Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
seur oficial project seur oficial vulnerabilities and exploits
(subscribe to this query)
4
CVSSv2
CVE-2021-25004
The SEUR Oficial WordPress plugin prior to 1.7.2 creates a PHP file with a random name when installed, even though it is used for support purposes, it allows to download any file from the web server without restriction after knowing the URL and a password than an administrator ca...
Seur Oficial Project Seur Oficial
3.5
CVSSv2
CVE-2021-25005
The SEUR Oficial WordPress plugin prior to 1.7.0 does not sanitize and escape some of its settings allowing high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed
Seur Oficial Project Seur Oficial
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
privilege escalation
CVE-2024-20696
CVE-2024-29829
CVE-2024-33999
CVE-2024-35646
physical
CVE-2024-24919
CVE-2024-31030
local users
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started