Lucene search
K

9 matches found

Vulnrichment
Vulnrichment
added 2025/09/22 12:2 a.m.4 views

CVE-2025-10773 B-Link BL-AC2100 Web Management set_delshrpath_cfg delshrpath stack-based overflow

A security flaw has been discovered in B-Link BL-AC2100 up to 1.0.3. Affected by this issue is the function delshrpath of the file /goform/setdelshrpathcfg of the component Web Management Interface. The manipulation of the argument Type results in stack-based buffer overflow. The attack may be...

9CVSS6.5AI score0.03717EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2025/08/31 3:27 p.m.5 views

CVE-2025-9654

A security flaw has been discovered in AiondaDotCom mcp-ssh up to 1.0.3. Affected by this issue is some unknown functionality of the file server-simple.mjs. Performing manipulation results in command injection. The attack can be initiated remotely. Upgrading to version 1.0.4 and 1.1.0 can resolve...

6.5CVSS7.2AI score0.01349EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/11/18 12:0 a.m.14 views

WordPress QRMenu Restaurant QR Menu Lite Plugin <= 1.0.3 is vulnerable to PHP Object Injection

Software QRMenu Restaurant QR Menu Lite Type Plugin Vulnerable versions = 1.0.3 Fixed in N/A OWASP Top 10 A3: Injection Classification PHP Object Injection CVE CVE-2024-52445 Patch priority Medium CVSS severity Medium 8.8 Developer Claim ownership PSID faf2a3afc906 Credits LVT-tholv2k Required...

8.8CVSS6.9AI score0.0052EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2024/10/21 12:0 a.m.20 views

WordPress 3D Work In Progress Plugin <= 1.0.3 is vulnerable to Arbitrary File Deletion

Software 3D Work In Progress Type Plugin Vulnerable versions = 1.0.3 Fixed in N/A OWASP Top 10 A3: Injection Classification Arbitrary File Deletion CVE CVE-2024-49657 Patch priority High CVSS severity High 7.7 Developer Claim ownership PSID 209728d5f5a9 Credits stealthcopter Required privilege...

7.7CVSS6.8AI score0.00387EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/06/24 12:0 a.m.10 views

WordPress ContentLock Plugin <= 1.0.3 is vulnerable to Cross Site Request Forgery (CSRF)

Software ContentLock Type Plugin Vulnerable versions = 1.0.3 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-6023 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 38c834154e63 Credits Norbert Hofmann Required...

8.8CVSS7AI score0.00312EPSS
Exploits1References4Affected Software1
Patchstack
Patchstack
added 2024/03/25 12:0 a.m.10 views

WordPress WP Post Disclaimer Plugin <= 1.0.3 is vulnerable to Cross Site Scripting (XSS)

Software WP Post Disclaimer Type Plugin Vulnerable versions = 1.0.3 Fixed in 1.0.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-29761 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 45270e929eab Credits LVT-tholv2k Required privilege...

6.5CVSS6.9AI score0.00351EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2024/01/31 12:0 a.m.18 views

WordPress Autotitle for WordPress Plugin <= 1.0.3 is vulnerable to Cross Site Request Forgery (CSRF)

Software Autotitle for WordPress Type Plugin Vulnerable versions = 1.0.3 Fixed in N/A OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-6946 Patch priority Low CVSS severity Low 7.1 Developer Claim ownership PSID 89d669161c10 Credits Daniel Ruf...

8.8CVSS6.6AI score0.00346EPSS
Exploits2References3Affected Software1
Patchstack
Patchstack
added 2023/11/15 12:0 a.m.11 views

WordPress BMI Calculator Plugin Plugin <= 1.0.3 is vulnerable to Cross Site Scripting (XSS)

Software BMI Calculator Plugin Type Plugin Vulnerable versions = 1.0.3 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-47814 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID b0f7b4a20da1 Credits Ngô Thiên An ancorn from VNPT-VCI...

6.5CVSS6.6AI score0.00378EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2023/09/04 12:0 a.m.6 views

PT-2023-27324 · WordPress · Wp 404 Auto Redirect To Similar Post

Name of the Vulnerable Software and Affected Versions: hwk-fr WP 404 Auto Redirect to Similar Post plugin versions 1.0.3 and earlier Description: The issue is related to an Authenticated Stored Cross-Site Scripting XSS vulnerability. This means that an attacker with admin access can inject...

5.9CVSS5.2AI score0.00316EPSS
Exploits0References6
Rows per page
Query Builder