Lucene search
+L

230 matches found

OSSF Malicious Packages
OSSF Malicious Packages
added 2025/08/14 6:52 p.m.1 views

Malicious code in wm-visual-composer-types (npm)

The package wm-visual-composer-types was found to contain malicious code...

7AI score
Exploits0
OSV
OSV
added 2025/08/14 6:52 p.m.1 views

MAL-2025-39378 Malicious code in wm-visual-composer-types (npm)

The package wm-visual-composer-types was found to contain malicious code...

7.2AI score
Exploits0
Cvelist
Cvelist
added 2025/08/14 6:21 p.m.17 views

CVE-2025-55709 WordPress Visual Composer Website Builder Plugin < 45.15.0 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Visual Composer Visual Composer Website Builder visualcomposer allows Stored XSS.This issue affects Visual Composer Website Builder: from n/a through 45.15.0...

6.5CVSS0.0017EPSS
Exploits0References1
CVE
CVE
added 2025/08/14 6:21 p.m.30 views

CVE-2025-55709

CVE-2025-55709 is a storage XSS flaw in the Visual Composer Website Builder plugin. The vulnerability arises from improper input neutralization during web page generation, enabling stored XSS in the affected plugin. Evidence from multiple sources indicates the vulnerability affects the Visual Com...

6.5CVSS5.9AI score0.0017EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/08/14 6:21 p.m.5 views

CVE-2025-55709 WordPress Visual Composer Website Builder Plugin < 45.15.0 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Visual Composer Visual Composer Website Builder allows Stored XSS. This issue affects Visual Composer Website Builder: from n/a through n/a...

6.5CVSS6.9AI score0.0017EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/08/14 2:41 p.m.8 views

WordPress Visual Composer Website Builder Plugin < 45.15.0 - Cross Site Scripting (XSS) Vulnerability

Cross Site Scripting XSS Vulnerability discovered by muhammad yudha in WordPress Plugin Visual Composer Website Builder versions 45.15.0...

6.5CVSS6AI score0.0017EPSS
Exploits0Affected Software1
CNNVD
CNNVD
added 2025/08/14 12:0 a.m.5 views

WordPress plugin Visual Composer Website Builder 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...

6.5CVSS5.9AI score0.0017EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/08/14 12:0 a.m.11 views

PT-2025-33397 · WordPress · Visual Composer Website Builder

Name of the Vulnerable Software and Affected Versions: Visual Composer Website Builder affected versions not specified Description: Improper neutralization of input during web page generation allows for Stored Cross-site Scripting XSS. Recommendations: At the moment, there is no information about...

6.5CVSS5.7AI score0.0017EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/07/22 12:0 a.m.2 views

SAP NetWeaver Visual Composer Metadata Uploader Installed

Binary data sapnwmduinstalled.nbin...

7.3AI score
Exploits0References1
CNVD
CNVD
added 2025/06/17 12:0 a.m.3 views

SAP NetWeaver Visual Composer Directory Traversal Vulnerability

SAP NetWeaver Visual Composer is a graphical modeling environment in the SAP NetWeaver platform for rapid development and deployment of composite applications. A directory traversal vulnerability exists in SAP NetWeaver Visual Composer, which stems from insufficient input path validation, and can...

7.6CVSS6AI score0.00594EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/06/15 12:0 a.m.10 views

The vulnerability in the web-based software modeling tool, Visual Composer, of the SAP NetWeaver software integration platform allows a hacker to gain access to and modify data.

The vulnerability of the Visual Composer web tool, a software modeling tool within the SAP NetWeaver integration platform, is related to an incorrect restriction on the path to the restricted access catalog. Exploiting this vulnerability could allow an attacker to gain read and modify access to...

7.6CVSS5.5AI score0.00594EPSS
Exploits0References3Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/06/13 12:0 a.m.5 views

SAP Netweaver Visual Composer Multiple Vulnerabilities (June 2025)

SAP NetWeaver Visual Composer is affected by a directory traversal vulnerability caused by insufficient validation of input paths provided by a high-privileged user. This allows an attacker to read or modify arbitrary files, resulting in a high impact on confidentiality and a low impact on...

7.6CVSS5.7AI score0.00594EPSS
Exploits0References3
NVD
NVD
added 2025/06/10 1:15 a.m.7 views

CVE-2025-42977

SAP NetWeaver Visual Composer contains a Directory Traversal vulnerability caused by insufficient validation of input paths provided by a high-privileged user. This allows an attacker to read or modify arbitrary files, resulting in a high impact on confidentiality and a low impact on integrity...

7.6CVSS0.00594EPSS
Exploits0References2
CVE
CVE
added 2025/06/10 12:10 a.m.60 views

CVE-2025-42977

CVE-2025-42977 concerns SAP NetWeaver Visual Composer and is a directory-traversal vulnerability caused by insufficient validation of input paths provided by a high-privileged user. The affected component is the SAP NetWeaver Visual Composer environment; the underlying issue is improper input pat...

7.6CVSS7.4AI score0.00594EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/06/10 12:10 a.m.2 views

CVE-2025-42977 Directory Traversal vulnerability in SAP NetWeaver Visual Composer

SAP NetWeaver Visual Composer contains a Directory Traversal vulnerability caused by insufficient validation of input paths provided by a high-privileged user. This allows an attacker to read or modify arbitrary files, resulting in a high impact on confidentiality and a low impact on integrity...

7.6CVSS7.4AI score0.00594EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/06/10 12:0 a.m.6 views

SAP NetWeaver Visual Composer 路径遍历漏洞

SAP NetWeaver Visual Composer is a graphical modeling environment in the SAP NetWeaver platform for rapid development and deployment of composite applications. A directory traversal vulnerability exists in SAP NetWeaver Visual Composer, which stems from insufficient input path validation, and can...

7.6CVSS6.3AI score0.00594EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/06/10 12:0 a.m.4 views

PT-2025-24585 · Sap · Sap Netweaver Visual Composer

Name of the Vulnerable Software and Affected Versions: SAP NetWeaver Visual Composer affected versions not specified Description: The issue is caused by insufficient validation of input paths provided by a high-privileged user, allowing an attacker to read or modify arbitrary files. This results ...

7.6CVSS6AI score0.00594EPSS
Exploits0References8
RedhatCVE
RedhatCVE
added 2025/05/23 10:28 a.m.7 views

CVE-2024-43263

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Visual Composer Visual Composer Starter allows Stored XSS.This issue affects Visual Composer Starter: from n/a through 3.3...

6.5CVSS6.7AI score0.00239EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 9:58 a.m.8 views

CVE-2024-27997

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Visual Composer Visual Composer Website Builder visualcomposer.This issue affects Visual Composer Website Builder: from n/a through = 45.6.0...

5.9CVSS7.2AI score0.00345EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 9:15 a.m.6 views

CVE-2024-35653

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Visual Composer Visual Composer Website Builder visualcomposer.This issue affects Visual Composer Website Builder: from n/a through = 45.8.0...

6.5CVSS5.9AI score0.00279EPSS
Exploits0References1
Rows per page
Query Builder