Lucene search

Harish Chouhan, Themeist Security Vulnerabilities

cve

CVE-2014-125099

A vulnerability has been found in I Recommend This Plugin up to 3.7.2 on WordPress and classified as critical. Affected by this vulnerability is an unknown functionality of the file dot-irecommendthis.php. The manipulation leads to sql injection. The attack can be launched remotely. Upgrading to...

9.8CVSS

9.8AI Score

0.001EPSS

2023-04-20 06:15 AM

prion

Cross site request forgery (csrf)

Cross-Site Request Forgery (CSRF) vulnerability in Harish Chouhan, Themeist I Recommend Tplugin <= 3.9.0...

8.8CVSS

7.5AI Score

0.001EPSS

2023-11-12 10:15 PM

cve

CVE-2023-28696

Cross-Site Request Forgery (CSRF) vulnerability in Harish Chouhan, Themeist I Recommend Tplugin <= 3.9.0...

8.8CVSS

8.7AI Score

0.001EPSS

2023-11-12 10:15 PM

nvd

CVE-2023-28696

Cross-Site Request Forgery (CSRF) vulnerability in Harish Chouhan, Themeist I Recommend Tplugin <= 3.9.0...

8.8CVSS

0.001EPSS

2023-11-12 10:15 PM

cvelist

CVE-2023-28696 WordPress I Recommend This Plugin <= 3.9.0 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery (CSRF) vulnerability in Harish Chouhan, Themeist I Recommend Tplugin <= 3.9.0...

4.3CVSS

9AI Score

0.001EPSS

2023-11-12 09:40 PM

prion

Cross site scripting

Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Harish Chouhan, Themeist I Recommend This plugin <= 3.8.3...

4.8CVSS

4.8AI Score

0.0005EPSS

2023-05-16 09:15 AM

cve

CVE-2023-23673

Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Harish Chouhan, Themeist I Recommend This plugin <= 3.8.3...

5.9CVSS

4.8AI Score

0.0005EPSS

2023-05-16 09:15 AM

nvd

CVE-2023-23673

Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Harish Chouhan, Themeist I Recommend This plugin <= 3.8.3...

4.8CVSS

5.4AI Score

0.0005EPSS

2023-05-16 09:15 AM

cvelist

CVE-2023-23673 WordPress I Recommend This Plugin <= 3.8.3 is vulnerable to Cross Site Scripting (XSS)

Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Harish Chouhan, Themeist I Recommend This plugin <= 3.8.3...

5.9CVSS

5.5AI Score

0.0005EPSS

2023-05-16 08:28 AM

packetstorm

GaanaGawaana 1.0 Cross Site Scripting

...

7.1AI Score

2023-05-11 12:00 AM

178

packetstorm

GaanaGawaana 1.0 SQL Injection

...

7.1AI Score

2023-05-11 12:00 AM

195

packetstorm

HouseKit 1.0 Cross Site Scripting

...

7.1AI Score

2023-05-11 12:00 AM

190

packetstorm

HouseKit 1.0 SQL Injection

...

7.1AI Score

2023-05-11 12:00 AM

178

packetstorm

VOTAB Voting Quiz PHP Script 1.0 Cross Site Scripting

...

7.1AI Score

2023-05-10 12:00 AM

184

packetstorm

VOTAB Voting Quiz PHP Script 1.0 SQL Injection

...

7.1AI Score

2023-05-10 12:00 AM

176

patchstack

WordPress Image Photo Gallery Final Tiles Grid plugin <= 3.5.2 - Stored Cross-Site Scripting (XSS) vulnerability

Stored Cross-Site Scripting (XSS) vulnerability discovered by Harshit (aka fumenoid) and Sidhhant Chouhan (aka sidchn) in WordPress Image Photo Gallery Final Tiles Grid plugin (versions <= 3.5.2). Solution Update the WordPress Image Photo Gallery Final Tiles Grid plugin to the latest...

5.4CVSS

1.2AI Score

0.001EPSS

2022-01-18 12:00 AM

oraclelinux

Unbreakable Enterprise kernel-container security update

[5.4.17-2102.205.7.2.el7] - btrfs: fix race between marking inode needs to be logged and log syncing (Filipe Manana) [Orabug: 33349276] [5.4.17-2102.205.7.1] - RDMA/cma: Revert INIT-INIT patch (Mike Marciniszyn) [Orabug: 33306518] [5.4.17-2102.205.7] - rds: ib: Set SEND_SIGNALED on the last WR...

8.8CVSS

-0.2AI Score

0.001EPSS

2021-09-16 12:00 AM

cve

CVE-2014-10376

The i-recommend-this plugin before 3.7.3 for WordPress has SQL...

9.8CVSS

9.9AI Score

0.001EPSS

2019-08-16 09:15 PM

324