Lucene search
K

389 matches found

NVD
NVD
added 2024/05/14 3:38 p.m.13 views

CVE-2024-33953

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Matt van Andel Adventure Journal allows Stored XSS.This issue affects Adventure Journal: from n/a through 1.7.2...

6.5CVSS6.7AI score0.00408EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/05/02 11:21 a.m.20 views

CVE-2024-33953 WordPress Adventure Journal theme <= 1.7.2 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Matt van Andel Adventure Journal allows Stored XSS.This issue affects Adventure Journal: from n/a through 1.7.2...

6.5CVSS6.9AI score0.00408EPSS
Exploits0References1
OSV
OSV
added 2024/04/22 9:25 a.m.6 views

USN-6744-1 pillow vulnerability

Hugo van Kemenade discovered that Pillow was not properly performing bounds checks when processing an ICC file, which could lead to a buffer overflow. If a user or automated system were tricked into processing a specially crafted ICC file, an attacker could possibly use this issue to cause a deni...

6.7CVSS6.9AI score0.00989EPSS
Exploits0References2
NVD
NVD
added 2024/04/17 11:15 a.m.18 views

CVE-2023-51418

Missing Authorization vulnerability in Joris van Montfort JVM rich text icons.This issue affects JVM rich text icons: from n/a through 1.2.6...

7.7CVSS7.6AI score0.00468EPSS
Exploits0References1
Intel
Intel
added 2024/02/13 12:0 a.m.26 views

Intel® SGX DCAP Software Advisory

Summary: A potential security vulnerability in some Intel® Software Guard Extensions SGX Data Center Attestation Primitives DCAP software may allow information disclosure. Intel is releasing software updates to mitigate this potential vulnerability. Vulnerability Details: CVEID: CVE-2023-42776...

5.5CVSS4.3AI score0.00216EPSS
Exploits0
CNNVD
CNNVD
added 2024/01/26 12:0 a.m.5 views

TemporAI Code Issue Vulnerability

TemporAI is a machine learning-centered medical time series library open-sourced by vanderSchaar LAB. A code issue vulnerability exists in vanderSchaar LAB TemporAI version 0.0.3, which stems from an incorrect operation that can lead to deserialization...

8.8CVSS7AI score0.00668EPSS
Exploits0References5
NVD
NVD
added 2024/01/08 9:15 p.m.16 views

CVE-2023-52198

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Michiel van Eerd Private Google Calendars allows Stored XSS.This issue affects Private Google Calendars: from n/a through 20231125...

6.5CVSS6.4AI score0.00309EPSS
Exploits0References1
Prion
Prion
added 2024/01/08 9:15 p.m.17 views

Cross site scripting

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Michiel van Eerd Private Google Calendars allows Stored XSS.This issue affects Private Google Calendars: from n/a through 20231125...

4.9CVSS6.9AI score0.00309EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/01/08 8:20 p.m.13 views

CVE-2023-52198 WordPress Private Google Calendars Plugin <= 20231125 is vulnerable to Cross Site Scripting (XSS)

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Michiel van Eerd Private Google Calendars allows Stored XSS.This issue affects Private Google Calendars: from n/a through 20231125...

6.5CVSS6.6AI score0.00309EPSS
Exploits0References1
CVE
CVE
added 2024/01/08 8:20 p.m.51 views

CVE-2023-52198

CVE-2023-52198 affects Private Google Calendars WordPress plugin. The issue is an improper neutralization of input in web page generation, enabling stored XSS (stored cross-site scripting) for versions up to 20231125. Patchstack notes the vulnerability as CVE-2023-52198 with a fix released on 202...

6.5CVSS6.7AI score0.00309EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2023/12/29 2:15 p.m.17 views

Unrestricted file upload

Unrestricted Upload of File with Dangerous Type vulnerability in Joris van Montfort JVM Gutenberg Rich Text Icons.This issue affects JVM Gutenberg Rich Text Icons: from n/a through 1.2.3...

6.5CVSS7.2AI score0.00606EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/12/29 1:44 p.m.55 views

CVE-2023-51417

CVE-2023-51417 : Unrestricted Upload of File with Dangerous Type in JVM Gutenberg Rich Text Icons (JVM Gutenberg Rich Text Icons). Reported as affecting versions up to 1.2.3. Root cause: unrestricted file uploads of dangerous types. Impact (per sources): high confidentiality, integrity, and avail...

9.9CVSS8.5AI score0.00606EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/12/29 1:44 p.m.30 views

CVE-2023-51417 WordPress JVM rich text icons Plugin <= 1.2.3 is vulnerable to Arbitrary File Upload

Unrestricted Upload of File with Dangerous Type vulnerability in Joris van Montfort JVM Gutenberg Rich Text Icons.This issue affects JVM Gutenberg Rich Text Icons: from n/a through 1.2.3...

9.9CVSS9.7AI score0.00606EPSS
Exploits0References1
NVD
NVD
added 2023/12/20 3:15 p.m.32 views

CVE-2023-32590

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Daniel Söderström / Sidney van de Stouwe Subscribe to Category.This issue affects Subscribe to Category: from n/a through 2.7.4...

9.3CVSS0.01646EPSS
Exploits1References1
Prion
Prion
added 2023/12/20 3:15 p.m.20 views

Sql injection

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Daniel Söderström / Sidney van de Stouwe Subscribe to Category.This issue affects Subscribe to Category: from n/a through 2.7.4...

5CVSS7.9AI score0.01646EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2023/12/20 3:2 p.m.45 views

CVE-2023-32590

CVE-2023-32590 affects WordPress Subscribe to Category plugin versions

9.3CVSS8AI score0.01646EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2023/12/20 3:2 p.m.34 views

CVE-2023-32590 WordPress Subscribe to Category Plugin <= 2.7.4 is vulnerable to SQL Injection

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Daniel Söderström / Sidney van de Stouwe Subscribe to Category.This issue affects Subscribe to Category: from n/a through 2.7.4...

9.3CVSS9.7AI score0.01646EPSS
Exploits1References1
Openbugbounty
Openbugbounty
added 2023/12/07 8:17 p.m.3 views

nicolinevanwonderen.com Improper Access Control vulnerability OBB-3805953

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

7AI score
Exploits0
NVD
NVD
added 2023/11/06 9:15 a.m.16 views

CVE-2023-38382

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Daniel Söderström / Sidney van de Stouwe Subscribe to Category allows SQL Injection.This issue affects Subscribe to Category: from n/a through 2.7.4...

9.8CVSS9.8AI score0.00585EPSS
Exploits1References1
Prion
Prion
added 2023/11/06 9:15 a.m.11 views

Sql injection

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Daniel Söderström / Sidney van de Stouwe Subscribe to Category allows SQL Injection.This issue affects Subscribe to Category: from n/a through 2.7.4...

7.5CVSS7.8AI score0.00585EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder