Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
colette chamberland vulnerabilities and exploits
(subscribe to this query)
505
VMScore
CVE-2018-8719
An issue exists in the WP Security Audit Log plugin 3.1.1 for WordPress. Access to wp-content/uploads/wp-security-audit-log/* files is not restricted. For example, these files are indexed by Google and allows for malicious users to possibly find sensitive information.
Wpsecurityauditlog Wp Security Audit Log 3.1.1
1 EDB exploit
755
VMScore
CVE-2017-16949
An issue exists in the AccessKeys AccessPress Anonymous Post Pro plugin up to and including 3.1.9 for WordPress. Improper input sanitization allows the malicious user to override the settings for allowed file extensions and upload file size, related to inc/cores/file-uploader.php...
Accesspressthemes Anonymous Post Pro
1 EDB exploit
755
VMScore
CVE-2017-16562
The UserPro plugin prior to 4.9.17.1 for WordPress, when used on a site with the "admin" username, allows remote malicious users to bypass authentication and obtain administrative access via a "true" value for the up_auto_log parameter in the QUERY_STRING to t...
Userproplugin Userpro
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3380
CVE-2024-1694
local file inclusion
CVE-2024-5645
CVE-2024-24919
XSS
CVE-2024-36774
CVE-2024-21306
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started