Lucene search
K

10 matches found

ATTACKERKB
ATTACKERKB
added 2025/06/06 1:15 p.m.3 views

CVE-2025-30958

Missing Authorization vulnerability in onOffice GmbH onOffice for WP-Websites onoffice-for-wp-websites allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects onOffice for WP-Websites: from n/a through = 6.5.1...

5.4CVSS5.9AI score0.00296EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/12/09 12:0 a.m.4 views

PT-2024-13637 · Unknown · Easy Social Feed

Name of the Vulnerable Software and Affected Versions: Easy Social Feed versions through 6.5.1 Description: The issue is related to a Missing Authorization vulnerability, which allows exploiting incorrectly configured access control security levels. Recommendations: For versions through 6.5.1,...

4.3CVSS9.4AI score0.00409EPSS
Exploits0References4
OSV
OSV
added 2024/10/29 10:15 a.m.2 views

CVE-2024-50550

Incorrect Privilege Assignment vulnerability in LiteSpeed Technologies LiteSpeed Cache allows Privilege Escalation.This issue affects LiteSpeed Cache: from n/a through 6.5.1...

9.8CVSS7.5AI score0.00913EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/10/29 12:0 a.m.4 views

WordPress plugin LiteSpeed Cache 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

9.8CVSS8.8AI score0.00913EPSS
Exploits0References1
OSV
OSV
added 2023/06/22 8:15 a.m.3 views

CVE-2023-27612

Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Paul Ryley Site Reviews plugin = 6.5.1 versions...

5.4CVSS5.8AI score0.00401EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/05/28 12:0 a.m.2 views

Qt 安全漏洞

Qt is a cross-platform C++ application development framework from the Norwegian company Qt. It is widely used to develop GUI programs, in which case it is also known as the widget toolkit. Can also be used to develop non-GUI programs, such as console tools and servers. A security vulnerability...

7.5CVSS7.4AI score0.01287EPSS
Exploits0References8
OSV
OSV
added 2021/02/06 2:15 a.m.4 views

CVE-2021-22298

There is a logic vulnerability in Huawei Gauss100 OLTP Product. An attacker with certain permissions could perform specific SQL statement to exploit this vulnerability. Due to insufficient security design, successful exploit can cause service abnormal. Affected product versions include: ManageOne...

6.5CVSS7AI score0.00913EPSS
Exploits0References2
OSV
OSV
added 2020/12/01 12:15 a.m.4 views

CVE-2020-9116

Huawei FusionCompute versions 6.5.1 and 8.0.0 have a command injection vulnerability. An authenticated, remote attacker can craft specific request to exploit this vulnerability. Due to insufficient verification, this could be exploited to cause the attackers to obtain higher privilege...

7.2CVSS5.8AI score0.01023EPSS
Exploits0References1
CNVD
CNVD
added 2020/12/01 12:0 a.m.5 views

Huawei FusionCompute Command Injection Vulnerability (CNVD-2020-68551)

FusionCompute is Huawei's self-developed computing virtualization software. A command injection vulnerability exists in FusionCompute 6.5.1, 8.0.0. The vulnerability stems from insufficient authentication. An attacker can exploit the vulnerability to gain higher privileges via a specially crafted...

7.2CVSS7.9AI score0.01023EPSS
Exploits0References1
CNVD
CNVD
added 2020/12/01 12:0 a.m.3 views

Huawei FusionCompute Elevation of Privilege Vulnerability

FusionCompute is Huawei's self-developed computing virtualization software. An elevation of privilege vulnerability exists in FusionCompute 6.3.0, 6.3.1, 6.5.0, 6.5.1, 8.0.0. The vulnerability stems from improper privilege management. An attacker with normal privileges could exploit the...

7.8CVSS7.3AI score0.00216EPSS
Exploits0References1
Rows per page
Query Builder