Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
super vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2018-17391
SQL Injection exists in authors_post.php in Super Cms Blog Pro 1.0 via the author parameter.
Super Cms Blog Pro Project Super Cms Blog Pro 1.0
1 EDB exploit
6.1
CVSSv3
CVE-2021-24987
The Social Share, Social Login and Social Comments Plugin WordPress plugin prior to 7.13.30 does not sanitise and escape the urls parameter in its the_champ_sharing_count AJAX action (available to both unauthenticated and authenticated users) before outputting it back in the resp...
Heateor Super Socializer
5.4
CVSSv3
CVE-2023-5613
The Super Testimonials plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'tpsscode' shortcode in all versions up to, and including, 2.9 due to insufficient input sanitization and output escaping on user supplied attributes. This mak...
Themepoints Super Testimonials
5.4
CVSSv3
CVE-2022-4484
The Social Share, Social Login and Social Comments Plugin WordPress plugin prior to 7.13.44 does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as contributor to perform Stored Cross-Sit...
Heateor Super Socializer
5.4
CVSSv3
CVE-2023-35882
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Team Heateor Super Socializer plugin <= 7.13.52 versions.
Heateor Super Socializer
8.8
CVSSv3
CVE-2023-27417
Cross-Site Request Forgery (CSRF) vulnerability in Timo Reith Affiliate Super Assistent plugin <= 1.5.1 versions.
Ifeelweb Affiliate Super Assistent
7.2
CVSSv3
CVE-2023-44044
Super Store Finder v3.6 and below exists to contain a SQL injection vulnerability via the Search parameter at /admin/stores.php.
Superstorefinder Super Store Finder
5.3
CVSSv3
CVE-2023-5054
The Super Store Finder plugin for WordPress is vulnerable to unauthenticated arbitrary email creation and relay in versions up to, and including, 6.9.3. This is due to insufficient restrictions on the sendMail.php file that allows direct access. This makes it possible for unauthe...
Superstorefinder Super Store Finder
NA
CVE-2011-2776
Buffer overflow in the Error function in super.c in Super 3.30.0 might allow local users to execute arbitrary code via vectors related to syslog logging. NOTE: some of these details are obtained from third party information.
Robert Luberda Super 3.30.0
6.1
CVSSv3
CVE-2020-23042
Dropouts Technologies LLP Super Backup v2.0.5 exists to contain a cross-site scripting (XSS) vulnerability in the path parameter of the `list` and `download` module. This vulnerability allows malicious users to execute arbitrary web scripts or HTML via a crafted GET request.
Dropouts Super Backup 2.0.5
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
buffer overflow
type confusion
server-side request forgery
CVE-2024-38440
CVE-2024-27801
CVE-2024-5868
CVE-2024-0582
CVE-2024-37643
CVE-2024-3105
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »