Latest 7 days CVE Lists

Latest 7 days CVE Lists 피드 구독하기
This feed contains the most recent CVE cyber vulnerabilities published within the National Vulnerability Database.
업데이트: 5시간 25분 지남

CVE-2018-20983

목, 2019/08/22 - 11:15오후
The wp-retina-2x plugin before 5.2.3 for WordPress has XSS.

CVE-2018-20984

목, 2019/08/22 - 11:15오후
The patreon-connect plugin before 1.2.2 for WordPress has Object Injection.

CVE-2018-20985

목, 2019/08/22 - 11:15오후
The wp-payeezy-pay plugin before 2.98 for WordPress has local file inclusion in pay.php, donate.php, donate-rec, and pay-rec.

CVE-2008-7321

목, 2019/08/22 - 11:15오후
The tubepress plugin before 1.6.5 for WordPress has XSS.

CVE-2013-7482

목, 2019/08/22 - 11:15오후
The reflex-gallery plugin before 1.4.3 for WordPress has XSS.

CVE-2014-10383

목, 2019/08/22 - 11:15오후
The memphis-documents-library plugin before 3.0 for WordPress has Remote File Inclusion.

CVE-2014-10384

목, 2019/08/22 - 11:15오후
The memphis-documents-library plugin before 3.0 for WordPress has Local File Inclusion.

CVE-2014-10385

목, 2019/08/22 - 11:15오후
The memphis-documents-library plugin before 3.0 for WordPress has XSS via $_REQUEST.

CVE-2015-9337

목, 2019/08/22 - 11:15오후
The profile-builder plugin before 2.1.4 for WordPress has no access control for activating or deactivating addons via AJAX.

CVE-2016-10922

목, 2019/08/22 - 11:15오후
The woocommerce-store-toolkit plugin before 1.5.7 for WordPress has privilege escalation.

CVE-2016-10923

목, 2019/08/22 - 11:15오후
The woocommerce-store-toolkit plugin before 1.5.8 for WordPress has privilege escalation.

CVE-2016-10924

목, 2019/08/22 - 11:15오후
The ebook-download plugin before 1.2 for WordPress has directory traversal.

CVE-2016-10925

목, 2019/08/22 - 11:15오후
The peters-login-redirect plugin before 2.9.1 for WordPress has XSS during the editing of redirect URLs.

CVE-2016-10926

목, 2019/08/22 - 11:15오후
The nelio-ab-testing plugin before 4.5.9 for WordPress has SSRF in ajax/iesupport.php.

CVE-2016-10927

목, 2019/08/22 - 11:15오후
The nelio-ab-testing plugin before 4.5.11 for WordPress has SSRF in ajax/iesupport.php.

CVE-2017-18576

목, 2019/08/22 - 11:15오후
The event-notifier plugin before 1.2.1 for WordPress has XSS via the loading animation.

CVE-2019-15314

목, 2019/08/22 - 10:15오후
tiki/tiki-upload_file.php in Tiki 18.4 allows remote attackers to upload JavaScript code that is executed upon visiting a tiki/tiki-download_file.php?display&fileId= URI.

CVE-2019-15317

목, 2019/08/22 - 10:15오후
The give plugin before 2.4.7 for WordPress has XSS via a donor name.

CVE-2019-15318

목, 2019/08/22 - 10:15오후
The yikes-inc-easy-mailchimp-extender plugin before 6.5.3 for WordPress has code injection via the admin input field.

CVE-2016-10921

목, 2019/08/22 - 10:15오후
The gallery-photo-gallery plugin before 1.0.1 for WordPress has SQL injection.

페이지