Lucene search
K

7 matches found

Patchstack
Patchstack
added 2025/12/25 6:54 p.m.6 views

WordPress Fast User Switching plugin <= 1.4.10 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Nabil Irawan in WordPress Plugin Fast User Switching versions = 1.4.10...

8.8CVSS6.8AI score0.00109EPSS
Exploits0Affected Software1
Positive Technologies
Positive Technologies
added 2025/12/24 12:0 a.m.5 views

PT-2025-53271

Name of the Vulnerable Software and Affected Versions Tikweb Management Fast User Switching versions through 1.4.10 Description A Cross-Site Request Forgery CSRF issue exists in the Fast User Switching functionality. This allows attackers to perform actions on behalf of authenticated users withou...

8.8CVSS6.3AI score0.00109EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-28414

Malicious code in bioql PyPI...

7.6CVSS8.6AI score0.00515EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/03/29 12:0 a.m.11 views

PT-2024-23420 · Alibaba · Oss Aliyun

Name of the Vulnerable Software and Affected Versions: OSS Aliyun versions 1.4.10 and earlier Description: The issue is related to an SQL Injection vulnerability due to improper neutralization of special elements used in an SQL command. This allows for potential exploitation by injecting maliciou...

7.6CVSS9.8AI score0.00515EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2022/04/19 9:15 p.m.4 views

CVE-2022-21404

Vulnerability in the Helidon product of Oracle Fusion Middleware component: Reactive WebServer. Supported versions that are affected are 1.4.10 and 2.0.0-RC1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTP to compromise Helidon. Successful attacks ...

8.1CVSS6.9AI score0.01812EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2022/03/29 12:0 a.m.5 views

PT-2022-18836 · Jenkins · Jenkins Rocketchat Notifier Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins RocketChat Notifier Plugin versions 1.4.10 and earlier Description: A cross-site request forgery CSRF vulnerability allows attackers to connect to an attacker-specified URL using attacker-specified credentials. This issue arises becau...

4.3CVSS4.4AI score0.00583EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2020/11/17 12:0 a.m.6 views

PT-2020-6223 · Pear +6 · Archive Tar +6

Name of the Vulnerable Software and Affected Versions: Archive Tar versions 1.4.10 and earlier Description: The issue is related to the deserialization of untrusted data in the Archive Tar class of the PEAR PHP library. It allows a remote attacker to overwrite protected files using a specially...

8.8CVSS7.8AI score0.84554EPSS
Exploits5References104
Rows per page
Query Builder