Skip to main content
CVE-2024-13121 LOW POC Monitor

The Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content WordPress plugin before 4.15.20 does not sanitise and escape some of its settings, which. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress XSS Profilepress
NVD WPScan
CVSS 3.1
3.5
EPSS
0.3%
CVE-2025-0692 LOW POC Monitor

The Simple Video Management System WordPress plugin through 1.0.4 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress XSS Simple Video Management System PHP
NVD WPScan
CVSS 3.1
3.5
EPSS
0.2%
CVE-2024-13125 LOW POC Monitor

The Everest Forms WordPress plugin before 3.0.8.1 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress XSS Everest Forms
NVD WPScan
CVSS 3.1
3.5
EPSS
0.1%
CVE-2023-34401 LOW Monitor

Mercedes-Benz head-unit NTG6 contains functions to import or export profile settings over USB. Rated low severity (CVSS 3.7), this vulnerability is remotely exploitable. No vendor patch available.

Information Disclosure Buffer Overflow Headunit Ntg6 Mercedes Benz User Experience
NVD
CVSS 3.1
3.7
EPSS
0.3%
CVE-2025-25899 LOW Monitor

A buffer overflow vulnerability was discovered in TP-Link TL-WR841ND V11 via the 'gw' parameter at /userRpm/WanDynamicIpV6CfgRpm.htm. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable. No vendor patch available.

TP-Link Buffer Overflow Denial Of Service Tl Wr841Nd V11 Firmware
NVD GitHub
CVSS 3.1
3.5
EPSS
0.1%
CVE-2023-34406 LOW Monitor

An issue was discovered on Mercedes Benz NTG 6. Rated low severity (CVSS 3.3), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Integer Overflow Buffer Overflow Headunit Ntg6 Mercedes Benz User Experience
NVD
CVSS 3.1
3.3
EPSS
0.1%
CVE-2024-47266 LOW Monitor

Improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability in share file list functionality in Synology Active Backup for Business before 2.7.1-13234, 2.7.1-23234. Rated low severity (CVSS 2.7), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Synology Path Traversal Active Backup For Business Agent
NVD
CVSS 3.1
2.7
EPSS
0.3%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy