Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
YandaoziPpress0.0.9

4 matches found

CVE
CVEadded 2025/02/20 6:15 p.m.49 views

CVE-2025-25973

A stored Cross Site Scripting vulnerability in the "related recommendations" feature in Ppress v.0.0.9 allows a remote attacker to execute arbitrary code via a crafted script to the article.title, article.category, and article.tags parameters.

6.5CVSS6.5AI score0.0021EPSS
CVE
CVEadded last week6 views

CVE-2025-52159

Hardcoded credentials in default configuration of PPress 0.0.9.

8.8CVSS6.6AI score0.00044EPSS
CVE
CVEadded last week6 views

CVE-2025-54761

An issue was discovered in PPress 0.0.9 allowing attackers to gain escilated privlidges via crafted session cookie.

8CVSS6.8AI score0.00036EPSS
CVE
CVEadded last week6 views

CVE-2025-54815

Server-side template injection (SSTI) vulnerability in PPress 0.0.9 allows attackers to execute arbitrary code via crafted themes.

8.8CVSS7.7AI score0.00079EPSS