Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
verbb vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2020-13868
An issue exists in the Comments plugin prior to 1.5.5 for Craft CMS. CSRF affects comment integrity.
Verbb Comments
3.5
CVSSv2
CVE-2020-13869
An issue exists in the Comments plugin prior to 1.5.6 for Craft CMS. There is stored XSS via a guest name.
Verbb Comments
3.5
CVSSv2
CVE-2020-13870
An issue exists in the Comments plugin prior to 1.5.5 for Craft CMS. There is stored XSS via an asset volume name.
Verbb Comments
6.8
CVSSv2
CVE-2020-13458
An issue exists in the Image Resizer plugin prior to 2.0.9 for Craft CMS. There are CSRF issues with the log-clear controller action.
Verbb Image Resizer
3.5
CVSSv2
CVE-2020-13459
An issue exists in the Image Resizer plugin prior to 2.0.9 for Craft CMS. There is stored XSS in the Bulk Resize action.
Verbb Image Resizer
6.4
CVSSv2
CVE-2020-13485
The Knock Knock plugin prior to 1.2.8 for Craft CMS allows IP Whitelist bypass via an X-Forwarded-For HTTP header.
Verbb Knock Knock
5.8
CVSSv2
CVE-2020-13486
The Knock Knock plugin prior to 1.2.8 for Craft CMS allows malicious redirection.
Verbb Knock Knock
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-30924
CVE-2024-3400
overflow
CVE-2024-23528
CVE-2024-21338
CVE-2024-3818
CVE-2024-23535
NULL pointer dereference
elevation of privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started