Lucene search
K

18 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-34778

Malicious code in bioql PyPI...

5.9CVSS6.4AI score0.00442EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 8:36 a.m.4 views

CVE-2024-34417

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Toidicode.Com thanhtaivtt Viet Nam Affiliate allows Stored XSS.This issue affects Viet Nam Affiliate: from n/a through 1.0.0...

5.9CVSS5.2AI score0.00442EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/01/31 12:0 a.m.3 views

WordPress plugin Affiliate Tools Việt Nam 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists in...

7.1CVSS7.5AI score0.00246EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/01/16 6:42 p.m.5 views

WordPress Affiliate Tools Việt Nam plugin <= 0.3.17 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by João Pedro Soares de Alcântara Kinorth in WordPress Plugin Affiliate Tools Việt Nam versions = 0.3.17...

7.1CVSS6.1AI score0.00246EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
added 2024/05/16 12:0 a.m.13 views

Viet Nam Affiliate <= 1.0.0 - Authenticated (Administrator+) Stored Cross-Site Scripting

Description The Viet Nam Affiliate plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 1.0.0 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...

5.9CVSS5.9AI score0.00442EPSS
Exploits0References1
NVD
NVD
added 2024/05/14 3:38 p.m.11 views

CVE-2024-34417

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Toidicode.Com thanhtaivtt Viet Nam Affiliate allows Stored XSS.This issue affects Viet Nam Affiliate: from n/a through 1.0.0...

5.9CVSS6.1AI score0.00442EPSS
Exploits0References1
CVE
CVE
added 2024/05/09 11:33 a.m.29 views

CVE-2024-34417

Technical details for CVE-2024-34417 are not provided in the connected documents. Public information appears limited to a general description of Stored XSS in Viet Nam Affiliate plugin versions up to 1.0.0. Monitor for updates.

5.9CVSS5.2AI score0.00442EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/05/09 11:33 a.m.19 views

CVE-2024-34417 WordPress Viet Nam Affiliate plugin <= 1.0.0 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Toidicode.Com thanhtaivtt Viet Nam Affiliate allows Stored XSS.This issue affects Viet Nam Affiliate: from n/a through 1.0.0...

5.9CVSS6.3AI score0.00442EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/05/09 12:0 a.m.8 views

PT-2024-25869 · Unknown · Toidicode.Com

Name of the Vulnerable Software and Affected Versions: Toidicode.Com thanhtaivtt Viet Nam Affiliate versions through 1.0.0 Description: The issue affects the Viet Nam Affiliate, allowing for Stored XSS due to improper neutralization of input during web page generation. Recommendations: For versio...

5.9CVSS6.2AI score0.00442EPSS
Exploits0References2
Patchstack
Patchstack
added 2024/05/06 9:6 p.m.4 views

WordPress Viet Nam Affiliate plugin <= 1.0.0 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Sharanabasappa Patchstack Alliance in WordPress Plugin Viet Nam Affiliate versions = 1.0.0...

5.9CVSS6.1AI score0.00442EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/05/06 12:0 a.m.9 views

WordPress Viet Nam Affiliate Plugin <= 1.0.0 is vulnerable to Cross Site Scripting (XSS)

Software Viet Nam Affiliate Type Plugin Vulnerable versions = 1.0.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-34417 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 9b4cdde6b69c Credits Sharanabasappa Required privilege...

5.9CVSS6.6AI score0.00442EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2022/10/10 12:0 a.m.18 views

WordPress PublishPress Capabilities Pro premium plugin <= 2.5.1 - Auth. PHP Objection Injection vulnerability

Auth. PHP Objection Injection vulnerability discovered by Nguyen Pham Viet Nam in WordPress PublishPress Capabilities Pro premium plugin versions = 2.5.1. Solution Update the WordPress PublishPress Capabilities Pro plugin to the latest available version at least...

7.2CVSS2.6AI score0.01126EPSS
Exploits2References1Affected Software1
Patchstack
Patchstack
added 2022/10/10 12:0 a.m.17 views

WordPress PublishPress Capabilities plugin <= 2.5.1 - Auth. PHP Objection Injection vulnerability

Auth. PHP Objection Injection vulnerability discovered by Nguyen Pham Viet Nam in WordPress PublishPress Capabilities plugin versions = 2.5.1. Solution Update the WordPress PublishPress Capabilities plugin to the latest available version at least 2.5.2...

7.2CVSS2.5AI score0.01126EPSS
Exploits2References1Affected Software1
Packet Storm
Packet Storm
added 2015/09/03 12:0 a.m.30 views

GPON G-93RG1 Cross Site Request Forgery / Code Execution

CSRF Demo Exploit -- document.auto.submit;...

0.2AI score
Exploits0
Exploit DB
Exploit DB
added 2015/09/02 12:0 a.m.92 views

GPON Home Router FTP G-93RG1 - Cross-Site Request Forgery / Command Execution

CSRF Demo Exploit -- document.auto.submit;...

7AI score
Exploits0
0day.today
0day.today
added 2015/09/02 12:0 a.m.50 views

GPON Home Router FTP G-93RG1 - CSRF Command Execution Vulnerability

Exploit for hardware platform in category web applications CSRF Demo Exploit -- document.auto.submit; 0day.today 2018-03-31...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2014/11/21 12:0 a.m.37 views

WordPress Plugin SP Client Document Manager 2.4.1 - SQL Injection

Vulnerability title: Multi SQL Injection in SP Client Document Manager plugin CVE: N/A Vendor: http://smartypantsplugins.com Plugin: SP Client Document Manager Download link: https://wordpress.org/plugins/sp-client-document-manager/ Affected version: version 2.4.1 and previous version Google dork...

7.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2012/02/29 12:0 a.m.8 views

Facebook Game - Poker Texas Hold'em Boyaa Viet Nam Detected (deprecated)

Binary data 6439.prm...

7.3AI score
Exploits0
Rows per page
Query Builder