Lucene search
K

12 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-21275

Malware in sbrugna...

6.4CVSS5.7AI score0.00634EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-21277

Malware in sbrugna...

4.3CVSS4.8AI score0.007EPSS
Exploits0References2
CNVD
CNVD
added 2021/07/13 12:0 a.m.5 views

WordPress Access Control Error Vulnerability (CNVD-2021-52425)

WordPress is a set of blogging platforms developed using the PHP language by the WordPress Wordpress Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. An access control error vulnerability exists in WordPress plugin WP Upload Restriction 2.2.3 and...

4.3CVSS6.6AI score0.0069EPSS
Exploits1References1
NVD
NVD
added 2021/07/07 1:15 p.m.12 views

CVE-2021-34626

A vulnerability in the deleteCustomType function of the WP Upload Restriction WordPress plugin allows low-level authenticated users to delete custom extensions added by administrators. This issue affects versions 2.2.3 and prior...

4.3CVSS0.0069EPSS
Exploits1References1
NVD
NVD
added 2021/07/07 1:15 p.m.12 views

CVE-2021-34627

A vulnerability in the getSelectedMimeTypesByRole function of the WP Upload Restriction WordPress plugin allows low-level authenticated users to view custom extensions added by administrators. This issue affects versions 2.2.3 and prior...

4.3CVSS0.007EPSS
Exploits0References1
NVD
NVD
added 2021/07/07 1:15 p.m.13 views

CVE-2021-34625

A vulnerability in the saveCustomType function of the WP Upload Restriction WordPress plugin allows low-level authenticated users to inject arbitrary web scripts. This issue affects versions 2.2.3 and prior...

6.4CVSS0.00634EPSS
Exploits1References1
Prion
Prion
added 2021/07/07 1:15 p.m.12 views

Design/Logic Flaw

A vulnerability in the saveCustomType function of the WP Upload Restriction WordPress plugin allows low-level authenticated users to inject arbitrary web scripts. This issue affects versions 2.2.3 and prior...

3.5CVSS5.3AI score0.00634EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2021/07/07 12:21 p.m.37 views

CVE-2021-34625

The CVE-2021-34625 issue affects the WordPress WP Upload Restriction plugin (versions

6.4CVSS5.5AI score0.00634EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2021/07/07 12:21 p.m.12 views

CVE-2021-34625 WP Upload Restriction <= 2.2.3 - Authenticated Stored Cross-Site Scripting

A vulnerability in the saveCustomType function of the WP Upload Restriction WordPress plugin allows low-level authenticated users to inject arbitrary web scripts. This issue affects versions 2.2.3 and prior...

6.4CVSS6.4AI score0.00634EPSS
Exploits1References1
CVE
CVE
added 2021/07/07 12:21 p.m.42 views

CVE-2021-34627

The CVE refers to WP Upload Restriction WordPress plugin vulnerability in getSelectedMimeTypesByRole, affecting versions 2.2.3 and earlier. The issue allows a low‑level authenticated user to view custom extensions added by administrators, indicating an access‑control weakness in the role/ mime-ty...

4.3CVSS4.4AI score0.007EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/07/07 12:21 p.m.21 views

CVE-2021-34627 WP Upload Restriction <= 2.2.3 - Missing Access Control in getSelectedMimeTypesByRole function

A vulnerability in the getSelectedMimeTypesByRole function of the WP Upload Restriction WordPress plugin allows low-level authenticated users to view custom extensions added by administrators. This issue affects versions 2.2.3 and prior...

4.3CVSS4.8AI score0.007EPSS
Exploits0References1
CVE
CVE
added 2021/07/07 12:21 p.m.44 views

CVE-2021-34626

The CVE-2021-34626 issue affects the WordPress plugin WP Upload Restriction , specifically versions 2.2.3 and prior . The root cause is a missing access control in the deleteCustomType function, allowing low‑level authenticated users to delete custom extensions added by administrators. Documented...

4.3CVSS4.5AI score0.0069EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder