Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

5 matches found

Vulnrichment
Vulnrichmentadded 2025/06/09 3:54 p.m.4 views

CVE-2025-48124 WordPress Spreadsheet Price Changer for WooCommerce and WP E-commerce – Light <= 2.4.37 - Arbitrary File Download Vulnerability

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Holest Engineering Spreadsheet Price Changer for WooCommerce and WP E-commerce – Light allows Path Traversal. This issue affects Spreadsheet Price Changer for WooCommerce and WP E-commerce – Light: from...

7.5CVSS9.6AI score0.00498EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2014/10/20 5:55 p.m.1 views

CVE-2014-8363

SQL injection vulnerability in sshandler.php in the WordPress Spreadsheet wpSS plugin 0.62 for WordPress allows remote attackers to execute arbitrary SQL commands via the ssid parameter...

7.5CVSS6.4AI score0.00374EPSS
Exploits1References3
CVE
CVEadded 2014/10/20 5:0 p.m.44 views

CVE-2014-8363

CVE-2014-8363 affects the WordPress Spreadsheet plugin (wpSS) for WordPress, specifically version 0.62 and potentially earlier. The vulnerability is an SQL injection in ss_handler.php via the ss_id parameter, allowing remote attackers to execute arbitrary SQL commands. Multiple sources (NVD, RH, ...

7.5CVSS8.7AI score0.00374EPSS
Exploits1References2Affected Software1
Cvelist
Cvelistadded 2014/10/20 5:0 p.m.12 views

CVE-2014-8364

Cross-site scripting XSS vulnerability in sshandler.php in the WordPress Spreadsheet wpSS plugin 0.62 for WordPress allows remote attackers to inject arbitrary web script or HTML via the ssid parameter...

5.8AI score0.00174EPSS
Exploits1References2
CVE
CVEadded 2014/10/20 5:0 p.m.35 views

CVE-2014-8364

The CVE-2014-8364 entry maps to a Cross-site Scripting (XSS) vulnerability in the WordPress Spreadsheet plugin (wpSS) for WordPress, specifically in ss_handler.php (plugin version 0.62) exploitable via the ss_id parameter to inject script/HTML. This affects wpSS 0.62 on WordPress and is reported ...

4.3CVSS6AI score0.00174EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder