Lucene search
K

42 matches found

OSV
OSV
added 2024/06/09 11:15 a.m.3 views

CVE-2024-30485

Missing Authorization vulnerability in XLPlugins Finale Lite.This issue affects Finale Lite: from n/a through 2.18.0...

8.8CVSS7.3AI score0.01038EPSS
Exploits1References1
OSV
OSV
added 2024/06/09 11:15 a.m.5 views

CVE-2024-25092

Missing Authorization vulnerability in XLPlugins NextMove Lite.This issue affects NextMove Lite: from n/a through 2.17.0...

8.8CVSS7.3AI score0.01376EPSS
Exploits3References1
NVD
NVD
added 2024/06/09 11:15 a.m.39 views

CVE-2024-25092

Missing Authorization vulnerability in XLPlugins NextMove Lite.This issue affects NextMove Lite: from n/a through 2.17.0...

8.8CVSS0.01376EPSS
Exploits3References1
Cvelist
Cvelist
added 2024/06/09 10:58 a.m.32 views

CVE-2024-30485 WordPress Finale Lite plugin <= 2.18.0 - Subscriber+ Arbitrary Plugin Installation/Activation vulnerability

Missing Authorization vulnerability in XLPlugins Finale Lite.This issue affects Finale Lite: from n/a through 2.18.0...

8.8CVSS0.01038EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2024/06/09 10:58 a.m.16 views

CVE-2024-30485 WordPress Finale Lite plugin <= 2.18.0 - Subscriber+ Arbitrary Plugin Installation/Activation vulnerability

Missing Authorization vulnerability in XLPlugins Finale Lite.This issue affects Finale Lite: from n/a through 2.18.0...

8.8CVSS6.9AI score0.01038EPSS
Exploits1References1
CVE
CVE
added 2024/06/09 10:58 a.m.73 views

CVE-2024-30485

CVE-2024-30485 corresponds to a Missing Authorization vulnerability in the WordPress plugin Finale Lite. The record notes affected versions “through 2.18.0” and indicates a proof-of-concept/exploitation path exists that can allow an attacker to install and activate arbitrary plugins, as seen in c...

8.8CVSS8.8AI score0.01038EPSS
Exploits1References1Affected Software1
NVD
NVD
added 2024/04/15 9:15 a.m.12 views

CVE-2024-32104

Cross-Site Request Forgery CSRF vulnerability in XLPlugins NextMove Lite.This issue affects NextMove Lite: from n/a through 2.18.1...

4.3CVSS4.6AI score0.00676EPSS
Exploits0References1
OSV
OSV
added 2024/04/15 9:15 a.m.3 views

CVE-2024-32104

Cross-Site Request Forgery CSRF vulnerability in XLPlugins NextMove Lite.This issue affects NextMove Lite: from n/a through 2.18.1...

4.3CVSS5.8AI score0.00676EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/04/15 8:43 a.m.19 views

CVE-2024-32104 WordPress NextMove Lite plugin <= 2.18.1 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in XLPlugins NextMove Lite.This issue affects NextMove Lite: from n/a through 2.18.1...

4.3CVSS5AI score0.00676EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/04/15 8:43 a.m.16 views

CVE-2024-32104 WordPress NextMove Lite plugin <= 2.18.1 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in XLPlugins NextMove Lite.This issue affects NextMove Lite: from n/a through 2.18.1...

4.3CVSS5.1AI score0.00676EPSS
Exploits0References1
CVE
CVE
added 2024/04/15 8:43 a.m.59 views

CVE-2024-32104

CVE-2024-32104 is a CSRF vulnerability affecting XLPlugins NextMove Lite (NextMove Lite: n/a through 2.18.1). The embedded CVSS details show the attack vector as Network, no confidentiality impact, low integrity impact, and no availability impact, with user interaction required and no privileges ...

4.3CVSS5.1AI score0.00676EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2024/04/11 1:15 p.m.1 views

CVE-2024-32107

Cross-Site Request Forgery CSRF vulnerability in XLPlugins Finale Lite.This issue affects Finale Lite: from n/a through 2.18.0...

4.3CVSS5.8AI score
Exploits0References1
NVD
NVD
added 2024/04/11 1:15 p.m.20 views

CVE-2024-32107

Cross-Site Request Forgery CSRF vulnerability in XLPlugins Finale Lite.This issue affects Finale Lite: from n/a through 2.18.0...

4.3CVSS4.6AI score0.00214EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/04/11 12:59 p.m.22 views

CVE-2024-32107 WordPress Finale Lite plugin <= 2.18.0 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in XLPlugins Finale Lite.This issue affects Finale Lite: from n/a through 2.18.0...

4.3CVSS4.9AI score0.00214EPSS
Exploits0References1
CVE
CVE
added 2024/04/11 12:59 p.m.58 views

CVE-2024-32107

CVE-2024-32107 is a CSRF vulnerability in Finale Lite – Sales Countdown Timer & Discount for WooCommerce (Finale Lite) affecting versions up to 2.18.0. The issue has a CVSS v3.1 base score of 4.3 (Medium) with network attack vector, low attack complexity, and user interaction required. Remediatio...

4.3CVSS5.1AI score0.00214EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2024/04/11 12:0 a.m.4 views

PT-2024-24413

Name of the Vulnerable Software and Affected Versions XLPlugins Finale Lite versions 2.18.0 and earlier Description The issue is a Cross-Site Request Forgery CSRF vulnerability. This type of vulnerability allows an attacker to trick a user into performing unintended actions on a web application...

4.3CVSS5.3AI score0.00214EPSS
Exploits0References5
OSV
OSV
added 2023/09/04 10:15 a.m.0 views

CVE-2023-39162

Unauth. Reflected Cross-Site Scripting XSS vulnerability in XLPlugins User Email Verification for WooCommerce plugin = 3.5.0 versions...

6.1CVSS7.3AI score
Exploits0References1
NVD
NVD
added 2023/09/04 10:15 a.m.37 views

CVE-2023-39162

Unauth. Reflected Cross-Site Scripting XSS vulnerability in XLPlugins User Email Verification for WooCommerce plugin = 3.5.0 versions...

7.1CVSS6.3AI score0.00324EPSS
Exploits0References1
Prion
Prion
added 2023/09/04 10:15 a.m.20 views

Cross site scripting

Unauth. Reflected Cross-Site Scripting XSS vulnerability in XLPlugins User Email Verification for WooCommerce plugin = 3.5.0 versions...

5.8CVSS6AI score0.00324EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/09/04 9:46 a.m.39 views

CVE-2023-39162 WordPress User Email Verification for WooCommerce Plugin <= 3.5.0 is vulnerable to Cross Site Scripting (XSS)

Unauth. Reflected Cross-Site Scripting XSS vulnerability in XLPlugins User Email Verification for WooCommerce plugin = 3.5.0 versions...

7.1CVSS6.4AI score0.00324EPSS
Exploits0References1
Rows per page
Query Builder