5 matches found
Exploit for CVE-2026-3844
CVE-2026-3844 – Breeze Cache WordPress Plugin Unauthenticated...
Exploit for CVE-2026-3844
CVE-2026-3844 — Breeze Cache RCE Unauthenticated Arbitrary...
WordPress Google Drive WP Media plugin <= 2.4.4 - Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability discovered by muhammad yudha in WordPress Plugin Google Drive WP Media versions = 2.4.4...
CVE-2024-13651
The RapidLoad – Optimize Web Vitals Automatically plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the ajaxdeactivate function in all versions up to, and including, 2.4.4. This makes it possible for authenticated attackers, with...
Command Injection
Overview magento/community-edition is a modern cloud eCommerce platform. Affected versions of this package are vulnerable to Command Injection via the command execution interface. An attacker can execute arbitrary code by injecting malicious commands into the system. This is only exploitable if t...