Lucene search
K

7 matches found

vulnersOsv
vulnersOsv
added 2026/05/11 4:17 p.m.19 views

11x-wagtail-blog (>=0.0.0 <=0.2.0), adede (=4.1.0) +202 more potentially affected by CVE-2026-44201 via wagtail (>=1.0.0 <=7.0.0)

wagtail PYPI version =1.0.0, =0.0.0, =0.57.1, =0.1.0a0.dev0, =4.1.0, =4.3.0, =2.28.0, =0.5.0, =0.3.1, =6.3.8 and more Source cves: CVE-2026-44201 Source advisory: OSV:PYSEC-2026-150...

5.3CVSS5.7AI score0.00256EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2026/03/05 3:49 p.m.4 views

CVE-2026-30790

...

5.8AI score0.00225EPSS
Exploits0
Patchstack
Patchstack
added 2025/09/09 5:8 p.m.4 views

WordPress Additional Custom Product Tabs for WooCommerce Plugin <= 1.7.3 - Cross Site Scripting (XSS) Vulnerability

Cross Site Scripting XSS Vulnerability discovered by muhammad yudha in WordPress Plugin Additional Custom Product Tabs for WooCommerce versions = 1.7.3...

6.5CVSS6AI score0.00154EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/03/11 9:47 p.m.4 views

WordPress Display Template Name plugin <= 1.7.1 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Nabil Irawan in WordPress Plugin Display Template Name versions = 1.7.1...

4.3CVSS8.9AI score0.00158EPSS
Exploits0Affected Software1
Positive Technologies
Positive Technologies
added 2024/12/02 12:0 a.m.6 views

PT-2024-35304 · Unknown · Anmari Amr Shortcodes

Name of the Vulnerable Software and Affected Versions: anmari amr shortcodes versions 1.7 and earlier Description: The issue is related to improper neutralization of input during web page generation, also known as 'Cross-site Scripting', which allows Reflected XSS. This enables attackers to injec...

7.1CVSS9.1AI score0.00339EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2023/11/06 12:0 a.m.7 views

PT-2023-30236 · Unknown · Gd Security Headers

Name of the Vulnerable Software and Affected Versions: GD Security Headers versions 1.7 and earlier Description: The issue is related to an SQL Injection vulnerability due to improper neutralization of special elements used in an SQL command. This allows authorized users with admin+ privileges to...

7.2CVSS8AI score0.00574EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 6:7 a.m.3 views

SUSE CVE-2008-3326

Cross-site scripting XSS vulnerability in blog/edit.php in Moodle 1.6.x before 1.6.7 and 1.7.x before 1.7.5 allows remote attackers to inject arbitrary web script or HTML via the etitle parameter blog entry title...

2.6CVSS6.1AI score0.02389EPSS
Exploits1References4
Rows per page
Query Builder