Common Vulnerabilities and Exposures

Find, fix and prevent vulnerabilities in your applications, infrastructure and computers.

Search

Name Severity (CVSSv2) Summary Details
CVE-2019-17237 Medium Severity includes/class-coming-soon-creator.php in the igniteup plugin through 3.4 for WordPress allows CSRF.
CVE-2019-17234 Medium Severity includes/class-coming-soon-creator.php in the igniteup plugin through 3.4 for WordPress allows unauthenticated arbitrary file deletion.
CVE-2019-17235 Medium Severity includes/class-coming-soon-creator.php in the igniteup plugin through 3.4 for WordPress allows information disclosure.
CVE-2019-17235 Medium Severity includes/class-coming-soon-creator.php in the igniteup plugin through 3.4 for WordPress allows information disclosure.
CVE-2019-17234 Medium Severity includes/class-coming-soon-creator.php in the igniteup plugin through 3.4 for WordPress allows unauthenticated arbitrary file deletion.
CVE-2019-18925 High Severity Systematic IRIS WebForms 5.4 and its functionalities can be accessed and used without any form of authentication.
CVE-2019-17236 Medium Severity includes/class-coming-soon-creator.php in the igniteup plugin through 3.4 for WordPress is vulnerable to stored XSS.
CVE-2019-18925 High Severity Systematic IRIS WebForms 5.4 and its functionalities can be accessed and used without any form of authentication.
CVE-2019-17236 Medium Severity includes/class-coming-soon-creator.php in the igniteup plugin through 3.4 for WordPress is vulnerable to stored XSS.
CVE-2019-17237 Medium Severity includes/class-coming-soon-creator.php in the igniteup plugin through 3.4 for WordPress allows CSRF.
CVE-2019-17237 Medium Severity includes/class-coming-soon-creator.php in the igniteup plugin through 3.4 for WordPress allows CSRF.
CVE-2019-18924 Medium Severity Systematic IRIS WebForms 5.4 is vulnerable to directory traversal. By manipulating variables that reference files with ../ (and variations), it is possible to list all the directories and check if a particular file exists.
CVE-2019-17236 Medium Severity includes/class-coming-soon-creator.php in the igniteup plugin through 3.4 for WordPress is vulnerable to stored XSS.
CVE-2019-17234 Medium Severity includes/class-coming-soon-creator.php in the igniteup plugin through 3.4 for WordPress allows unauthenticated arbitrary file deletion.
CVE-2011-2935 Medium Severity Elgg through 1.7.10 has XSS
CVE-2011-2935 Medium Severity Elgg through 1.7.10 has XSS
CVE-2011-3370 Medium Severity statusnet before 0.9.9 has XSS
CVE-2011-2936 High Severity Elgg through 1.7.10 has a SQL injection vulnerability
CVE-2011-2936 High Severity Elgg through 1.7.10 has a SQL injection vulnerability
CVE-2011-3370 Medium Severity statusnet before 0.9.9 has XSS
CVE-2011-3370 Medium Severity statusnet before 0.9.9 has XSS
CVE-2011-2936 High Severity Elgg through 1.7.10 has a SQL injection vulnerability
CVE-2011-2935 Medium Severity Elgg through 1.7.10 has XSS
CVE-2019-18882 Medium Severity WSO2 IS as Key Manager 5.7.0 allows stored XSS in download-userinfo.jag because Content-Type is mishandled.
CVE-2019-18881 Medium Severity WSO2 IS as Key Manager 5.7.0 allows unauthenticated reflected XSS in the dashboard user profile.

Download Mageni's platform.

No credit card is required to download the Free Edition. Register now.