Lucene search
K

9 matches found

CNNVD
CNNVD
added 2026/03/05 12:0 a.m.6 views

WordPress plugin FlashMart 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

8.1CVSS5.8AI score0.00415EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2026/01/06 12:27 a.m.6 views

SUSE CVE-2025-34430

1Panel versions 1.10.33 through 2.0.15 contain a cross-site request forgery CSRF vulnerability in the panel name management functionality. The affected endpoint does not implement CSRF defenses such as anti-CSRF tokens or Origin/Referer validation. An attacker can craft a malicious webpage that...

5.1CVSS7.1AI score0.00172EPSS
Exploits0References2
EUVD
EUVD
added 2025/12/10 9:31 p.m.3 views

EUVD-2025-202556

1Panel contains a cross-site request forgery CSRF vulnerability in the panel name management functionality...

5.1CVSS6.4AI score0.00172EPSS
Exploits0References4
OSV
OSV
added 2025/12/10 9:31 p.m.2 views

GHSA-5XPQ-2VMC-5CQP 1Panel contains a cross-site request forgery (CSRF) vulnerability in the panel name management functionality

1Panel versions 1.10.33 through 2.0.15 contain a cross-site request forgery CSRF vulnerability in the panel name management functionality. The affected endpoint does not implement CSRF defenses such as anti-CSRF tokens or Origin/Referer validation. An attacker can craft a malicious webpage that...

5.1CVSS6.9AI score0.00172EPSS
Exploits0References5
Cvelist
Cvelist
added 2025/08/20 8:3 a.m.10 views

CVE-2025-53993 WordPress JetPopup plugin <= 2.0.15 - Sensitive Data Exposure vulnerability

Insertion of Sensitive Information Into Sent Data vulnerability in Crocoblock JetPopup jet-popup allows Retrieve Embedded Sensitive Data.This issue affects JetPopup: from n/a through = 2.0.15...

6.5CVSS0.00321EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/07/18 10:59 a.m.5 views

CVE-2025-53994

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Crocoblock JetPopup jet-popup allows DOM-Based XSS.This issue affects JetPopup: from n/a through = 2.0.15...

6.5CVSS5.9AI score0.00204EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/02/04 12:0 a.m.4 views

PT-2025-2208 · Social · Socialv

Name of the Vulnerable Software and Affected Versions: SocialV - Social Network and Community BuddyPress Theme versions up to, and including, 2.0.15 Description: The issue is related to unauthorized access of data due to a missing capability check on the socialv send download file function. This...

6.5CVSS9.4AI score0.00358EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2024/12/13 12:0 a.m.4 views

PT-2024-12568 · Unknown · Wpthemego Sw Product Bundles

Name of the Vulnerable Software and Affected Versions: wpthemego SW Product Bundles versions 2.0.15 and earlier Description: The issue is related to a Missing Authorization vulnerability, which allows exploiting incorrectly configured access control security levels. Recommendations: For versions...

5.4CVSS9.4AI score0.00549EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/10/28 12:0 a.m.3 views

WordPress plugin Cozy Blocks 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

7.4CVSS6.1AI score0.00271EPSS
Exploits0References1
Rows per page
Query Builder