|
781
|
- |
|
-
|
-
|
The Maps Plugin using Google Maps for WordPress WordPress plugin before 1.9.4 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Store…
|
-
|
CVE-2024-13306
|
2025-02-19 06:15 |
2025-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
782
|
- |
|
-
|
-
|
The Maps Plugin using Google Maps for WordPress WordPress plugin before 1.9.4 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Store…
|
-
|
CVE-2024-13208
|
2025-02-19 06:15 |
2025-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
783
|
- |
|
-
|
-
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in awsm.in Drivr Lite – Google Drive Plugin allows Stored XSS. This issue affects Drivr Lite – Googl…
|
CWE-79
Cross-site Scripting
|
CVE-2025-27016
|
2025-02-19 05:15 |
2025-02-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
784
|
- |
|
-
|
-
|
Missing Authorization vulnerability in EPC MediCenter - Health Medical Clinic WordPress Theme allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects MediCenter - …
|
CWE-862
Missing Authorization
|
CVE-2025-27013
|
2025-02-19 05:15 |
2025-02-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
785
|
- |
|
-
|
-
|
Exiv2 is a C++ library and a command-line utility to read, write, delete and modify Exif, IPTC, XMP and ICC image metadata. A heap buffer overflow was found in Exiv2 versions v0.28.0 to v0.28.4. Vers…
|
CWE-416
Use After Free
|
CVE-2025-26623
|
2025-02-19 05:15 |
2025-02-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
786
|
- |
|
-
|
-
|
Discord-Bot-Framework-Kernel is a Discord bot framework built with interactions.py, featuring modular extension management and secure execution. Because of the nature of arbitrary user-submited code …
|
CWE-200
Information Exposure
|
CVE-2025-26604
|
2025-02-19 05:15 |
2025-02-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
787
|
- |
|
-
|
-
|
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in videowhisper Paid Videochat Turnkey Site allows Path Traversal. This issue affects Paid Videochat Turnk…
|
CWE-22
Path Traversal
|
CVE-2025-22663
|
2025-02-19 05:15 |
2025-02-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
788
|
- |
|
-
|
-
|
Missing Authorization vulnerability in Vito Peleg Atarim allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Atarim: from n/a through 4.0.9.
|
CWE-862
Missing Authorization
|
CVE-2025-22657
|
2025-02-19 05:15 |
2025-02-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
789
|
- |
|
-
|
-
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Oscar Alvarez Cookie Monster allows PHP Local File Inclusion. This issue affec…
|
CWE-98
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion')
|
CVE-2025-22656
|
2025-02-19 05:15 |
2025-02-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
790
|
- |
|
-
|
-
|
Unrestricted Upload of File with Dangerous Type vulnerability in kodeshpa Simplified allows Using Malicious Files. This issue affects Simplified: from n/a through 1.0.6.
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2025-22654
|
2025-02-19 05:15 |
2025-02-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
