Lucene search
K

6 matches found

NVD
NVD
added 2026/02/25 9:16 a.m.6 views

CVE-2026-1916

The WPGSI: Spreadsheet Integration plugin for WordPress is vulnerable to unauthorized modification and loss of data due to missing capability checks and an insecure authentication mechanism on the wpgsicallBackFuncAccept and wpgsicallBackFuncUpdate REST API functions in all versions up to, and...

7.5CVSS0.00357EPSS
Exploits0References8
Vulnrichment
Vulnrichment
added 2026/02/25 8:25 a.m.5 views

CVE-2026-1916 WPGSI: Spreadsheet Integration <= 3.8.3 - Missing Authorization to Unauthenticated Arbitrary Post Creation and Deletion via Forged Base64 Token

The WPGSI: Spreadsheet Integration plugin for WordPress is vulnerable to unauthorized modification and loss of data due to missing capability checks and an insecure authentication mechanism on the wpgsicallBackFuncAccept and wpgsicallBackFuncUpdate REST API functions in all versions up to, and...

7.5CVSS5.7AI score0.00357EPSS
Exploits0References8
SUSE CVE
SUSE CVE
added 2023/02/15 6:15 a.m.3 views

SUSE CVE-2006-2237

The web interface for AWStats 6.4 and 6.5, when statistics updates are enabled, allows remote attackers to execute arbitrary code via shell metacharacters in the migrate parameter...

5.1CVSS8.1AI score0.58356EPSS
Exploits10References4
Vulnrichment
Vulnrichment
added 2022/01/06 11:5 p.m.3 views

CVE-2022-21662 Stored XSS in WordPress

WordPress is a free and open-source content management system written in PHP and paired with a MariaDB database. Low-privileged authenticated users like author in WordPress core are able to execute JavaScript/perform stored XSS attack, which can affect high-privileged users. This has been patched...

8CVSS6.3AI score0.63418EPSS
Exploits0References6
OSV
OSV
added 2006/05/08 11:2 p.m.1 views

DEBIAN-CVE-2006-2237

The web interface for AWStats 6.4 and 6.5, when statistics updates are enabled, allows remote attackers to execute arbitrary code via shell metacharacters in the migrate parameter...

5.1CVSS8.1AI score0.58356EPSS
Exploits10References1
Microsoft Security Update
Microsoft Security Update
added 1970/01/01 12:0 a.m.2 views

SCEP: Product updates via MUv6 are enabled

Detects whether the SCEP product updates via MUv6 are enabled...

7AI score
Exploits0
Rows per page
Query Builder