exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 1 894

CVE-2019-20041

больше 5 лет назад

wp_kses_bad_protocol in wp-includes/kses.php in WordPress before 5.3.1 ...

CVSS3: 9.8

EPSS: Низкий

CVE-2019-17675

почти 6 лет назад

WordPress before 5.2.4 does not properly consider type confusion during validation of the referer in the admin pages, possibly leading to CSRF.

CVSS3: 8.8

EPSS: Низкий

CVE-2019-17675

почти 6 лет назад

WordPress before 5.2.4 does not properly consider type confusion during validation of the referer in the admin pages, possibly leading to CSRF.

CVSS3: 8.8

EPSS: Низкий

CVE-2019-17675

почти 6 лет назад

WordPress before 5.2.4 does not properly consider type confusion durin ...

CVSS3: 8.8

EPSS: Низкий

CVE-2019-17674

почти 6 лет назад

WordPress before 5.2.4 is vulnerable to stored XSS (cross-site scripting) via the Customizer.

CVSS3: 5.4

EPSS: Низкий

CVE-2019-17674

почти 6 лет назад

WordPress before 5.2.4 is vulnerable to stored XSS (cross-site scripting) via the Customizer.

CVSS3: 5.4

EPSS: Низкий

CVE-2019-17674

почти 6 лет назад

WordPress before 5.2.4 is vulnerable to stored XSS (cross-site scripti ...

CVSS3: 5.4

EPSS: Низкий

CVE-2019-17673

почти 6 лет назад

WordPress before 5.2.4 is vulnerable to poisoning of the cache of JSON GET requests because certain requests lack a Vary: Origin header.

CVSS3: 7.5

EPSS: Низкий

CVE-2019-17673

почти 6 лет назад

WordPress before 5.2.4 is vulnerable to poisoning of the cache of JSON GET requests because certain requests lack a Vary: Origin header.

CVSS3: 7.5

EPSS: Низкий

CVE-2019-17673

почти 6 лет назад

WordPress before 5.2.4 is vulnerable to poisoning of the cache of JSON ...

CVSS3: 7.5

EPSS: Низкий

CVE-2019-17672

почти 6 лет назад

WordPress before 5.2.4 is vulnerable to a stored XSS attack to inject JavaScript into STYLE elements.

CVSS3: 6.1

EPSS: Низкий

CVE-2019-17672

почти 6 лет назад

WordPress before 5.2.4 is vulnerable to a stored XSS attack to inject JavaScript into STYLE elements.

CVSS3: 6.1

EPSS: Низкий

CVE-2019-17672

почти 6 лет назад

WordPress before 5.2.4 is vulnerable to a stored XSS attack to inject ...

CVSS3: 6.1

EPSS: Низкий

CVE-2019-17671

почти 6 лет назад

In WordPress before 5.2.4, unauthenticated viewing of certain content is possible because the static query property is mishandled.

CVSS3: 5.3

EPSS: Высокий

CVE-2019-17671

почти 6 лет назад

In WordPress before 5.2.4, unauthenticated viewing of certain content is possible because the static query property is mishandled.

CVSS3: 5.3

EPSS: Высокий

CVE-2019-17671

почти 6 лет назад

In WordPress before 5.2.4, unauthenticated viewing of certain content ...

CVSS3: 5.3

EPSS: Высокий

CVE-2019-17670

почти 6 лет назад

WordPress before 5.2.4 has a Server Side Request Forgery (SSRF) vulnerability because Windows paths are mishandled during certain validation of relative URLs.

CVSS3: 9.8

EPSS: Низкий

CVE-2019-17670

почти 6 лет назад

WordPress before 5.2.4 has a Server Side Request Forgery (SSRF) vulnerability because Windows paths are mishandled during certain validation of relative URLs.

CVSS3: 9.8

EPSS: Низкий

CVE-2019-17670

почти 6 лет назад

WordPress before 5.2.4 has a Server Side Request Forgery (SSRF) vulner ...

CVSS3: 9.8

EPSS: Низкий

CVE-2019-17669

почти 6 лет назад

WordPress before 5.2.4 has a Server Side Request Forgery (SSRF) vulnerability because URL validation does not consider the interpretation of a name as a series of hex characters.

CVSS3: 9.8

EPSS: Средний

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2019-20041 wp_kses_bad_protocol in wp-includes/kses.php in WordPress before 5.3.1 ...	CVSS3: 9.8	3% Низкий	больше 5 лет назад
CVE-2019-17675 WordPress before 5.2.4 does not properly consider type confusion during validation of the referer in the admin pages, possibly leading to CSRF.	CVSS3: 8.8	4% Низкий	почти 6 лет назад
CVE-2019-17675 WordPress before 5.2.4 does not properly consider type confusion during validation of the referer in the admin pages, possibly leading to CSRF.	CVSS3: 8.8	4% Низкий	почти 6 лет назад
CVE-2019-17675 WordPress before 5.2.4 does not properly consider type confusion durin ...	CVSS3: 8.8	4% Низкий	почти 6 лет назад
CVE-2019-17674 WordPress before 5.2.4 is vulnerable to stored XSS (cross-site scripting) via the Customizer.	CVSS3: 5.4	2% Низкий	почти 6 лет назад
CVE-2019-17674 WordPress before 5.2.4 is vulnerable to stored XSS (cross-site scripting) via the Customizer.	CVSS3: 5.4	2% Низкий	почти 6 лет назад
CVE-2019-17674 WordPress before 5.2.4 is vulnerable to stored XSS (cross-site scripti ...	CVSS3: 5.4	2% Низкий	почти 6 лет назад
CVE-2019-17673 WordPress before 5.2.4 is vulnerable to poisoning of the cache of JSON GET requests because certain requests lack a Vary: Origin header.	CVSS3: 7.5	4% Низкий	почти 6 лет назад
CVE-2019-17673 WordPress before 5.2.4 is vulnerable to poisoning of the cache of JSON GET requests because certain requests lack a Vary: Origin header.	CVSS3: 7.5	4% Низкий	почти 6 лет назад
CVE-2019-17673 WordPress before 5.2.4 is vulnerable to poisoning of the cache of JSON ...	CVSS3: 7.5	4% Низкий	почти 6 лет назад
CVE-2019-17672 WordPress before 5.2.4 is vulnerable to a stored XSS attack to inject JavaScript into STYLE elements.	CVSS3: 6.1	3% Низкий	почти 6 лет назад
CVE-2019-17672 WordPress before 5.2.4 is vulnerable to a stored XSS attack to inject JavaScript into STYLE elements.	CVSS3: 6.1	3% Низкий	почти 6 лет назад
CVE-2019-17672 WordPress before 5.2.4 is vulnerable to a stored XSS attack to inject ...	CVSS3: 6.1	3% Низкий	почти 6 лет назад
CVE-2019-17671 In WordPress before 5.2.4, unauthenticated viewing of certain content is possible because the static query property is mishandled.	CVSS3: 5.3	73% Высокий	почти 6 лет назад
CVE-2019-17671 In WordPress before 5.2.4, unauthenticated viewing of certain content is possible because the static query property is mishandled.	CVSS3: 5.3	73% Высокий	почти 6 лет назад
CVE-2019-17671 In WordPress before 5.2.4, unauthenticated viewing of certain content ...	CVSS3: 5.3	73% Высокий	почти 6 лет назад
CVE-2019-17670 WordPress before 5.2.4 has a Server Side Request Forgery (SSRF) vulnerability because Windows paths are mishandled during certain validation of relative URLs.	CVSS3: 9.8	5% Низкий	почти 6 лет назад
CVE-2019-17670 WordPress before 5.2.4 has a Server Side Request Forgery (SSRF) vulnerability because Windows paths are mishandled during certain validation of relative URLs.	CVSS3: 9.8	5% Низкий	почти 6 лет назад
CVE-2019-17670 WordPress before 5.2.4 has a Server Side Request Forgery (SSRF) vulner ...	CVSS3: 9.8	5% Низкий	почти 6 лет назад
CVE-2019-17669 WordPress before 5.2.4 has a Server Side Request Forgery (SSRF) vulnerability because URL validation does not consider the interpretation of a name as a series of hex characters.	CVSS3: 9.8	11% Средний	почти 6 лет назад

Уязвимостей на страницу