Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
wolf vulnerabilities and exploits
(subscribe to this query)
4.8
CVSSv3
CVE-2018-1000087
WolfCMS version version 0.8.3.1 contains a Reflected Cross Site Scripting vulnerability in "Create New File" and "Create New Directory" input box from 'files' Tab that can result in Session Hijacking, Spread Worms,Control the browser remotely. . This...
Wolfcms Wolf Cms 0.8.3.1
4.8
CVSSv3
CVE-2018-14837
Wolf CMS 0.8.3.1 has XSS in the Snippets tab, as demonstrated by a ?/admin/snippet/edit/1 URI.
Wolfcms Wolf Cms 0.8.3.1
4.8
CVSSv3
CVE-2018-18823
WolfCMS 0.8.3.1 allows XSS via an SVG file to /?/admin/plugin/file_manager/browse/.
Wolfcms Wolf Cms 0.8.3.1
5.4
CVSSv3
CVE-2017-11611
Wolf CMS 0.8.3.1 allows Cross-Site Scripting (XSS) attacks. The vulnerability exists due to insufficient sanitization of the file name in a "create-file-popup" action, and the directory name in a "create-directory-popup" action, in the HTTP POST method to the ...
Wolfcms Wolf Cms 0.8.3.1
1 Github repository
6.1
CVSSv3
CVE-2019-10646
Wolf CMS v0.8.3.1 is affected by cross site scripting (XSS) in the module Add Snippet (/?/admin/snippet/add). This allows an malicious user to insert arbitrary JavaScript as user input, which will be executed whenever the affected snippet is loaded.
Wolfcms Wolf Cms 0.8.3.1
6.5
CVSSv3
CVE-2018-8814
Cross-site request forgery (CSRF) vulnerability in WolfCMS 0.8.3.1 allows remote malicious users to hijack the authentication of users for requests that modify plugin/[pluginname]/settings by crafting a malicious request.
Wolfcms Wolf Cms 0.8.3.1
1 EDB exploit
4.8
CVSSv3
CVE-2018-18824
WolfCMS v0.8.3.1 allows XSS via an SVG file to /?/admin/plugin/file_manager/browse/.
Wolfcms Wolf Cms 0.8.3.1
8.8
CVSSv3
CVE-2023-34028
Cross-Site Request Forgery (CSRF) vulnerability in realmag777 WOLF – WordPress Posts Bulk Editor and Manager Professional plugin <= 1.0.7 versions.
Pluginus Wolf - Wordpress Posts Bulk Editor And Manager Professional
4.3
CVSSv3
CVE-2024-0790
The WOLF – WordPress Posts Bulk Editor and Manager Professional plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0.8.1. This is due to missing or incorrect nonce validation on the wpbe_create_new_term, wpbe_update_tax_...
Pluginus Wolf - Wordpress Posts Bulk Editor And Products Manager Professional
4.3
CVSSv3
CVE-2024-0791
The WOLF – WordPress Posts Bulk Editor and Manager Professional plugin for WordPress is vulnerable to unauthorized access, modification or loss of data due to a missing capability check on the wpbe_create_new_term, wpbe_update_tax_term, and wpbe_delete_tax_term functions in...
Pluginus Wolf - Wordpress Posts Bulk Editor And Products Manager Professional
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »