Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In September 2019
CVE-2015-9403
The neuvoo-jobroll plugin 2.0 for WordPress has neuvoo_location XSS.
CVSS Score
6.1
EPSS Score
0.002
Published
2019-09-20
CVE-2015-9404
The neuvoo-jobroll plugin 2.0 for WordPress has neuvoo_keywords XSS.
CVSS Score
6.1
EPSS Score
0.002
Published
2019-09-20
CVE-2015-9392
The users-ultra plugin before 1.5.63 for WordPress has XSS via the p_name parameter.
CVSS Score
5.4
EPSS Score
0.003
Published
2019-09-20
CVE-2015-9393
The users-ultra plugin before 1.5.63 for WordPress has XSS via the p_desc parameter.
CVSS Score
5.4
EPSS Score
0.002
Published
2019-09-20
CVE-2015-9394
The users-ultra plugin before 1.5.63 for WordPress has CSRF via action=package_add_new to wp-admin/admin-ajax.php.
CVSS Score
8.8
EPSS Score
0.001
Published
2019-09-20
CVE-2015-9395
The users-ultra plugin before 1.5.64 for WordPress has SQL Injection via an ajax action.
CVSS Score
8.8
EPSS Score
0.006
Published
2019-09-20
CVE-2015-9396
The auto-thickbox-plus plugin through 1.9 for WordPress has wp-content/plugins/auto-thickbox-plus/download.min.php?file= XSS.
CVSS Score
6.1
EPSS Score
0.002
Published
2019-09-20
CVE-2019-16642
App\Mobile\Controller\ZhuantiController.class.php in TuziCMS 2.0.6 has SQL injection via the index.php/Mobile/Zhuanti/group?id= substring.
CVSS Score
9.8
EPSS Score
0.003
Published
2019-09-20
CVE-2016-10999
The Goodnews theme through 2016-02-28 for WordPress has XSS via the s parameter.
CVSS Score
6.1
EPSS Score
0.002
Published
2019-09-20
CVE-2016-11000
The wp-ultimate-exporter plugin through 1.1 for WordPress has SQL injection via the export_type_name parameter.
CVSS Score
9.8
EPSS Score
0.005
Published
2019-09-20


Products
Pricing
Contact Us

Shodan ® - All rights reserved