Lucene search
K

169 matches found

RedhatCVE
RedhatCVE
added 2025/02/04 10:31 p.m.11 views

CVE-2024-8316

In Progress Telerik UI for WPF versions prior to 2024 Q3 2024.3.924, a code execution attack is possible through an insecure deserialization vulnerability...

7.8CVSS7.5AI score0.00246EPSS
Exploits0References1
NVD
NVD
added 2025/01/16 9:15 p.m.24 views

CVE-2025-23933

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in wpfreeware WpF Ultimate Carousel wpf-ultimate-carousel allows Stored XSS.This issue affects WpF Ultimate Carousel: from n/a through = 1.0.11...

6.5CVSS0.0022EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/01/16 8:7 p.m.6 views

CVE-2025-23933 WordPress WpF Ultimate Carousel plugin <= 1.0.11 - Stored Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in wpfreeware WpF Ultimate Carousel wpf-ultimate-carousel allows Stored XSS.This issue affects WpF Ultimate Carousel: from n/a through = 1.0.11...

6.5CVSS7.2AI score0.0022EPSS
Exploits0References1
CVE
CVE
added 2025/01/16 8:7 p.m.55 views

CVE-2025-23933

CVE-2025-23933 affects WpF Ultimate Carousel (WpFreeware) up to version 1.0.11 with Stored XSS due to improper input neutralization during web page generation. Public sources (Red Hat and Wordfence) confirm this vulnerability exists and is currently Unpatched; no exploitation details are provided...

6.5CVSS7.2AI score0.0022EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/01/16 8:7 p.m.20 views

CVE-2025-23933 WordPress WpF Ultimate Carousel plugin <= 1.0.11 - Stored Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in wpfreeware WpF Ultimate Carousel wpf-ultimate-carousel allows Stored XSS.This issue affects WpF Ultimate Carousel: from n/a through = 1.0.11...

6.5CVSS0.0022EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/01/16 6:43 p.m.4 views

WordPress WpF Ultimate Carousel plugin <= 1.0.11 - Stored Cross Site Scripting (XSS) vulnerability

Stored Cross Site Scripting XSS vulnerability discovered by SOPROBRO in WordPress Plugin WpF Ultimate Carousel versions = 1.0.11...

6.5CVSS5.8AI score0.0022EPSS
Exploits0Affected Software1
CNNVD
CNNVD
added 2025/01/16 12:0 a.m.4 views

WordPress plugin WpF Ultimate Carousel 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

6.5CVSS7.8AI score0.0022EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/12/19 12:0 a.m.19 views

Progress Telerik UI for WPF 2024.4.1213 (CVE-2024-10095)

The version of Progress Telerik UI for WPF installed on the remote host is prior to 2024.4.1213. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-10095 advisory. - In Progress Telerik UI for WPF versions prior to 2024 Q4 2024.4.1213, a code execution attack is possible...

9.8CVSS6.3AI score0.00743EPSS
Exploits0References2
OSV
OSV
added 2024/12/16 5:15 p.m.3 views

CVE-2024-10095

In Progress Telerik UI for WPF versions prior to 2024 Q4 2024.4.1213, a code execution attack is possible through an insecure deserialization vulnerability...

9.8CVSS6.2AI score0.00743EPSS
Exploits0References1
NVD
NVD
added 2024/12/16 5:15 p.m.12 views

CVE-2024-10095

In Progress Telerik UI for WPF versions prior to 2024 Q4 2024.4.1213, a code execution attack is possible through an insecure deserialization vulnerability...

9.8CVSS0.00743EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/12/16 4:59 p.m.18 views

CVE-2024-10095 Progress UI for WPF format provider unsafe deserialization vulnerability

In Progress Telerik UI for WPF versions prior to 2024 Q4 2024.4.1213, a code execution attack is possible through an insecure deserialization vulnerability...

8.4CVSS7.5AI score0.00743EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/12/16 4:59 p.m.33 views

CVE-2024-10095 Progress UI for WPF format provider unsafe deserialization vulnerability

In Progress Telerik UI for WPF versions prior to 2024 Q4 2024.4.1213, a code execution attack is possible through an insecure deserialization vulnerability...

8.4CVSS0.00743EPSS
Exploits0References1
CVE
CVE
added 2024/12/16 4:59 p.m.104 views

CVE-2024-10095

CVE-2024-10095 affects Progress Telerik UI for WPF. The vulnerability stems from an insecure deserialization pathway that can enable a code execution attack. Affected products are Telerik UI for WPF versions prior to 2024 Q4 (2024.4.1213). The connected sources consistently describe the issue as ...

9.8CVSS8.6AI score0.00743EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2024/12/16 12:0 a.m.5 views

PT-2024-16023 · Telerik · Telerik Ui For Wpf

Name of the Vulnerable Software and Affected Versions: Telerik UI for WPF versions prior to 2024 Q4 2024.4.1213 Description: A code execution attack is possible through an insecure deserialization vulnerability. This issue affects Telerik UI for WPF and can be exploited, allowing for code...

9.8CVSS7.3AI score0.00743EPSS
Exploits0References14
Tenable Nessus
Tenable Nessus
added 2024/11/21 12:0 a.m.8 views

Telerik UI for WPF < 2024.4.1111 Unsafe Deserialization

The version of Progress Telerik UI for WPF installed on the remote Windows host is prior to 2024 Q4 2024.4.1111. It is, therefore, affected by the following: - In Progress Telerik UI for WPF versions prior to 2024 Q4 2024.4.1111, a code execution attack is possible through an insecure...

7.8CVSS6.3AI score0.00229EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/11/13 3:19 p.m.7 views

CVE-2024-10012 Progress UI for WPF format provider unsafe deserialization vulnerability

In Progress Telerik UI for WPF versions prior to 2024 Q4 2024.4.1111, a code execution attack is possible through an insecure deserialization vulnerability...

7.8CVSS7.5AI score0.00229EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/11/13 3:19 p.m.24 views

CVE-2024-10012 Progress UI for WPF format provider unsafe deserialization vulnerability

In Progress Telerik UI for WPF versions prior to 2024 Q4 2024.4.1111, a code execution attack is possible through an insecure deserialization vulnerability...

7.8CVSS0.00229EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/11/13 12:0 a.m.4 views

PT-2024-15972 · Progress · Telerik Ui For Wpf

Name of the Vulnerable Software and Affected Versions: In Progress Telerik UI for WPF versions prior to 2024 Q4 2024.4.1111 Description: A code execution attack is possible through an insecure deserialization vulnerability. This issue allows for potential code execution, posing a significant risk...

7.8CVSS7.8AI score0.00229EPSS
Exploits0References5
VulnCheck KEV
VulnCheck KEV
added 2024/10/07 12:0 a.m.3 views

VulnCheck KEV: CVE-2024-8316

In Progress Telerik UI for WPF versions prior to 2024 Q3 2024.3.924, a code execution attack is possible through an insecure deserialization vulnerability...

7.8CVSS6.2AI score0.00246EPSS
Exploits0References1
VulnCheck KEV
VulnCheck KEV
added 2024/10/07 12:0 a.m.2 views

VulnCheck KEV: CVE-2024-7576

In Progress Telerik UI for WPF versions prior to 2024 Q3 2024.3.924, a code execution attack is possible through an insecure deserialization vulnerability...

9.8CVSS6.2AI score0.00449EPSS
Exploits0References1
Rows per page
Query Builder