Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

planet planet vulnerabilities and exploits

(subscribe to this query)
NA
CVE-2024-2740
Information exposure vulnerability in Planet IGS-4215-16T2S, affecting firmware version 1.305b210528. This vulnerability could allow a remote malicious user to access some administrative resources due to lack of proper management of the Switch web interface.
NA
CVE-2024-2741
Cross-Site Request Forgery (CSRF) vulnerability in Planet IGS-4215-16T2S, affecting firmware version 1.305b210528. This vulnerability could allow a remote malicious user to trick some authenticated users into performing actions in their session, such as adding or updating account...
NA
CVE-2024-2742
Operating system command injection vulnerability in Planet IGS-4215-16T2S, affecting firmware version 1.305b210528. An authenticated attacker could execute arbitrary code on the remote host by exploiting IP address functionality.
NA
CVE-2024-2005
In Blue Planet® products up to and including 22.12, a misconfiguration in the SAML implementation allows for privilege escalation. Only products using SAML authentication are affected. Blue Planet® has released software updates that address this vulnerability for the aff...
NA
CVE-2015-10129
A vulnerability was found in planet-freo up to 20150116 and classified as problematic. Affected by this issue is some unknown functionality of the file admin/inc/auth.inc.php. The manipulation of the argument auth leads to incorrect comparison. The attack may be launched remotely...
Samwilson Planet-freo
NA
CVE-2023-45603
Unrestricted Upload of File with Dangerous Type vulnerability in Jeff Starr User Submitted Posts – Enable Users to Submit Posts from the Front End.This issue affects User Submitted Posts – Enable Users to Submit Posts from the Front End: from n/a up to and including 2...
Plugin-planet User Submitted Posts
NA
CVE-2023-49743
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Jeff Starr Dashboard Widgets Suite allows Stored XSS.This issue affects Dashboard Widgets Suite: from n/a up to and including 3.4.1.
Plugin-planet Dashboard Widget Suite
NA
CVE-2023-6466
A vulnerability was found in Thecosy IceCMS 2.0.1. It has been declared as problematic. This vulnerability affects unknown code of the file /planet of the component User Comment Handler. The manipulation leads to cross site scripting. The attack can be initiated remotely. The exp...
Thecosy Icecms 2.0.1
NA
CVE-2023-5614
The Theme Switcha plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'theme_switcha_list' shortcode in all versions up to, and including, 3.3 due to insufficient input sanitization and output escaping on user supplied attributes. Thi...
Plugin-planet Theme Switcha
NA
CVE-2023-4838
The Simple Download Counter plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's shortcodes in versions up to, and including, 1.6 due to insufficient input sanitization and output escaping on user supplied attributes like 'before' and ...
Plugin-planet Simple Download Counter
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-17519open redirectCVE-2024-21683cache poisoningCVE-2021-47524CVE-2021-47521CVE-2024-5229CVE-2021-47560local
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook