Lucene search
+L

4 matches found

Positive Technologies
Positive Technologies
added 2023/06/07 12:0 a.m.8 views

PT-2023-15935 · WordPress · Adsanity

Name of the Vulnerable Software and Affected Versions: AdSanity plugin for WordPress versions up to, and including, 1.8.1 Description: The issue is related to missing file type validation in the ajax upload function, allowing authenticated attackers with Contributor+ level privileges to upload...

8.8CVSS8.7AI score0.02196EPSS
Exploits1References8
Patchstack
Patchstack
added 2023/03/29 12:0 a.m.15 views

WordPress HappyFiles Pro Plugin <= 1.8.1 is vulnerable to Broken Access Control

Software HappyFiles Pro Type Plugin Vulnerable versions = 1.8.1 Fixed in 1.8.2 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2023-25445 Patch priority Medium CVSS severity Medium 5.4 Developer Claim ownership PSID 518a5cea4b57 Credits Dave Jong Patchstack...

6.6AI score0.0021EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2023/01/05 12:0 a.m.13 views

PT-2023-15891 · Snoyberg · Keter

Name of the Vulnerable Software and Affected Versions: snoyberg keter versions up to 1.8.1 Description: A vulnerability has been found in snoyberg keter, classified as problematic. This issue affects unknown code of the file Keter/Proxy.hs. The manipulation of the argument host leads to cross-sit...

6.1CVSS4.4AI score0.00535EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2019/02/20 12:0 a.m.7 views

PT-2019-11324 · Jenkins · Jenkins Octopusdeploy Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins OctopusDeploy Plugin versions 1.8.1 and earlier Description: A server-side request forgery issue exists that allows attackers with Overall/Read permission to have the server connect to an attacker-specified URL and obtain the HTTP...

4.3CVSS4.6AI score0.01034EPSS
Exploits0References4
Rows per page
Query Builder