Lucene search
K

11 matches found

Tenable Nessus
Tenable Nessus
added 2026/03/10 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2026-30838

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - league/commonmark is a PHP Markdown parser. Prior to version 2.8.1, the DisallowedRawHtml extension can be bypassed by inserting a newline, tab, or other ASCII...

6.1CVSS5.6AI score0.00217EPSS
Exploits0References3
Patchstack
Patchstack
added 2024/11/12 12:0 a.m.10 views

WordPress Fat Rat Collect Plugin <= 2.7.3 is vulnerable to Cross Site Scripting (XSS)

Software Fat Rat Collect Type Plugin Vulnerable versions = 2.7.3 Fixed in 2.7.4 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-10577 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 1bb18ef91a7a Credits Peter Thaleikis...

6.1CVSS6AI score0.0048EPSS
Exploits0References3Affected Software1
Patchstack
Patchstack
added 2024/08/08 12:0 a.m.12 views

WordPress FooBox Image Lightbox Plugin <= 2.7.28 is vulnerable to Cross Site Scripting (XSS)

Software FooBox Image Lightbox Type Plugin Vulnerable versions = 2.7.28 Fixed in 2.7.32 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-5668 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 34ccb97b63f3 Credits Webbernaut...

6.4CVSS5.8AI score0.00282EPSS
Exploits0References3Affected Software1
Patchstack
Patchstack
added 2024/06/20 12:0 a.m.20 views

WordPress WP Post Author Plugin <= 3.6.7 is vulnerable to Cross Site Scripting (XSS)

Software WP Post Author Type Plugin Vulnerable versions = 3.6.7 Fixed in 3.6.8 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-37101 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 123a43620732 Credits Khalid Yusuf Required privilege...

6.5CVSS6.6AI score0.00261EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2023/10/29 12:0 a.m.11 views

WordPress Bellows Accordion Menu Plugin <= 1.4.2 is vulnerable to Cross Site Scripting (XSS)

Software Bellows Accordion Menu Type Plugin Vulnerable versions = 1.4.2 Fixed in 1.4.3 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-5164 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 390a77233aee Credits István Márton...

6.4CVSS5.7AI score0.0045EPSS
Exploits0References3Affected Software1
Patchstack
Patchstack
added 2023/07/18 12:0 a.m.4 views

WordPress RW Divi Unite Gallery Plugin <= 1.0 is vulnerable to Cross Site Scripting (XSS)

Software RW Divi Unite Gallery Type Plugin Vulnerable versions = 1.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 58cef2f921eb Credits Rafie Muhammad Patchstack...

6.4AI score0.00284EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2023/07/18 12:0 a.m.7 views

WordPress Product Layouts for Woocommerce ( Product Gallery, Product Showcase, Layout Design, Category Tabs, Product Slider, Product Grid, Product Table ) Plugin <= 1.1.3 is vulnerable to Cross Site Scripting (XSS)

Software Product Layouts for Woocommerce Product Gallery, Product Showcase, Layout Design, Category Tabs, Product Slider, Product Grid, Product Table Type Plugin Vulnerable versions = 1.1.3 Fixed in 1.1.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch...

6.5AI score0.00284EPSS
Exploits0References3Affected Software1
Patchstack
Patchstack
added 2023/01/19 12:0 a.m.14 views

WordPress Amr Shortcode Any Widget Plugin <= 4.0 is vulnerable to Cross Site Scripting (XSS)

Software Amr Shortcode Any Widget Type Plugin Vulnerable versions = 4.0 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2022-4458 Patch priority Medium CVSS severity Medium 6.5 Developer Claim ownership PSID 612057d81855 Credits Lana Codes...

5.4CVSS5.9AI score0.00477EPSS
Exploits2References3Affected Software1
NVD
NVD
added 2022/01/25 4:15 p.m.18 views

CVE-2021-46084

uscat, as of 2021-12-28, is vulnerable to Cross Site Scripting XSS via "close registration information" input box...

5.4CVSS0.00441EPSS
Exploits1References1
Openbugbounty
Openbugbounty
added 2019/08/17 5:4 a.m.7 views

жемчужины-мысли.рф Cross Site Scripting vulnerability

Security Researcher MAS00712 Helped patch 230 vulnerabilities Received 4 Coordinated Disclosure badges Received 9 recommendations , a holder of 4 badges for responsible and coordinated disclosure, found a security vulnerability affecting жемчужины-мысли.рф website and its users. Following...

0.1AI score
Exploits0
securityvulns
securityvulns
added 2003/10/07 12:0 a.m.33 views

File-Sharing for NET 1.5 and Forums Web Server 1.5 crossite scripting

HTML tags are not filtered on message subject...

0.2AI score
Exploits0References1Affected Software2
Rows per page
Query Builder