Lucene search
K

5 matches found

CVE
CVE
added 2026/05/02 7:46 a.m.23 views

CVE-2026-6229

The Royal Elementor Addons plugin for WordPress is vulnerable to Server-Side Request Forgery (SSRF) in versions up to 1.7.1057. The root cause is insufficient validation of user-supplied URLs in render_csv_data(), which can be bypassed by including docs.google.com/spreadsheets in a query paramete...

7.2CVSS5.9AI score0.00379EPSS
Exploits0References10
Vulnrichment
Vulnrichment
added 2025/12/21 3:1 a.m.2 views

CVE-2025-68644

Yealink RPS before 2025-06-27 allows unauthorized access to information, including AutoP URL addresses. This was fixed by deploying an enhanced authentication mechanism through a security update to all cloud instances...

7.4CVSS6.7AI score0.00269EPSS
Exploits0References2
CNVD
CNVD
added 2024/09/05 12:0 a.m.9 views

Mozilla Focus for iOS Spoofing Vulnerability (CNVD-2024-40517)

Mozilla Focus is a browser for iOS devices from the Mozilla Foundation. Mozilla Focus for iOS is vulnerable to a spoofing vulnerability caused by an error related to the use of Javascript links. An attacker can exploit this vulnerability to spoof URL addresses in the Focus navigation bar...

4.7CVSS6.3AI score0.00256EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/09/03 8:7 p.m.20 views

CVE-2024-8399

Websites could utilize Javascript links to spoof URL addresses in the Focus navigation bar This vulnerability affects Focus for iOS 130...

0.00256EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/09/03 8:7 p.m.14 views

CVE-2024-8399

Websites could utilize Javascript links to spoof URL addresses in the Focus navigation bar This vulnerability affects Focus for iOS 130...

6.4AI score0.00256EPSS
Exploits0References2
Rows per page
Query Builder