4 matches found
CVE-2025-67615 WordPress Myour theme <= 1.5.1 - Local File Inclusion vulnerability
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in bslthemes Myour myour allows PHP Local File Inclusion.This issue affects Myour: from n/a through = 1.5.1...
WordPress OpenPGP Form Encryption Plugin < 1.5.1 is vulnerable to Cross Site Scripting (XSS)
Software OpenPGP Form Encryption Type Plugin Vulnerable versions 1.5.1 Fixed in 1.5.1 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-3919 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 357d35b3d36d Credits Bob Matyas Require...
PT-2023-21271 · Unknown · Shingo Intrepidity Plugin
Name of the Vulnerable Software and Affected Versions: Shingo Intrepidity plugin versions = 1.5.1 Description: The issue allows for Cross-Site Request Forgery CSRF which enables arbitrary file upload. Recommendations: For versions = 1.5.1, update to a version greater than 1.5.1 to resolve the iss...
Draytek Vigor3900, Vigor2960 and Vigor300B Buffer Overflow Vulnerability (CNVD-2020-29580)
DrayTek Vigor3900 and others are products of DrayTek Taiwan, China.DrayTek Vigor3900 is a broadband router/VPN gateway appliance.Vigor2960 is a load-balancing router and VPN gateway appliance.Vigor300B is a load-balancing router. A buffer overflow vulnerability exists in the /cgi-bin/activate.cgi...