Lucene search
K

3269 matches found

Lenovo
Lenovo
added 2026/01/13 3:7 p.m.6 views

Lenovo Vantage Vulnerability - Lenovo Support US

No description provided...

5.4AI score
Exploits0
Lenovo
Lenovo
added 2026/01/13 2:49 p.m.11 views

MediaTek Tablet Vulnerabilities January 2026 - Lenovo Support US

No description provided...

5.9AI score
Exploits0
RedhatCVE
RedhatCVE
added 2026/01/09 9:16 a.m.4 views

CVE-2025-14028

The Contact Us Simple Form plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 1.0 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, wit...

4.4CVSS5AI score0.003EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 8:49 a.m.5 views

CVE-2025-23885

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in anildhiman MJ Contact us mj-contact-us allows Reflected XSS.This issue affects MJ Contact us: from n/a through = 5.2.3...

7.1CVSS7.2AI score0.0022EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 8:47 a.m.7 views

CVE-2025-23503

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in osolwordpress Customizable Captcha and Contact Us customizable-captcha-and-contact-us-form allows Reflected XSS.This issue affects Customizable Captcha and Contact Us: from n/a through = 1.0.2...

7.1CVSS7.2AI score0.00378EPSS
Exploits0References1
NVD
NVD
added 2026/01/07 12:16 p.m.5 views

CVE-2025-14028

The Contact Us Simple Form plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 1.0 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, wit...

4.4CVSS0.003EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/01/07 9:20 a.m.1 views

CVE-2025-14028 Contact Us Simple Form <= 1.0 - Authenticated (Administrator+) Stored Cross-Site Scripting via Plugin Settings

The Contact Us Simple Form plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 1.0 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, wit...

4.4CVSS4.7AI score0.003EPSS
Exploits0References5
CVE
CVE
added 2026/01/07 9:20 a.m.19 views

CVE-2025-14028

CVE-2025-14028 affects Contact Us Simple Form (WordPress) plugins

4.4CVSS4.7AI score0.003EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/01/07 12:0 a.m.5 views

WordPress plugin Contact Us Simple Form 跨站脚本漏洞

...

4.4CVSS6.7AI score0.003EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/01/07 12:0 a.m.4 views

PT-2026-1614

Name of the Vulnerable Software and Affected Versions Contact Us Simple Form plugin for WordPress versions prior to 1.1 Description The Contact Us Simple Form plugin for WordPress is susceptible to Stored Cross-Site Scripting through admin settings. This is due to inadequate input sanitization an...

4.4CVSS5.3AI score0.003EPSS
Exploits0References7
Patchstack
Patchstack
added 2026/01/06 10:58 p.m.5 views

WordPress Contact Us Simple Form plugin <= 1.0 - Authenticated (Administrator+) Stored Cross-Site Scripting via Plugin Settings vulnerability

Authenticated Administrator+ Stored Cross-Site Scripting via Plugin Settings vulnerability discovered by Bhumividh Treloges in WordPress Plugin Contact Us Simple Form versions = 1.0...

4.4CVSS5.8AI score0.003EPSS
Exploits0References1Affected Software1
RedhatCVE
RedhatCVE
added 2025/12/25 11:16 p.m.12 views

CVE-2025-15073

A vulnerability was determined in itsourcecode Online Frozen Foods Ordering System 1.0. This affects an unknown part of the file /contactus.php. This manipulation of the argument Name causes sql injection. It is possible to initiate the attack remotely. The exploit has been publicly disclosed and...

9.8CVSS7AI score0.00381EPSS
Exploits1References1
EUVD
EUVD
added 2025/12/25 12:30 a.m.5 views

EUVD-2025-205359

A vulnerability was determined in itsourcecode Online Frozen Foods Ordering System 1.0. This affects an unknown part of the file /contactus.php. This manipulation of the argument Name causes sql injection. It is possible to initiate the attack remotely. The exploit has been publicly disclosed and...

7.5CVSS7.2AI score0.00381EPSS
Exploits1References7
NVD
NVD
added 2025/12/24 11:15 p.m.4 views

CVE-2025-15073

A vulnerability was determined in itsourcecode Online Frozen Foods Ordering System 1.0. This affects an unknown part of the file /contactus.php. This manipulation of the argument Name causes sql injection. It is possible to initiate the attack remotely. The exploit has been publicly disclosed and...

9.8CVSS0.00381EPSS
Exploits1References5
Cvelist
Cvelist
added 2025/12/24 11:2 p.m.32 views

CVE-2025-15073 itsourcecode Online Frozen Foods Ordering System contact_us.php sql injection

A vulnerability was determined in itsourcecode Online Frozen Foods Ordering System 1.0. This affects an unknown part of the file /contactus.php. This manipulation of the argument Name causes sql injection. It is possible to initiate the attack remotely. The exploit has been publicly disclosed and...

7.5CVSS0.00381EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/12/24 11:2 p.m.3 views

CVE-2025-15073 itsourcecode Online Frozen Foods Ordering System contact_us.php sql injection

A vulnerability was determined in itsourcecode Online Frozen Foods Ordering System 1.0. This affects an unknown part of the file /contactus.php. This manipulation of the argument Name causes sql injection. It is possible to initiate the attack remotely. The exploit has been publicly disclosed and...

7.5CVSS6.6AI score0.00381EPSS
Exploits1References5
CNNVD
CNNVD
added 2025/12/24 12:0 a.m.4 views

itsourcecode Online Frozen Foods Ordering System SQL注入漏洞

itsourcecode Online Frozen Foods Ordering System is itsourcecode open source online frozen food ordering system . A SQL injection vulnerability exists in version 1.0 of itsourcecode Online Frozen Foods Ordering System, which stems from an incorrect manipulation of the parameter Name in the file...

9.8CVSS7.7AI score0.00381EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2025/12/24 12:0 a.m.5 views

PT-2025-53382

Name of the Vulnerable Software and Affected Versions itsourcecode Online Frozen Foods Ordering System version 1.0 Description A SQL injection issue exists in itsourcecode Online Frozen Foods Ordering System version 1.0. The issue is located in the /contact us.php file. Manipulation of the Name...

9.8CVSS7.4AI score0.00381EPSS
Exploits1References11
RedhatCVE
RedhatCVE
added 2025/12/04 5:16 p.m.11 views

CVE-2025-20384

In Splunk Enterprise versions below 10.0.1, 9.4.6, 9.3.8, and 9.2.10, and Splunk Cloud Platform versions below 10.1.2507.4, 10.0.2503.6, and 9.3.2411.117.125, an unauthenticated attacker can inject American National Standards Institute ANSI escape codes into Splunk log files due to improper...

5.3CVSS7AI score0.00352EPSS
Exploits1References1
OSV
OSV
added 2025/12/03 5:15 p.m.5 views

CVE-2025-20384

In Splunk Enterprise versions below 10.0.1, 9.4.6, 9.3.8, and 9.2.10, and Splunk Cloud Platform versions below 10.1.2507.4, 10.0.2503.6, and 9.3.2411.117.125, an unauthenticated attacker can inject American National Standards Institute ANSI escape codes into Splunk log files due to improper...

5.3CVSS5.8AI score0.00352EPSS
Exploits1References1
Rows per page
Query Builder