Lucene search
K

8 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 12:30 p.m.5 views

CVE-2023-40833

An issue in Thecosy IceCMS v.1.0.0 allows a remote attacker to gain privileges via the Id and key parameters in getCosSetting...

9.8CVSS7.3AI score0.00719EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 2:12 a.m.12 views

CVE-2023-3707

The ActivityPub WordPress plugin before 1.0.0 does not ensure that post contents to be displayed are public and belong to the plugin, allowing any authenticated user, such as subscriber to retrieve the content of arbitrary post such as draft and private via an IDOR vector. Password protected post...

4.3CVSS5.9AI score0.00468EPSS
Exploits2References1
Cvelist
Cvelist
added 2024/12/16 2:31 p.m.24 views

CVE-2024-55981 WordPress Nabz Image Gallery plugin <= v1.00 - SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Nabajit Roy Nabz Image Gallery nabz-image-gallery allows SQL Injection.This issue affects Nabz Image Gallery: from n/a through = v1.00...

9.3CVSS0.00956EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/12/16 2:14 p.m.24 views

CVE-2024-54443 WordPress Advanced Data Table For Elementor plugin <= 1.0.0 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in PluginsCafe Advanced Data Table For Elementor advanced-data-table-for-elementor allows Stored XSS.This issue affects Advanced Data Table For Elementor: from n/a through = 1.0.0...

6.5CVSS0.00354EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/12/04 12:0 a.m.14 views

CVE-2024-52676

Itsourcecode Online Discussion Forum Project v.1.0.0 is vulnerable to Cross Site Scripting XSS via /bccforum/members/home.php...

6.1AI score0.00261EPSS
Exploits1References1
CNVD
CNVD
added 2023/06/07 12:0 a.m.5 views

miniCal Cross-Site Scripting Vulnerability

miniCal is miniCal open source an open source PMS. miniCal version 1.0.0 cross-site scripting vulnerability can be exploited by an attacker to execute arbitrary Web script or HTML by injecting a carefully crafted payload...

5.4CVSS6.3AI score0.00548EPSS
Exploits2References1
CNNVD
CNNVD
added 2023/06/05 12:0 a.m.3 views

Zyxel NR7101 安全漏洞

The Zyxel NR7101 is a router from Hopkins Zyxel. A security vulnerability exists in versions prior to Zyxel NR7101 V1.00ABUV.8C0. An attacker could exploit this vulnerability to cause a system denial of service by sending a specially crafted HTTP request to a vulnerable device...

6.5CVSS6.9AI score0.01016EPSS
Exploits0References2
vulnersOsv
vulnersOsv
added 2023/04/21 1:15 p.m.4 views

modoboa-automua (=1.0.0) potentially affected by CVE-2023-2227 via modoboa (=1.17.0)

modoboa PYPI version =1.17.0 is affected by a known vulnerability. The following packages have a transitive dependency on modoboa and may be impacted: - modoboa-automua =1.0.0 Source cves: CVE-2023-2227 Source advisory: OSV:PYSEC-2023-35...

9.1CVSS7.2AI score0.43756EPSS
Exploits1
Rows per page
Query Builder