Lucene search
K

10 matches found

EUVD
EUVD
added 2026/06/17 6:35 p.m.9 views

EUVD-2026-37624

Unauthenticated Cross Site Scripting XSS in WPFunnels Pro = 2.9.4 versions...

7.1CVSS5.1AI score0.00186EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/05/19 7:44 a.m.18 views

Important: Red Hat Security Advisory: Assisted Installer RHEL 9 components for Multicluster Engine for Kubernetes 2.9.4

Assisted installer RHEL 9 components for the multicluster engine for Kubernetes 2.9.4 General Availability release, with updates to container images. Assisted Installer RHEL 9 integrates components for the general multicluster engine for Kubernetes 2.9.4 release that simplify the process of...

9.1CVSS6.8AI score0.01557EPSS
Exploits1References4
NVD
NVD
added 2025/09/10 5:15 a.m.7 views

CVE-2025-8388

The PowerPack Elementor Addons Free Widgets, Extensions and Templates plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘cursorurl’ parameter in all versions up to, and including, 2.9.4 due to insufficient input sanitization and output escaping. This makes it possible for...

6.4CVSS0.00216EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/22 8:53 p.m.4 views

CVE-2021-37478

In NavigateCMS version 2.9.4 and below, function block is vulnerable to sql injection on parameter block-order, which results in arbitrary sql query execution in the backend database...

9.8CVSS7.5AI score0.02162EPSS
Exploits1References1
Patchstack
Patchstack
added 2024/07/22 1:32 p.m.4 views

WordPress ListingPro theme <= 2.9.4 - Unauthenticated SQL Injection vulnerability

Unauthenticated SQL Injection vulnerability discovered by Rafie Muhammad Patchstack in WordPress Theme ListingPro versions = 2.9.4...

9.8CVSS8.1AI score0.00462EPSS
Exploits0Affected Software1
Positive Technologies
Positive Technologies
added 2024/04/12 12:0 a.m.5 views

PT-2024-23907 · Unknown · Aerin Loan Repayment Calculator/Application Form

Name of the Vulnerable Software and Affected Versions: aerin Loan Repayment Calculator and Application Form versions 2.9.4 and earlier Description: The issue is a Cross-Site Request Forgery CSRF vulnerability. This type of vulnerability allows an attacker to trick a user into performing unintende...

5.4CVSS9.3AI score0.00197EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2023/10/24 12:59 a.m.8 views

SUSE CVE-2023-45805

pdm is a Python package and dependency manager supporting the latest PEP standards. It's possible to craft a malicious pdm.lock file that could allow e.g. an insider or a malicious open source project to appear to depend on a trusted PyPI project, but actually install another project. A project f...

7.8CVSS7.8AI score0.00512EPSS
Exploits1References3
OSV
OSV
added 2023/10/20 7:15 p.m.4 views

DEBIAN-CVE-2023-45805

pdm is a Python package and dependency manager supporting the latest PEP standards. It's possible to craft a malicious pdm.lock file that could allow e.g. an insider or a malicious open source project to appear to depend on a trusted PyPI project, but actually install another project. A project f...

7.8CVSS8AI score0.00512EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2023/01/08 12:0 a.m.5 views

PT-2023-11358 · Unknown · Happyman Twmap

Name of the Vulnerable Software and Affected Versions: happyman twmap versions prior to v2.9 v4.31 Description: A critical issue was found in happyman twmap, affecting an unknown functionality of the file twmap3/data/ajaxCRUD/pointdata2.php. The manipulation of the id argument leads to sql...

9.8CVSS6.1AI score0.00644EPSS
Exploits0References9
CNVD
CNVD
added 2018/01/31 12:0 a.m.3 views

Electrum Python Console Bitcoin Theft Vulnerability

Electrum is a lightweight bitcoin client software. python console is one of the python console programs. A security vulnerability exists in the Python console in Electrum versions 2.9.4 and earlier and versions 3.x through 3.0.5. An attacker can exploit this vulnerability to steal bitcoins with t...

7.8CVSS6.8AI score0.00483EPSS
Exploits1References1
Rows per page
Query Builder