upcoming Events Plugin 1.32 - Cross-Site Scripting Exploit Title: MyBB Upcoming Events Plugin 1.32 - Cross-Site Scripting Date: 3/8/2019 Author: 0xB9 Twitter: @0xB9Sec Contact: 0xB9atpm.me Software Link: https://community.mybb.com/mods.php?action=view&pid=1231 Version: 1.32 Tested on: Ubuntu...

4.3CVSS6.1AI score0.03393EPSS
Exploits5
Exploit DB
Exploit DB
added 2019/03/19 12:0 a.m.48 views

MyBB Upcoming Events Plugin 1.32 - Cross-Site Scripting

Exploit Title: MyBB Upcoming Events Plugin 1.32 - Cross-Site Scripting Date: 3/8/2019 Author: 0xB9 Twitter: @0xB9Sec Contact: 0xB9atpm.me Software Link: https://community.mybb.com/mods.php?action=view&pid=1231 Version: 1.32 Tested on: Ubuntu 18.04 CVE: CVE-2019-9650 1. Description: This plugin...

6.1CVSS6.3AI score0.03393EPSS
Exploits5
OSV
OSV
added 2019/03/11 1:29 a.m.3 views

CVE-2019-9650

An XSS issue was discovered in upcomingevents.php in the Upcoming Events plugin before 1.33 for MyBB via a crafted name for an event...

6.1CVSS5.8AI score0.03393EPSS
Exploits5References4
NVD
NVD
added 2019/03/11 1:29 a.m.13 views

CVE-2019-9650

An XSS issue was discovered in upcomingevents.php in the Upcoming Events plugin before 1.33 for MyBB via a crafted name for an event...

6.1CVSS5.9AI score0.03393EPSS
Exploits5References4
Prion
Prion
added 2019/03/11 1:29 a.m.11 views

Cross site scripting

An XSS issue was discovered in upcomingevents.php in the Upcoming Events plugin before 1.33 for MyBB via a crafted name for an event...

4.3CVSS5.9AI score0.03393EPSS
Exploits5References4Affected Software1
Rows per page
Query Builder