Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
super vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-27615
Cross-Site Request Forgery (CSRF) vulnerability in Dipak C. Gajjar WP Super Minify plugin <= 1.5.1 versions.
Dipakgajjar Wp Super Minify
578
VMScore
CVE-2021-24312
The parameters $cache_path, $wp_cache_debug_ip, $wp_super_cache_front_page_text, $cache_scheduled_time, $cached_direct_pages used in the settings of WP Super Cache WordPress plugin prior to 1.7.3 result in RCE because they allow input of '$' and '\n'. This is ...
Automattic Wp Super Cache
312
VMScore
CVE-2021-24329
The WP Super Cache WordPress plugin prior to 1.7.3 did not properly sanitise its wp_cache_location parameter in its settings, which could lead to a Stored Cross-Site Scripting issue.
Automattic Wp Super Cache
NA
CVE-2023-27191
An issue found in DUALSPACE Super Secuirty v.2.3.7 allows an malicious user to cause a denial of service via the SharedPreference files.
Dualspace Super Security 2.3.7
NA
CVE-2023-27192
An issue found in DUALSPACE Super Secuirty v.2.3.7 allows an malicious user to cause a denial of service via the key_wifi_safe_net_check_url, KEY_Cirus_scan_whitelist and KEY_AD_NEW_USER_AVOID_TIME parameters.
Dualspace Super Security 2.3.7
NA
CVE-2023-43835
Super Store Finder 3.7 and below is vulnerable to authenticated Arbitrary PHP Code Injection that could lead to Remote Code Execution when settings overwrite config.inc.php content.
Superstorefinder Super Store Finder
383
VMScore
CVE-2020-23042
Dropouts Technologies LLP Super Backup v2.0.5 exists to contain a cross-site scripting (XSS) vulnerability in the path parameter of the `list` and `download` module. This vulnerability allows malicious users to execute arbitrary web scripts or HTML via a crafted GET request.
Dropouts Super Backup 2.0.5
445
VMScore
CVE-2020-23061
Dropouts Technologies LLP Super Backup v2.0.5 exists to contain an issue in the path parameter of the `list` and `download` module which allows malicious users to perform a directory traversal via a change to the path variable to request the local list command.
Dropouts Super Backup 2.0.5
NA
CVE-2023-44044
Super Store Finder v3.6 and below exists to contain a SQL injection vulnerability via the Search parameter at /admin/stores.php.
Superstorefinder Super Store Finder
668
VMScore
CVE-2019-3577
An issue exists in Waimai Super Cms 20150505. web/Lib/Action/ProductAction.class.php allows blind SQL Injection via the id[0] parameter to the /product URI.
Bijiadao Waimai Super Cms 20150505
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2012-1823
malicious code
CVE-2024-5770
CVE-2023-45866
CVE-2024-35687
local users
CVE-2024-31246
CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »