CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2015-9258

Malware in sbrugna...

5.8CVSS4.9AI score0.00114EPSS

Exploits1References3

RedhatCVE•added 2025/05/22 2:26 a.m.•6 views

CVE-2015-9418

The Watu Pro plugin before 4.9.0.8 for WordPress has CSRF that allows an attacker to delete quizzes...

5.8CVSS7AI score0.00114EPSS

Exploits1References1

NVD•added 2019/09/26 12:15 a.m.•9 views

CVE-2015-9418

The Watu Pro plugin before 4.9.0.8 for WordPress has CSRF that allows an attacker to delete quizzes...

5.8CVSS4.7AI score0.00114EPSS

Exploits1References3

Prion•added 2019/09/26 12:15 a.m.•8 views

Cross site request forgery (csrf)

The Watu Pro plugin before 4.9.0.8 for WordPress has CSRF that allows an attacker to delete quizzes...

5.8CVSS7.2AI score0.00114EPSS

Exploits1References3Affected Software1

CVE•added 2019/09/25 11:48 p.m.•89 views

CVE-2015-9418

CVE-2015-9418 affects the WordPress Watu Pro plugin prior to 4.9.0.8. The vulnerability is a Cross-Site Request Forgery (CSRF) that allows an attacker to delete quizzes. Root cause: insufficient CSRF protection in the plugin’s quiz-management actions. Impact is limited to the ability to delete qu...

5.8CVSS4.7AI score0.00114EPSS

Exploits1References3Affected Software1

Cvelist•added 2019/09/25 11:48 p.m.•14 views

CVE-2015-9418

The Watu Pro plugin before 4.9.0.8 for WordPress has CSRF that allows an attacker to delete quizzes...

4.7AI score0.00114EPSS

Exploits1References2

CNVD•added 2019/09/25 12:0 a.m.•1 views

WordPress Watu Pro Plugin Cross-Site Request Forgery Vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.Watu Pro is an online quiz and exam plugin used in it. A cross-site request forgery vulnerability exists in versions of the WordPress...

5.8CVSS6.7AI score0.00114EPSS

Exploits1References1

seebug.org•added 2015/09/06 12:0 a.m.•18 views

Watu PRO 4.8.8.4 - CSRF

Assuming there is a quiz with ID 1, the following link will delete it when visited by a logged-in admin:http://localhost/wp-admin/admin.php?page=watuproexams&action=delete&quiz=1...

6.9AI score

Exploits0

Packet Storm•added 2015/09/01 12:0 a.m.•26 views

Watu PRO Play 1.9.2.1 Cross Site Scripting

Details ================ Software: Watu PRO Play Version: 1.9.2.1 Homepage: http://calendarscripts.info/watupro/modules.htmlplay Advisory report: https://security.dxw.com/advisories/stored-xss-in-watu-pro-play-allows-unauthenticated-attacker-to-do-almost-anything-an-admin-can/ CVE: Awaiting...

7.4AI score

Exploits0

Packet Storm•added 2015/09/01 12:0 a.m.•23 views

Watu PRO 4.8.8.4 Cross Site Request Forgery

Details ================ Software: Watu PRO Version: 4.8.8.4 Homepage: http://calendarscripts.info/watupro/ Advisory report: https://security.dxw.com/advisories/csrf-in-watu-pro-allows-unauthenticated-attackers-to-delete-quizzes/ CVE: Awaiting assignment CVSS: 4.3 Medium; AV:N/AC:M/Au:N/C:N/I:P/A...

0.5AI score

Exploits0

Patchstack•added 2015/09/01 12:0 a.m.•8 views

WordPress Watu PRO Plugin <= 4.8.8.4 - Cross-Site Request Forgery

This plugin is prone to a cross site request forgery vulnerabiliy. It allows the attackers to convince an admin to visit a link of their choosing is able to delete quizzes. Solution Update the plugin...

5.1AI score

Exploits0References1Affected Software1

Packet Storm•added 2015/09/01 12:0 a.m.•20 views

Watu PRO 4.8.8.4 Cross Site Scripting

Details ================ Software: Watu PRO Version: 4.8.8.4 Homepage: http://calendarscripts.info/watupro/ Advisory report: https://security.dxw.com/advisories/stored-xss-in-watu-pro-allows-unauthenticated-attackers-to-do-almost-anything-an-admin-can/ CVE: Awaiting assignment CVSS: 5.8 Medium;...

7.4AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by