|
255231
|
7.5 |
HIGH
Network
|
simplessus
|
simplessus
|
A vulnerability was found in Simplessus 3.7.7. It has been declared as critical. This vulnerability affects unknown code of the component Cookie Handler. The manipulation of the argument UWA_SID lead…
|
CWE-89
SQL Injection
|
CVE-2017-20104
|
2024-11-21 12:22 |
2022-06-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255232
|
8.8 |
HIGH
Network
|
wp-kama
|
kama_click_counter
|
A vulnerability classified as critical has been found in Kama Click Counter Plugin up to 3.4.8. This affects an unknown part of the file wp-admin/admin.php. The manipulation of the argument order_by/…
|
CWE-89
SQL Injection
|
CVE-2017-20103
|
2024-11-21 12:22 |
2022-06-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255233
|
9.8 |
CRITICAL
Network
|
analytics_stats_counter_statistics_project
|
analytics_stats_counter_statistics
|
A vulnerability was found in Analytics Stats Counter Statistics Plugin 1.2.2.5 and classified as critical. This issue affects some unknown processing. The manipulation leads to code injection. The at…
|
CWE-94
Code Injection
|
CVE-2017-20099
|
2024-11-21 12:22 |
2022-06-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255234
|
4.8 |
MEDIUM
Network
|
weblizar
|
admin_custom_login
|
A vulnerability was found in Admin Custom Login Plugin 2.4.5.2. It has been classified as problematic. Affected is an unknown function. The manipulation leads to basic cross site scripting (Persisten…
|
CWE-79
Cross-site Scripting
|
CVE-2017-20098
|
2024-11-21 12:22 |
2022-06-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255235
|
5.5 |
MEDIUM
Local
|
album_lock_project
|
album_lock
|
A vulnerability was found in Album Lock 4.0 and classified as critical. Affected by this issue is some unknown functionality of the file /getImage. The manipulation of the argument filePaht leads to …
|
CWE-22
Path Traversal
|
CVE-2017-20102
|
2024-11-21 12:22 |
2022-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255236
|
5.7 |
MEDIUM
Network
|
projectsend
|
projectsend
|
A vulnerability, which was classified as problematic, was found in ProjectSend r754. This affects an unknown part of the file process.php?do=zip_download. The manipulation of the argument client/file…
|
CWE-639
Authorization Bypass Through User-Controlled Key
|
CVE-2017-20101
|
2024-11-21 12:22 |
2022-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255237
|
6.1 |
MEDIUM
Network
|
air_transfer_project
|
air_transfer
|
A vulnerability was found in Air Transfer 1.0.14/1.2.1. It has been rated as problematic. Affected by this issue is some unknown functionality. The manipulation leads to basic cross site scripting. T…
|
CWE-79
Cross-site Scripting
|
CVE-2017-20100
|
2024-11-21 12:22 |
2022-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255238
|
6.1 |
MEDIUM
Network
|
wp-filebase_download_manager_project
|
wp-filebase_download_manager
|
A vulnerability was found in WP-Filebase Download Manager Plugin 3.4.4. It has been rated as problematic. Affected by this issue is some unknown functionality. The manipulation leads to basic cross s…
|
CWE-79
Cross-site Scripting
|
CVE-2017-20097
|
2024-11-21 12:22 |
2022-06-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255239
|
6.1 |
MEDIUM
Network
|
wp-spamfree_anti-spam_project
|
wp-spamfree_anti-spam
|
A vulnerability classified as problematic has been found in WP-SpamFree Anti-Spam Plugin 2.1.1.4. This affects an unknown part. The manipulation leads to basic cross site scripting. It is possible to…
|
CWE-79
Cross-site Scripting
|
CVE-2017-20096
|
2024-11-21 12:22 |
2022-06-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255240
|
9.8 |
CRITICAL
Network
|
simple_ads_manager_project
|
simple_ads_manager
|
A vulnerability classified as critical was found in Simple Ads Manager Plugin. This vulnerability affects unknown code. The manipulation leads to code injection. The attack can be initiated remotely.
|
CWE-94
Code Injection
|
CVE-2017-20095
|
2024-11-21 12:22 |
2022-06-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
