Lucene search
+L

118 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-34373

Malicious code in bioql PyPI...

7.3CVSS8.7AI score0.00637EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-47036

Malicious code in bioql PyPI...

7.2CVSS6.5AI score0.00395EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 7:24 a.m.10 views

CVE-2024-0903

The User Feedback – Create Interactive Feedback Form, User Surveys, and Polls in Seconds plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'pagesubmitted' 'link' value in all versions up to, and including, 1.0.13 due to insufficient input sanitization and output escaping...

6.1CVSS6.3AI score0.00438EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 4:52 a.m.11 views

CVE-2023-46153

Unauth. Stored Cross-Site Scripting XSS vulnerability in UserFeedback Team User Feedback plugin = 1.0.9 versions...

7.1CVSS5.6AI score0.00354EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 4:41 a.m.13 views

CVE-2023-39308

Unauth. Stored Cross-Site Scripting XSS vulnerability in UserFeedback Team User Feedback plugin = 1.0.7 versions...

7.1CVSS5.6AI score0.00483EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/23 4:39 a.m.8 views

CVE-2023-26429

Control characters were not removed when exporting user feedback content. This allowed attackers to include unexpected content via user feedback and potentially break the exported data structure. We now drop all control characters that are not whitespace character during the export. No publicly...

5.3CVSS6.9AI score0.00794EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 6:13 a.m.6 views

CVE-2024-5902

The User Feedback – Create Interactive Feedback Form, User Surveys, and Polls in Seconds plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the name parameter in all versions up to, and including, 1.0.15 due to insufficient input sanitization and output escaping. This makes it...

7.2CVSS6.1AI score0.00395EPSS
Exploits0References1
Qualys Blog
Qualys Blog
added 2025/01/07 5:1 p.m.16 views

Secure, Efficient, Cost-Effective: How Qualys Patch Management Delivers ROI

As demonstrated by real user reviews from PeerSpot Organizations face increasing challenges in managing cyber threats and deploying the tools necessary to detect, protect, and mitigate vulnerabilities. Patch management, a critical component of cybersecurity, often falls victim to resource...

7.2AI score
Exploits0
NVD
NVD
added 2024/12/09 1:15 p.m.19 views

CVE-2023-50887

Missing Authorization vulnerability in Syed Balkhi User Feedback userfeedback-lite allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects User Feedback: from n/a through = 1.0.10...

5.3CVSS0.00485EPSS
Exploits0References1
CVE
CVE
added 2024/12/09 11:29 a.m.45 views

CVE-2023-50887

CVE-2023-50887 is a Missing Authorization (Broken Access Control) vulnerability in the WordPress plugin WordPress User Feedback (Lite) up to version 1.0.10. Public details in the provided documents describe unauthorized access due to incorrect access control configurations, affecting the User Fee...

5.3CVSS7.3AI score0.00485EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/12/09 11:29 a.m.25 views

CVE-2023-50887 WordPress User Feedback plugin <= 1.0.10 - Broken Access Control vulnerability

Missing Authorization vulnerability in Syed Balkhi User Feedback userfeedback-lite allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects User Feedback: from n/a through = 1.0.10...

5.3CVSS0.00485EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/12/09 11:29 a.m.14 views

CVE-2023-50887 WordPress User Feedback plugin <= 1.0.10 - Broken Access Control vulnerability

Missing Authorization vulnerability in Syed Balkhi User Feedback userfeedback-lite allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects User Feedback: from n/a through = 1.0.10...

5.3CVSS8.6AI score0.00485EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/12/09 12:0 a.m.4 views

WordPress plugin User Feedback 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation, a blogging platform developed in the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exists in WordPre...

5.3CVSS8.7AI score0.00485EPSS
Exploits0References1
GithubExploit
GithubExploit
added 2024/07/31 6:27 p.m.179 views

Exploit for Code Injection in Get-Simple Getsimple_Cms

CVE-2022-41544 Exploit Script This repository contains a scri...

9.8CVSS9.7AI score0.09442EPSS
Exploits12
Cvelist
Cvelist
added 2024/07/12 9:30 p.m.32 views

CVE-2024-5902 UserFeedback Lite <= 1.0.15 - Unauthenticated Stored Cross-Site Scripting via Name Parameter

The User Feedback – Create Interactive Feedback Form, User Surveys, and Polls in Seconds plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the name parameter in all versions up to, and including, 1.0.15 due to insufficient input sanitization and output escaping. This makes it...

7.2CVSS0.00395EPSS
Exploits0References2
Patchstack
Patchstack
added 2024/07/12 9:50 a.m.4 views

WordPress UserFeedback Lite plugin <= 1.0.15 - Unauthenticated Stored Cross-Site Scripting via Name Parameter vulnerability

Unauthenticated Stored Cross-Site Scripting via Name Parameter vulnerability discovered by zer0gh0st in WordPress Plugin User Feedback versions = 1.0.15...

7.2CVSS5.7AI score0.00395EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/07/12 12:0 a.m.12 views

WordPress User Feedback Plugin <= 1.0.15 is vulnerable to Cross Site Scripting (XSS)

Software User Feedback Type Plugin Vulnerable versions = 1.0.15 Fixed in 1.0.16 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-5902 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 8c5b5ac635dc Credits zer0gh0st Required...

7.2CVSS5.7AI score0.00395EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
added 2024/07/12 12:0 a.m.4 views

WordPress plugin User Feedback security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation, a blogging platform developed in the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exists in the WordPress...

7.2CVSS6.5AI score0.00395EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/07/12 12:0 a.m.8 views

PT-2024-37236 · WordPress · User Feedback – Create Interactive Feedback Form

Name of the Vulnerable Software and Affected Versions: User Feedback – Create Interactive Feedback Form, User Surveys, and Polls in Seconds plugin for WordPress versions up to, and including, 1.0.15 Description: The issue arises from insufficient input sanitization and output escaping, allowing...

7.2CVSS6.8AI score0.00395EPSS
Exploits0References8
Kitploit
Kitploit
added 2024/04/05 11:30 a.m.46 views

Attackgen - Cybersecurity Incident Response Testing Tool That Leverages The Power Of Large Language Models And The Comprehensive MITRE ATT&CK Framework

AttackGen is a cybersecurity incident response testing tool that leverages the power of large language models and the comprehensive MITRE ATT&CK framework. The tool generates tailored incident response scenarios based on user-selected threat actor groups and your organisation's details. Star the...

7.4AI score
Exploits0References3
Rows per page
Query Builder