CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

19 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2007-1387

Malware in sbrugna...

10CVSS6.4AI score0.06756EPSS

Exploits0References7

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2024-49436

Malicious code in bioql PyPI...

9.8CVSS6.5AI score0.00411EPSS

Exploits0References3

RedhatCVE•added 2025/02/04 10:27 p.m.•6 views

CVE-2024-8853

The Webo-facto plugin for WordPress is vulnerable to privilege escalation in versions up to, and including, 1.40 due to insufficient restriction on the 'doSsoAuthentification' function. This makes it possible for unauthenticated attackers to make themselves administrators by registering with a...

9.8CVSS7.1AI score0.00411EPSS

Exploits0References1

NVD•added 2024/09/20 8:15 a.m.•10 views

CVE-2024-8853

9.8CVSS0.00411EPSS

Exploits0References3

OSV•added 2024/09/20 8:15 a.m.•1 views

CVE-2024-8853

9.8CVSS5.8AI score

Exploits0References3

CVE•added 2024/09/20 7:33 a.m.•49 views

CVE-2024-8853

Vulnerability summary (CVE-2024-8853) The Webo-facto plugin for WordPress is affected in versions up to and including 1.40. The root cause is an insufficient restriction on the doSsoAuthentification function, enabling unauthenticated attackers to escalate privileges by registering with a username...

9.8CVSS9.6AI score0.00411EPSS

Exploits0References3Affected Software1

Cvelist•added 2024/09/20 7:33 a.m.•22 views

CVE-2024-8853 Webo-facto <= 1.40 - Unauthenticated Privilege Escalation

9.8CVSS0.00411EPSS

Exploits0References3

Vulnrichment•added 2024/09/20 7:33 a.m.•13 views

CVE-2024-8853 Webo-facto <= 1.40 - Unauthenticated Privilege Escalation

9.8CVSS9.5AI score0.00411EPSS

Exploits0References3

Patchstack•added 2024/09/20 5:25 a.m.•2 views

WordPress Webo-facto plugin <= 1.40 - Unauthenticated Privilege Escalation vulnerability

Unauthenticated Privilege Escalation vulnerability discovered by István Márton in WordPress Plugin Webo-facto versions = 1.40...

9.8CVSS7AI score0.00411EPSS

Exploits0References1Affected Software1

Positive Technologies•added 2024/09/20 12:0 a.m.•3 views

PT-2024-39277 · WordPress · Webo-Facto

Name of the Vulnerable Software and Affected Versions: Webo-facto plugin for WordPress versions up to, and including, 1.40 Description: The Webo-facto plugin for WordPress has a privilege escalation issue due to insufficient restriction on the doSsoAuthentification function. This allows...

9.8CVSS7.5AI score0.00411EPSS

Exploits0References15

Patchstack•added 2024/09/20 12:0 a.m.•7 views

WordPress Webo-facto Plugin <= 1.40 is vulnerable to Privilege Escalation

Software Webo-facto Type Plugin Vulnerable versions = 1.40 Fixed in 1.41 OWASP Top 10 A7: Identification and Authentication Failures Classification Privilege Escalation CVE CVE-2024-8853 Patch priority High CVSS severity High 9.8 Developer Claim ownership PSID 15efb92b2d14 Credits István Márton...

9.8CVSS6.6AI score0.00411EPSS

Exploits0References3Affected Software1

CNNVD•added 2024/09/20 12:0 a.m.•1 views

WordPress plugin Webo-facto 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

9.8CVSS6.8AI score0.00411EPSS

Exploits0References4

Packet Storm•added 2007/03/13 12:0 a.m.•32 views

adv67-K-159-2007.txt

ECHOADV67$2007 ----------------------------------------------------------------------------------------- ECHOADV67$2007 WEBO Web Organizer = 1.0 baseDir Remote File Inclusion Vulnerability ----------------------------------------------------------------------------------------- Author : M.Hasran...

7.4AI score

Exploits0

NVD•added 2007/03/10 10:19 p.m.•12 views

CVE-2007-1391

PHP remote file inclusion vulnerability in modules/abook/foldertree.php in Leo West WEBO aka weborganizer 1.0 allows remote attackers to execute arbitrary PHP code via a URL in the baseDir parameter...

10CVSS7.5AI score0.06756EPSS

Exploits0References6

Prion•added 2007/03/10 10:19 p.m.•15 views

Remote file inclusion

10CVSS8AI score0.06756EPSS

Exploits0References6Affected Software1

Cvelist•added 2007/03/10 10:0 p.m.•18 views

CVE-2007-1391

7.5AI score0.06756EPSS

Exploits0References6

0day.today•added 2007/03/08 12:0 a.m.•54 views

WEBO (Web Organizer) <= 1.0 (baseDir) Remote File Inclusion Vuln

Exploit for unknown platform in category web applications ================================================================ WEBO Web Organizer = 1.0 baseDir Remote File Inclusion Vuln ================================================================ \ /\ \ / | \ \ | / \ // / | \ | \ \ Y / | \ /...

7.1AI score

Exploits0

exploitpack•added 2007/03/08 12:0 a.m.•21 views

WEBO (Web ORGanizer) 1.0 - baseDir Remote File Inclusion

WEBO Web ORGanizer 1.0 - baseDir Remote File Inclusion \ /\ \ / | \ \ | / \ // / | \ | \ \ Y / | \ / / \ /| /\ / / / / / .OR.ID ECHOADV67$2007 ----------------------------------------------------------------------------------------- ECHOADV67$2007 WEBO Web Organizer = 1.0 baseDir Remote...

7.5AI score

Exploits0

Exploit DB•added 2007/03/08 12:0 a.m.•33 views

WEBO (Web ORGanizer) 1.0 - 'baseDir' Remote File Inclusion

\ /\ \ / | \ \ | / \ // / | \ | \ \ Y / | \ / / \ /| /\ / / / / / .OR.ID ECHOADV67$2007 ----------------------------------------------------------------------------------------- ECHOADV67$2007 WEBO Web Organizer = 1.0 baseDir Remote File Inclusion Vulnerability...

7.4AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by