Lucene search
K

42 matches found

CVE
CVE
added 2025/02/25 2:17 p.m.62 views

CVE-2025-26907

CVE-2025-26907 affects the Estatik Mortgage Calculator (WordPress plugin) with affected versions listed as

7.5CVSS7.2AI score0.00451EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/02/23 10:31 p.m.3 views

WordPress Estatik Mortgage Calculator plugin <= 2.0.12 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by João Pedro Soares de Alcântara Kinorth in WordPress Plugin Mortgage Calculator Estatik versions = 2.0.12...

7.5CVSS7AI score0.00451EPSS
Exploits0Affected Software1
OSV
OSV
added 2024/11/20 11:15 a.m.4 views

CVE-2024-10872

The Getwid – Gutenberg Blocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the template-post-custom-field block in all versions up to, and including, 2.0.12 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, wit...

5.4CVSS7.4AI score0.00306EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/11/20 12:0 a.m.2 views

WordPress plugin Getwid – Gutenberg Blocks 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL. WordPress plugin is an application plugin. A cross-site scripting vulnerabili...

6.4CVSS7.5AI score0.00306EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/11/20 12:0 a.m.5 views

PT-2024-16605 · WordPress · Getwid

Name of the Vulnerable Software and Affected Versions: Getwid – Gutenberg Blocks plugin for WordPress versions up to, and including, 2.0.12 Description: The issue is related to Stored Cross-Site Scripting via the template-post-custom-field block due to insufficient input sanitization and output...

6.4CVSS8AI score0.00306EPSS
Exploits0References9
CNNVD
CNNVD
added 2024/11/01 12:0 a.m.6 views

WordPress plugin Aruba HiSpeed Cache 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plug-in. A security vulnerability...

4.3CVSS6.6AI score0.00473EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/10/24 12:0 a.m.16 views

WordPress Futurio Extra Plugin <= 2.0.11 is vulnerable to Cross Site Scripting (XSS)

Software Futurio Extra Type Plugin Vulnerable versions = 2.0.11 Fixed in 2.0.12 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-50446 Patch priority Low CVSS severity Low 6.5 Developer FuturioWP PSID 570d24a78861 Credits João Pedro S Alcântara Kinorth Required...

6.5CVSS6.3AI score0.00239EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2024/04/25 2:26 a.m.4 views

WordPress PropertyHive plugin <= 2.0.12 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Post Deletion vulnerability

Missing Authorization to Authenticated Subscriber+ Arbitrary Post Deletion vulnerability discovered by Lucio Sá in WordPress Plugin PropertyHive versions = 2.0.12...

4.3CVSS7AI score0.00619EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2023/10/25 6:17 p.m.10 views

AZL-31746 CVE-2023-46316 affecting package traceroute for versions less than 2.1.3-1

In buc Traceroute 2.0.12 through 2.1.2 before 2.1.3, the wrapper scripts do not properly parse command lines...

5.5CVSS6.9AI score0.00367EPSS
Exploits2References1
OSV
OSV
added 2023/10/25 6:17 p.m.3 views

UBUNTU-CVE-2023-46316

In buc Traceroute 2.0.12 through 2.1.2 before 2.1.3, the wrapper scripts do not properly parse command lines...

5.5CVSS6.9AI score0.00367EPSS
Exploits2References5
Prion
Prion
added 2023/10/14 4:15 a.m.22 views

Cross site scripting

Multiple Stored Cross Site Scripting XSS vulnerabilities in Opart opartmultihtmlblock before version 2.0.12 and Opart multihtmlblock version 1.0.0, allows remote authenticated users to inject arbitrary web script or HTML via the bodytext or bodytextrude field in /sourcefiles/BlockhtmlClass.php an...

4.9CVSS5.2AI score0.00388EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2022/10/17 12:0 a.m.4 views

go-admin 信任管理问题漏洞

go-admin is go-admin-team open source based on Gin + Vue + Element UI front-end and back-end separation of permissions management system . A security vulnerability exists in go-admin also known as GO Admin version 2.0.12, which originated from its use of the string "go-admin" as the production...

9.8CVSS8.3AI score0.00764EPSS
Exploits1References2
CNVD
CNVD
added 2017/07/28 12:0 a.m.3 views

JasPer 'jpc_dec.c' Null Pointer Reference Denial of Service Vulnerability

JasPer is a Canadian software developer Michael Adams developed an open source implementation of the JPEG-2000 codec. A security vulnerability exists in the 'jp2encode' function in JasPer version 2.0.12. An attacker could exploit this vulnerability to cause a denial of service...

7.5CVSS6.7AI score0.03251EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2017/05/05 12:0 a.m.64 views

SUSE SLES11 Security Update : wireshark (SUSE-SU-2017:1174-1)

Wireshark was updated to version 2.0.12, which brings several new features, enhancements and bug fixes. These security issues were fixed : - CVE-2017-7700: In Wireshark the NetScaler file parser could go into an infinite loop, triggered by a malformed capture file. This was addressed in...

7.8CVSS7.2AI score0.03284EPSS
Exploits0References72
Slackware Linux
Slackware Linux
added 2011/03/09 2:8 p.m.15 views

[slackware-security] seamonkey

New seamonkey packages are available for Slackware 12.2, 13.0, 13.1, and -current to fix security issues. Here are the details from the Slackware 13.1 ChangeLog: patches/packages/seamonkey-2.0.12-i486-1slack13.1.txz: Upgraded. This release fixes some more security vulnerabilities. For more...

6.9AI score
Exploits0
Packet Storm
Packet Storm
added 2005/11/30 12:0 a.m.45 views

pmwikiXSS.txt

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SA0005 +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ +++++ PmWiki 2.0.12 Cross Site Scripting +++++ +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ PUBLISHED ON Nov 22, 2005 PUBLISHED AT...

7.4AI score
Exploits0
OpenVAS
OpenVAS
added 2005/11/03 12:0 a.m.18 views

phpBB Fetch All < 2.0.12 SQLi Vulnerability

phpBB Fetch All is prone to a SQL injection SQLi vulnerability. SPDX-FileCopyrightText: 2004 David Maciejak Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:phpbb:phpbb";...

5.9AI score
Exploits0References3
seebug.org
seebug.org
added 2005/03/05 12:0 a.m.19 views

phpBB &lt;= 2.0.12 Session Handling Authentication Bypass (tutorial)

No description provided by source. 1. Register at forum? 2. Log in with account + UNCHECK "Log in automatically" 3. Close browser to be sure a cookie is made. 4. Locate cookie firefox: X:\Documents and Settings\Name\Application Data\Mozilla\Firefox\Profiles\profile.default\cookies.txt -- search t...

7.1AI score
Exploits0
securityvulns
securityvulns
added 2005/03/05 12:0 a.m.24 views

phpBB 2.0.12 Session Handling Administrator Authentication Bypass -SIMPLIFIED-

----------------------------------- phpBB 2.0.12 Session Handling Administrator Authentication Bypass EXPLOIT -SIMPLIFIED- - By PPC^Rebyte ----------------------------------- 03maa2005 NEDERLANDSE VERSIE ONDERAAN / DUTCH VERSION BELOW ENGLISH VERSION Status phpBB has already been informed about...

7.1AI score
Exploits0
securityvulns
securityvulns
added 2005/02/28 12:0 a.m.28 views

[SA14413] phpBB &quot;autologinid&quot; Security Bypass

---------------------------------------------------------------------- Monitor, Filter, and Manage Security Information - Filtering and Management of Secunia advisories - Overview, documentation, and detailed reports - Alerting via email and SMS Request Trial: https://ca.secunia.com/?f=l...

0.7AI score
Exploits0
Rows per page
Query Builder