Lucene search
K

8 matches found

Cvelist
Cvelist
added 2026/05/23 1:30 p.m.15 views

CVE-2026-9303 calcom cal.diy cross-site request forgery

A vulnerability was identified in calcom cal.diy up to 4.9.4. Impacted is an unknown function. The manipulation leads to cross-site request forgery. It is possible to initiate the attack remotely. The exploit is publicly available and might be used. The vendor was contacted early about this...

5.3CVSS0.00194EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2026/04/08 12:0 a.m.10 views

PT-2026-31121

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in PublishPress Post Expirator post-expirator allows DOM-Based XSS.This issue affects Post Expirator: from n/a through = 4.9.4...

5.9AI score0.00161EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/06/20 3:3 p.m.13 views

CVE-2025-52795 WordPress WP Front User Submit / Front Editor plugin <= 5.0.6 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in aharonyan WP Front User Submit / Front Editor front-editor allows Cross Site Request Forgery.This issue affects WP Front User Submit / Front Editor: from n/a through = 5.0.6...

7.1CVSS0.00132EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/06/20 12:0 a.m.2 views

WordPress plugin WP Front User Submit / Front Editor 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin. A cross-site request forge...

7.1CVSS6.5AI score0.00132EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:37 p.m.4 views

CVE-2021-35522

A Buffer Overflow in Thrift command handlers in IDEMIA Morpho Wave Compact and VisionPass devices before 2.6.2, Sigma devices before 4.9.4, and MA VP MD devices before 4.9.7 allows remote attackers to achieve code execution, denial of services, and information disclosure via TCP/IP packets...

9.8CVSS7.3AI score0.03657EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/04/22 12:0 a.m.2 views

RaidenMAILD Mail Server 安全漏洞

RaidenMAILD Mail Server is an easy-to-use SMTP/POP3/IMAP4/WebMail mail server from RaidenMAILD. A security vulnerability exists in RaidenMAILD Mail Server v.4.9.4 and earlier versions, which stems from a directory traversal vulnerability. The vulnerability can be exploited to obtain sensitive...

7.6CVSS6.4AI score0.0316EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/03/29 12:0 a.m.6 views

PT-2024-23428 · Unknown · Download Monitor

Name of the Vulnerable Software and Affected Versions: Download Monitor versions through 4.9.4 Description: The issue is related to an SQL Injection vulnerability due to improper neutralization of special elements used in an SQL command. This allows for potential exploitation by injecting malicio...

7.6CVSS8.5AI score0.00609EPSS
Exploits0References6
OSV
OSV
added 2020/01/09 10:15 p.m.7 views

UBUNTU-CVE-2020-5504

In phpMyAdmin 4 before 4.9.4 and 5 before 5.0.1, SQL injection exists in the user accounts page. A malicious user could inject custom SQL in place of their own username when creating queries to this page. An attacker must have a valid MySQL account to access the server...

8.8CVSS7.4AI score0.38778EPSS
Exploits4References7
Rows per page
Query Builder