Lucene search
K

10 matches found

ATTACKERKB
ATTACKERKB
added 2026/02/19 8:26 a.m.7 views

CVE-2026-25331

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Melapress WP Activity Log wp-security-audit-log allows DOM-Based XSS.This issue affects WP Activity Log: from n/a through = 5.5.4...

5.5AI score0.00156EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2014-4971

Malware in sbrugna...

8.8CVSS8.8AI score0.00866EPSS
Exploits0References3
NVD
NVD
added 2018/04/06 4:29 p.m.15 views

CVE-2014-5072

Cross-site request forgery CSRF vulnerability in WP Security Audit Log plugin before 1.2.5 for WordPress allows remote attackers to hijack the authentication of unspecified victims via unknown vectors...

8.8CVSS9AI score0.00866EPSS
Exploits0References2
Prion
Prion
added 2018/04/06 4:29 p.m.15 views

Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability in WP Security Audit Log plugin before 1.2.5 for WordPress allows remote attackers to hijack the authentication of unspecified victims via unknown vectors...

6.8CVSS7.7AI score0.00866EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2018/04/06 4:0 p.m.38 views

CVE-2014-5072

CVE-2014-5072 affects the WP Security Audit Log WordPress plugin prior to version 1.2.5. The vulnerability is a cross-site request forgery (CSRF) that could allow remote attackers to hijack the authentication of unspecified victims via unknown vectors. The public records in the connected sources ...

8.8CVSS8.9AI score0.00866EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2018/04/06 4:0 p.m.19 views

CVE-2014-5072

Cross-site request forgery CSRF vulnerability in WP Security Audit Log plugin before 1.2.5 for WordPress allows remote attackers to hijack the authentication of unspecified victims via unknown vectors...

9AI score0.00866EPSS
Exploits0References2
NVD
NVD
added 2018/04/04 7:29 p.m.25 views

CVE-2018-8719

An issue was discovered in the WP Security Audit Log plugin 3.1.1 for WordPress. Access to wp-content/uploads/wp-security-audit-log/ files is not restricted. For example, these files are indexed by Google and allows for attackers to possibly find sensitive information...

5.3CVSS5.3AI score0.15782EPSS
Exploits6References1
Prion
Prion
added 2018/04/04 7:29 p.m.16 views

Information disclosure

An issue was discovered in the WP Security Audit Log plugin 3.1.1 for WordPress. Access to wp-content/uploads/wp-security-audit-log/ files is not restricted. For example, these files are indexed by Google and allows for attackers to possibly find sensitive information...

5CVSS5.2AI score0.15782EPSS
Exploits6References1Affected Software1
CVE
CVE
added 2018/04/04 7:0 p.m.91 views

CVE-2018-8719

CVE-2018-8719 affects WordPress WP Security Audit Log plugin (v3.1.1). The issue is information disclosure: access to wp-content/uploads/wp-security-audit-log/* is not restricted, enabling potential exposure of sensitive data (e.g., login attempts) and making files indexable by search engines. Ex...

5.3CVSS5.1AI score0.15782EPSS
Exploits6References1Affected Software1
WPVulnDB
WPVulnDB
added 2018/03/28 12:0 a.m.16 views

WP Security Audit Log Plugin <= 3.1.1 - Sensitive Information Disclosure

No protection on the wp-content/uploads/wp-security-audit-log/ which is indexed by google and allows for attackers to possibly find user information bad login attempts PoC Google Dork: inurl:/wp-content/uploads/wp-security-audit-log/...

5CVSS4AI score0.15782EPSS
Exploits6References1Affected Software1
Rows per page
Query Builder