260016 matches found
Htaccess by BestWebSoft < 1.7.6 - Cross-Site Scripting
The htaccess plugin before 1.7.6 for WordPress has multiple XSS issues. id: CVE-2017-18496 info: name: Htaccess by BestWebSoft 1.7.6 - Cross-Site Scripting author: luisfelipe146 severity: medium description: | The htaccess plugin before 1.7.6 for WordPress has multiple XSS issues. impact: |...
Open Bulletin Board (OpenBB) v1.0.6 - Open Redirect/XSS
Multiple cross-site scripting XSS vulnerabilities in Open Bulletin Board OpenBB 1.0.6 and earlier allows remote attackers to inject arbitrary web script or HTML via the 1 redirect parameter to member.php, 2 to parameter to myhome.php 3 TID parameter to post.php, or 4 redirect parameter to...
Pretty Url <= 1.5.4 - Cross-Site Scripting
Plugin does not sanitize and escape the URL field in the plugin settings, which could allow high-privilege users to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup. id: CVE-2023-2009 info: name: Pretty Url = 1.5.4 -...
WordPress Plugin Uploader 1.0.4 - Cross-Site Scripting
Multiple cross-site scripting vulnerabilities in views/notify.php in the Uploader plugin 1.0.4 for WordPress allow remote attackers to inject arbitrary web script or HTML via the 1 notify or 2 blog parameter. id: CVE-2013-2287 info: name: WordPress Plugin Uploader 1.0.4 - Cross-Site Scripting...
Visual CSS Style Editor < 7.5.4 - Cross-Site Scripting
The plugin does not sanitise and escape the wyppagetype parameter before outputting it back in an admin page, leading to a Reflected Cross-Site Scripting issue id: CVE-2021-24934 info: name: Visual CSS Style Editor 7.5.4 - Cross-Site Scripting author: Splint3r7 severity: medium description: | The...
Processwire CMS <2.7.1 - Local File Inclusion
Processwire CMS prior to 2.7.1 is vulnerable to local file inclusion because it allows a remote attacker to retrieve sensitive files via the download parameter to index.php. id: CVE-2020-27467 info: name: Processwire CMS 2.7.1 - Local File Inclusion author: 0xAkoko severity: high description:...
CVE-2022-31129 vulnerabilities
Vulnerabilities for packages: wazuh-dashboard, wazuh-dashboard-fips...
GHSA-WF93-45JW-7689 vulnerabilities
Vulnerabilities for packages: graalvm, wazuh-manager-fips...
HPESBHF05079 rev.1 - HPE Compute Scale-up Server 3200 and 3250 platforms, Multiple Vulnerabilities
Potential Security Impact: Remote: Arbitrary Code Execution, Compromise of System Integrity, Denial of Service DoS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Compute Scale-up Server 3200 - Prior to v1.76.44 HPE Compute Scale-up Server 3250 - Prior to v1.02.48 CVSS Scores:...
CVE-2026-2002
creationtimestamp| type| source ---|---|--- 2026-07-13 22:00:21+00:00| seen| https://t.me/GithubRedTeam/90102 2026-07-14 00:00:37+00:00| seen| https://t.me/GithubRedTeam/90102...
GHSA-JHRP-V2XG-MR29 vulnerabilities
Vulnerabilities for packages: chromium...
GHSA-MMX7-9GVJ-J7GM vulnerabilities
Vulnerabilities for packages: chromium...
GHSA-C9X3-CMJ9-8PXM vulnerabilities
Vulnerabilities for packages: chromium...
CVE-2026-15107 vulnerabilities
Vulnerabilities for packages: chromium...
GHSA-RMV3-P6FW-XH3H vulnerabilities
Vulnerabilities for packages: chromium...
GHSA-RF8J-GP6C-595Q vulnerabilities
Vulnerabilities for packages: chromium...
GHSA-FH7W-CWH7-HVQ9 vulnerabilities
Vulnerabilities for packages: chromium...
GHSA-R6FH-64MW-837M vulnerabilities
Vulnerabilities for packages: chromium...
GHSA-R7M5-CCWW-9J78 vulnerabilities
Vulnerabilities for packages: chromium...
GHSA-6WJ6-669X-MJRF vulnerabilities
Vulnerabilities for packages: chromium...