Lucene search
K

103 matches found

OSV
OSV
added 2026/07/02 12:0 a.m.3 views

OPENSUSE-SU-2026:11174-1 gzip-1.14-2.1 on GA media

These are all security issues fixed in the gzip-1.14-2.1 package on the GA media of openSUSE Tumbleweed...

4.7CVSS5.9AI score0.00105EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/16 8:57 p.m.20 views

CVE-2025-69150 WordPress Medeus theme <= 1.14 - Local File Inclusion vulnerability

Unauthenticated Local File Inclusion in Medeus = 1.14 versions...

8.1CVSS0.00435EPSS
Exploits0References1
OSV
OSV
added 2026/06/08 12:53 p.m.4 views

CLEANSTART-2026-GM77447 Security fixes for CVE-2026-25680, CVE-2026-25681, CVE-2026-27136, CVE-2026-27145, CVE-2026-39821, CVE-2026-39824, CVE-2026-42502, CVE-2026-42504, CVE-2026-42506, CVE-2026-42507 applied in versions: 1.14.5-r1

Multiple security vulnerabilities affect the ingress-nginx-controller-1.14 package. These issues are resolved in later releases. See references for individual vulnerability details...

9.6CVSS5.8AI score0.00939EPSS
Exploits0References21
EUVD
EUVD
added 2026/03/05 6:30 a.m.7 views

EUVD-2026-9684

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeREX Foodie foodie allows PHP Local File Inclusion.This issue affects Foodie: from n/a through = 1.14...

5.9AI score0.00403EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/03/05 12:0 a.m.13 views

PT-2026-23397

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Midi midi allows PHP Local File Inclusion.This issue affects Midi: from n/a through = 1.14...

5.9AI score0.00327EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/19 12:0 a.m.5 views

MiracleLinux 7 : rh-nginx114-nginx-1.14.1-1.1.0.1.el7.AXS7, rh-nginx114-1.14-6.el7 (AXSA:2021-1753:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-1753:01 advisory. HTTP/2: large amount of data request leads to denial of service CVE-2019-9511 HTTP/2: flood using PRIORITY frames resulting in excessive resource...

7.8CVSS7.5AI score0.82017EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/12/31 4:6 p.m.25 views

CVE-2025-63004 WordPress All in One Accessibility plugin <= 1.15 - Broken Access Control vulnerability

Missing Authorization vulnerability in Skynet Technologies USA LLC All in One Accessibility all-in-one-accessibility allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects All in One Accessibility: from n/a through = 1.15...

4.3CVSS0.00155EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/12/31 12:0 a.m.5 views

WordPress plugin All in One Accessibility 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security vulnerabili...

4.3CVSS6.5AI score0.00155EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/12/31 12:0 a.m.6 views

PT-2025-54383

Missing Authorization vulnerability in Skynet Technologies USA LLC All in One Accessibility allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects All in One Accessibility: from n/a through 1.14...

4.3CVSS6.9AI score0.00155EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2007-0541

Malware in sbrugna...

9.4CVSS6.4AI score0.01625EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2002-0284

Malware in sbrugna...

10CVSS6.4AI score0.02427EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-5385

Malicious code in bioql PyPI...

6.1CVSS6.5AI score0.01286EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-52332

Malicious code in bioql PyPI...

7.1CVSS8.7AI score0.00161EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/09/24 6:30 p.m.4 views

CVE-2025-57901

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in DAEXT Import Markdown allows Stored XSS. This issue affects Import Markdown: from n/a through 1.14...

6.5CVSS5.9AI score0.00039EPSS
Exploits0References1
NVD
NVD
added 2025/09/22 7:15 p.m.4 views

CVE-2025-57901

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

0.00039EPSS
Exploits0
CVE
CVE
added 2025/09/22 6:25 p.m.11 views

CVE-2025-57901

CVE-2025-57901 is listed in connected sources as relating to Import Markdown – Versatile Markdown Importer for WordPress. The connected entry indicates a vulnerability described as an authenticated (Contributor+) Stored Cross-Site Scripting (XSS) via the Markdown import process. In practical term...

5.6AI score0.00039EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2025/09/22 12:0 a.m.5 views

PT-2025-39011

Name of the Vulnerable Software and Affected Versions DAEXT Import Markdown versions through 1.14 Description The software contains a flaw due to improper handling of user-supplied data when creating web pages, leading to a Stored Cross-Site Scripting XSS condition. This allows an attacker to...

6.5CVSS5.4AI score0.00039EPSS
Exploits0References3
CVE
CVE
added 2025/09/06 3:22 a.m.27 views

CVE-2025-9493

CVE-2025-9493 describes a Stored Cross-Site Scripting vulnerability in the WordPress plugin Admin Menu Editor. The root cause is insufficient input sanitization and output escaping for the placeholder parameter, enabling an authenticated attacker with Author-level access or higher to inject scrip...

6.4CVSS4.7AI score0.00223EPSS
Exploits0References4
Patchstack
Patchstack
added 2025/09/06 12:12 a.m.9 views

WordPress Admin Menu Editor plugin <= 1.14 - Authenticated (Contributor+) Stored Cross-Site Scripting via placeholder Parameter vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via placeholder Parameter vulnerability discovered by Muhammad Yudha - DJ in WordPress Plugin Admin Menu Editor versions = 1.14...

6.4CVSS5.6AI score0.00223EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2025/09/05 10:27 a.m.7 views

WordPress Toggles Shortcode and Widget plugin <= 1.14 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by SOPROBRO in WordPress Plugin Toggles Shortcode and Widget versions = 1.14...

7.1CVSS6.1AI score0.00257EPSS
Exploits0Affected Software1
Rows per page
Query Builder