NAME__________IS Decisions UserLock MFA security bypassPlatforms Affected:IS Decisions UserLock MFA 11.01Risk Level:5.3Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________IS Decisions UserLock MFA could allow a...
NAME__________Community Events Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Community Events Plugin for WordPress 1.4.8Risk Level:4.8Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Community Events Plugin for...
NAME__________Very Simple Google Maps Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Very Simple Google Maps Plugin for WordPress 2.8.4Risk Level:6.5Exploitability:HighConsequences:Cross-Site Scripting...
NAME__________Connect Contact Form 7, WooCommerce To Google Sheets & Other Platforms Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Connect Contact Form...
NAME__________DataEase SQL injectionPlatforms Affected:DataEase DataEase 1.18.4Risk Level:6.5Exploitability:UnprovenConsequences:Data Manipulation DESCRIPTION__________DataEase is vulnerable to SQL injection. A remote attacker could send specially...
NAME__________Blockonomics Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Smart Slider 3 Plugin for WordPress 3.5.7Risk Level:7.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Blockonomics Plugin for WordPress...
NAME__________Top 10 Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Top 10 Plugin for WordPress 3.2.4Risk Level:5.9Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Top 10 Plugin for...
NAME__________WP eBay Product Feeds Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress WP eBay Product Feeds Plugin for WordPress 3.3.1Risk Level:5.9Exploitability:HighConsequences:Cross-Site Scripting...
NAME__________OOPSpam Anti-Spam Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress OOPSpam Anti-Spam Plugin for WordPress 1.1.35Risk Level:5.9Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________OOPSpam Anti-Spam Plugin for...
NAME__________WP Flipclock Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress WP Flipclock Plugin for WordPress 1.7.4Risk Level:6.5Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________WP Flipclock Plugin for...
NAME__________GeoNode information disclosurePlatforms Affected:GeoNode GeoNode 2.18 GeoNode GeoNode 2.19 GeoNode GeoNode 2.20Risk Level:7.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________GeoNode could allow a remote attacker...
NAME__________Directus information disclosurePlatforms Affected:Directus Directus 9.23.1Risk Level:4.2Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Directus could allow a local authenticated attacker to obtain sensitive information, caused...
NAME__________CP Plus KVMS Pro information disclosurePlatforms Affected:CP Plus KVMS Pro 2.01.0.T.190521Risk Level:7.8Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________CP Plus KVMS Pro could allow a...
NAME__________Dino security bypassPlatforms Affected:Dino Dino 0.2.2 Dino Dino 0.3.0 Dino Dino 0.3.1 Dino Dino 0.4.0 Dino Dino 0.4.1Risk Level:5.3Exploitability:UnprovenConsequences:Bypass Security...
NAME__________Devolutions Server security bypassPlatforms Affected:Devolutions Devolutions Server 2022.3.13Risk Level:7.3Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Devolutions Server could allow a remote authenticated attacker to bypass...
NAME__________ProPump and Controls Osprey Pump Controller cross-site request forgeryPlatforms Affected:Risk Level:7.1Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________ProPump and Controls Osprey Pump Controller is vulnerable...
NAME__________Devolutions Remote Desktop Manager security bypassPlatforms Affected:Devolutions Remote Desktop Manager 2023.1.9Risk Level:7.3Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Devolutions Remote Desktop Manager could allow a...
NAME__________novel-plus SQL injectionPlatforms Affected:Risk Level:6.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________novel-plus is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements...
NAME__________novel-plus SQL injectionPlatforms Affected:Risk Level:6.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________novel-plus is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements...
NAME__________ProPump and Controls Osprey Pump Controller cross-site scriptingPlatforms Affected:Risk Level:7.5Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________ProPump and Controls Osprey Pump Controller is vulnerable to...
NAME__________ProPump and Controls Osprey Pump Controller information disclosurePlatforms Affected:Risk Level:7.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________ProPump and Controls Osprey Pump Controller could allow a...
NAME__________Sauter EY-AS525F001 with moduWeb file uploadPlatforms Affected:Risk Level:6.5Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Sauter EY-AS525F001 with moduWeb could allow a remote authenticated attacker to...
NAME__________Microsoft Edge (Chromium-based) privilege escalationPlatforms Affected:Microsoft Edge (Chromium-based)Risk Level:6.1Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION__________Microsoft Edge (Chromium-based) could allow a local authenticated attacker to...
NAME__________Loan Management System SQL injectionPlatforms Affected:Sourcecodester Loan Management System 1.0Risk Level:6.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Loan Management System is vulnerable to SQL injection....
