Lucene search
K

14 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2013-4329

Malware in sbrugna...

3.3CVSS6.1AI score0.00438EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2007-1776

Malware in sbrugna...

4.6CVSS6.4AI score0.00324EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2004-0148

Malware in sbrugna...

7.2CVSS6.1AI score0.00442EPSS
Exploits0References17
NVD
NVD
added 2024/12/11 1:15 p.m.7 views

CVE-2024-11351

The Restrict – membership, site, content and user access restrictions for WordPress plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.2.8 via the WordPress core search feature. This makes it possible for unauthenticated attackers to extra...

5.3CVSS0.00374EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/12/04 12:0 a.m.7 views

PT-2024-17330 · WordPress · Mightyforms

Name of the Vulnerable Software and Affected Versions: Contact Form, Survey & Form Builder – MightyForms plugin for WordPress versions up to, and including, 1.3.9 Description: The issue is related to Stored Cross-Site Scripting via the plugin's 'mightyforms' shortcode due to insufficient input...

6.4CVSS7.8AI score0.00289EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2024/10/29 12:0 a.m.4 views

PT-2024-16130 · WordPress · Sms Alert Order Notifications

Name of the Vulnerable Software and Affected Versions: SMS Alert Order Notifications – WooCommerce plugin for WordPress versions up to, and including, 3.7.5 Description: The issue is related to Stored Cross-Site Scripting via the plugin's sa subscribe shortcode due to insufficient input...

6.4CVSS5.7AI score0.00333EPSS
Exploits0References10
Positive Technologies
Positive Technologies
added 2022/10/25 12:0 a.m.10 views

PT-2022-21649 · WordPress · Cleantalk

Name of the Vulnerable Software and Affected Versions: Spam protection, AntiSpam, FireWall by CleanTalk WordPress plugin versions prior to 5.185.1 Description: The issue concerns a lack of validation for ids used in SQL statements, potentially leading to SQL injection. This could be exploited by...

7.2CVSS7.3AI score0.01015EPSS
Exploits2References5
NVD
NVD
added 2021/10/19 3:15 p.m.14 views

CVE-2021-39355

The Indeed Job Importer WordPress plugin is vulnerable to Stored Cross-Site Scripting due to insufficient input validation and sanitization via several parameters found in the /indeed-job-importer/trunk/indeed-job-importer.php file which allowed attackers with administrative user access to inject...

5.5CVSS0.00957EPSS
Exploits1References3
Drupal
Drupal
added 2019/07/17 12:0 a.m.20 views

ImageCache Actions - Critical - Multiple Vulnerabilities - SA-CONTRIB-2019-056

The imagecache actions module defines a number of additional image effects that can be used to create image styles. The "Image styles admin" sub module provides additional functionality to duplicate, export and import image styles. The module uses unserialize to import image styles into another...

6.7AI score
Exploits0References8
Microsoft KB
Microsoft KB
added 2018/04/17 7:12 a.m.20 views

Description of the Office 2008 for Mac 12.0.1 Update

Resolves a security vulnerability that exists in Microsoft Office 2008 for Mac that could allow arbitrary code to run when you open a malicious document. This update addresses that vulnerability.Microsoft has released security bulletin MS08-014. This security bulletin contains all the relevant...

Exploits0
OSV
OSV
added 2014/02/15 2:57 p.m.6 views

CVE-2011-1836

utils/ecryptfs-recover-private in ecryptfs-utils before 90 does not establish a subdirectory with safe permissions, which might allow local users to bypass intended access restrictions via standard filesystem operations during the recovery process...

6AI score
Exploits0References4
OpenVAS
OpenVAS
added 2012/05/17 12:0 a.m.25 views

Ubuntu: Security Advisory (USN-1442-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.2CVSS6.4AI score0.00399EPSS
Exploits0References2
Symantec
Symantec
added 2007/10/09 12:0 a.m.21 views

Microsoft Word Workspace Memory Corruption Remote Code Execution Vulnerability

Description Microsoft Word is prone to a remote code-execution vulnerability. An attacker could exploit this issue by enticing a victim to open a malicious Word file. Successfully exploiting this issue would allow the attacker to execute arbitrary code in the context of the currently logged-in...

7.8AI score
Exploits0Affected Software1
NVD
NVD
added 2003/12/31 5:0 a.m.12 views

CVE-2003-1169

DATEV Nutzungskontrolle 2.1 and 2.2 has insecure write permissions for critical registry keys, which allows local users to bypass access restrictions by importing NukoInfo values in certain DATEV keys, which disables Nutzungskontrolle...

4.6CVSS6.4AI score0.00819EPSS
Exploits1References3
Rows per page
Query Builder