ByteOS Network

knowledge_base

Source -

NVD

CNA CVEs -

ADP CVEs -

CISA CVEs -

NVD CVEs -

2Vulnerabilities found

CVE-2024-51677

Assigner-Patchstack

View Details

Assigner-Patchstack

CVSS Score-5.4||MEDIUM

EPSS-0.40% / 61.07%

7 Day CHG~0.00%

Published-04 Nov, 2024 | 14:16

Updated-01 Apr, 2026 | 16:19

WordPress Knowledge Base plugin <= 2.2.0 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Ajay Knowledge Base knowledgebase allows Stored XSS.This issue affects Knowledge Base: from n/a through <= 2.2.0.

Vendor-webberzone Ajay

Product-knowledge_base Knowledge Base

CWE ID-CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

CVE-2008-3555

Assigner-MITRE Corporation

View Details

Assigner-MITRE Corporation

CVSS Score-6.8||MEDIUM

EPSS-3.29% / 87.24%

7 Day CHG~0.00%

Published-08 Aug, 2008 | 19:00

Updated-07 Aug, 2024 | 09:45

Directory traversal vulnerability in index.php in (1) WSN Forum 4.1.43 and earlier, (2) Gallery 4.1.30 and earlier, (3) Knowledge Base (WSNKB) 4.1.36 and earlier, (4) Links 4.1.44 and earlier, and possibly (5) Classifieds before 4.1.30 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the TID parameter, as demonstrated by uploading a .jpg file containing PHP sequences.

Vendor-wsn n/a

Product-gallery forum links knowledge_base n/a

CWE ID-CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')