Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

RedhatCVE
RedhatCVEadded 2025/05/23 7:20 a.m.6 views

CVE-2024-44008

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Dylan Kuhn Geo Mashup geo-mashup allows Stored XSS.This issue affects Geo Mashup: from n/a through = 1.13.12...

6.5CVSS5.9AI score0.00469EPSS
Exploits0References1
CNNVD
CNNVDadded 2024/09/17 12:0 a.m.2 views

WordPress plugin Geo Mashup 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

6.5CVSS6AI score0.00469EPSS
Exploits0References3
Patchstack
Patchstackadded 2024/09/16 8:6 p.m.4 views

WordPress Geo Mashup plugin <= 1.13.12 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by LVT-tholv2k Patchstack Alliance in WordPress Plugin Geo Mashup versions = 1.13.12...

6.5CVSS6.1AI score0.00469EPSS
Exploits0Affected Software1
Patchstack
Patchstackadded 2024/09/16 12:0 a.m.9 views

WordPress Geo Mashup Plugin <= 1.13.12 is vulnerable to Cross Site Scripting (XSS)

Software Geo Mashup Type Plugin Vulnerable versions = 1.13.12 Fixed in 1.13.13 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-44008 Patch priority Low CVSS severity Low 6.5 Developer Dylan Kuhn PSID d830e975a22f Credits LVT-tholv2k Required privilege Contributor...

6.5CVSS6.6AI score0.00469EPSS
Exploits0References2Affected Software1
CNVD
CNVDadded 2019/06/14 12:0 a.m.1 views

dbus authentication bypass vulnerability

D-Bus is an inter-process communication mechanism provided by the freedesktop.org project and distributed under the GPL license. An authentication bypass vulnerability exists in dbus versions prior to 1.10.28, 1.12.x prior to 1.12.16, and 1.13.x prior to 1.13.12 in Ubuntu. The vulnerability stems...

7.1CVSS9.5AI score0.00046EPSS
Exploits0References1
CNVD
CNVDadded 2017/11/25 12:0 a.m.1 views

WordPress UpdraftPlus Plugin Server-Side Request Forgery Vulnerability

WordPress is the WordPress Software Foundation's set of blogging platform developed using the PHP language, the platform supports personal blog sites set up on PHP and MySQL servers.UpdraftPlus plugin is used in one of the WordPress backup plugin. WordPress UpdraftPlus plugin 1.13.12 and earlier...

8.1CVSS6.7AI score0.00383EPSS
Exploits1References1
Positive Technologies
Positive Technologiesadded 2017/11/17 12:0 a.m.2 views

PT-2017-14607 · WordPress · Updraftplus

Name of the Vulnerable Software and Affected Versions: UpdraftPlus plugin versions 1.13.12 and earlier Description: The issue concerns a Server-Side Request Forgery SSRF in the updraft ajax handler function, located in /wp-content/plugins/updraftplus/admin.php, which can be exploited via an httpg...

8.1CVSS8.2AI score0.00383EPSS
Exploits1References4
Positive Technologies
Positive Technologiesadded 2017/11/17 12:0 a.m.2 views

PT-2017-14608 · WordPress · Updraftplus

Name of the Vulnerable Software and Affected Versions: UpdraftPlus plugin versions 1.13.12 and earlier Description: The issue allows remote PHP code execution due to a race condition in the plupload action function before deleting a file associated with the name parameter in...

8.1CVSS8.4AI score0.01062EPSS
Exploits1References4
Rows per page
Query Builder