Latest 7 days CVE Lists

Latest 7 days CVE Lists 피드 구독하기
This feed contains the most recent CVE cyber vulnerabilities published within the National Vulnerability Database.
업데이트: 4시간 50분 지남

CVE-2019-15329

금, 2019/08/23 - 5:15오전
The import-users-from-csv-with-meta plugin before 1.14.0.3 for WordPress has CSRF.

CVE-2014-10393

금, 2019/08/23 - 5:15오전
The cforms2 plugin before 10.5 for WordPress has XSS.

CVE-2015-9334

금, 2019/08/23 - 5:15오전
The email-newsletter plugin through 20.15 for WordPress has SQL injection.

CVE-2015-9338

금, 2019/08/23 - 5:15오전
The wp-file-upload plugin before 2.5.0 for WordPress has insufficient restrictions on upload of .php files.

CVE-2015-9339

금, 2019/08/23 - 5:15오전
The wp-file-upload plugin before 2.7.1 for WordPress has insufficient restrictions on upload of .js files.

CVE-2015-9340

금, 2019/08/23 - 5:15오전
The wp-file-upload plugin before 3.0.0 for WordPress has insufficient restrictions on upload of php, js, pht, php3, php4, php5, phtml, htm, html, and htaccess files.

CVE-2016-10928

금, 2019/08/23 - 5:15오전
The onelogin-saml-sso plugin before 2.2.0 for WordPress has a hardcoded @@@nopass@@@ password for just-in-time provisioned users.

CVE-2016-10929

금, 2019/08/23 - 5:15오전
The advanced-ajax-page-loader plugin before 2.7.7 for WordPress has no protection against the reading of uploaded files when not logged in.

CVE-2017-18578

금, 2019/08/23 - 5:15오전
The crafty-social-buttons plugin before 1.5.8 for WordPress has XSS.

CVE-2017-18579

금, 2019/08/23 - 5:15오전
The corner-ad plugin before 1.0.8 for WordPress has XSS.

CVE-2017-18585

금, 2019/08/23 - 5:15오전
The posts-in-page plugin before 1.3.0 for WordPress has ic_add_posts template='../ directory traversal.

CVE-2018-20986

금, 2019/08/23 - 5:15오전
The advanced-custom-fields plugin before 5.7.8 for WordPress has XSS by authors.

CVE-2018-20987

금, 2019/08/23 - 5:15오전
The newsletters-lite plugin before 4.6.8.6 for WordPress has PHP object injection.

CVE-2013-7483

금, 2019/08/23 - 5:15오전
The slidedeck2 plugin before 2.3.5 for WordPress has file inclusion.

CVE-2014-10382

금, 2019/08/23 - 5:15오전
The feature-comments plugin before 1.2.5 for WordPress has CSRF for featuring or burying a comment.

CVE-2014-10386

금, 2019/08/23 - 5:15오전
The wp-live-chat-support plugin before 4.1.0 for WordPress has JavaScript injections.

CVE-2019-15330

금, 2019/08/23 - 4:15오전
The webp-express plugin before 0.14.11 for WordPress has insufficient protection against arbitrary file reading.

CVE-2019-15331

금, 2019/08/23 - 4:15오전
The wp-support-plus-responsive-ticket-system plugin before 9.1.2 for WordPress has HTML injection.

CVE-2016-10930

금, 2019/08/23 - 4:15오전
The wp-support-plus-responsive-ticket-system plugin before 7.1.0 for WordPress has insecure direct object reference via a ticket number.

CVE-2017-18586

금, 2019/08/23 - 4:15오전
The insert-pages plugin before 3.2.4 for WordPress has directory traversal via custom template paths.

페이지