| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2023-6436 | SQLi in Ekol Bilisim Website Template | Ekol Informatics | Website Template | Critical | 9.8 | 2024-01-02 12:15:12 | Deep Dive |
| CVE-2023-50835 | WordPress Advanced Category Template Plugin <= 0.1 is vulnerable to Cross Site Request Forgery (CSRF) | Praveen Goswami | Advanced Category Template | Medium | 5.4 | 2023-12-19 21:45:49 | Deep Dive |
| CVE-2023-50372 | WordPress Custom Post Type Page Template Plugin <= 1.1 is vulnerable to Cross Site Request Forgery (CSRF) | Hiroaki Miyashita | Custom Post Type Page Template | Medium | 4.3 | 2023-12-18 10:15:29 | Deep Dive |
| CVE-2023-49177 | WordPress which template file Plugin <= 4.9.0 is vulnerable to Cross Site Scripting (XSS) | Gilles Dumas | which template file | High | 7.1 | 2023-12-15 14:24:31 | Deep Dive |
| CVE-2023-45753 | WordPress which template file Plugin <= 4.6.0 is vulnerable to Cross Site Request Forgery (CSRF) | Gilles Dumas | which template file | Medium | 4.3 | 2023-10-16 10:12:39 | Deep Dive |
| CVE-2023-41851 | WordPress WP Custom Post Template Plugin <= 1.0 is vulnerable to Cross Site Request Forgery (CSRF) | Dotsquares | WP Custom Post Template | Medium | 4.3 | 2023-10-10 08:29:52 | Deep Dive |
| CVE-2023-5291 | Blog Filter <= 1.5.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode | awordpresslife | Blog Filter Post Filtering | Medium | 6.4 | 2023-10-04 01:52:40 | Deep Dive |
| CVE-2023-39319 | Improper handling of special tags within script contexts in html/template | Go standard library | html/template | 中危 | - | 2023-09-08 16:13:29 | Deep Dive |
| CVE-2023-39318 | Improper handling of HTML-like comments in script contexts in html/template | Go standard library | html/template | 中危 | - | 2023-09-08 16:13:24 | Deep Dive |
| CVE-2023-31072 | WordPress Advanced Category Template Plugin <= 0.1 is vulnerable to Cross Site Scripting (XSS) | Praveen Goswami | Advanced Category Template | High | 7.1 | 2023-08-17 14:35:30 | Deep Dive |
| CVE-2023-38392 | WordPress Custom Field Template Plugin <= 2.5.9 is vulnerable to Cross Site Scripting (XSS) | Hiroaki Miyashita | Custom Field Template | High | 7.1 | 2023-08-07 12:45:24 | Deep Dive |
| CVE-2021-4413 | Process Steps Template Designer <= 1.2.1 - Cross-Site Request Forgery Bypass | narinder-singh | Process Steps Template Designer | Medium | 4.3 | 2023-07-12 03:40:44 | Deep Dive |
| CVE-2023-35773 | WordPress Template Debugger Plugin <= 3.1.2 is vulnerable to Cross Site Request Forgery (CSRF) | Danny Hearnah - ChubbyNinjaa | Template Debugger | Medium | 4.3 | 2023-07-11 12:42:39 | Deep Dive |
| CVE-2023-35870 | Improper Access Control in SAP S/4HANA (Manage Journal Entry Template) | SAP_SE | SAP S/4HANA (Manage Journal Entry Template) | Medium | 6.3 | 2023-07-11 02:40:26 | Deep Dive |
| CVE-2023-22695 | WordPress Custom Field Template Plugin <= 2.5.8 is vulnerable to Cross Site Request Forgery (CSRF) | Hiroaki Miyashita | Custom Field Template | Medium | 4.3 | 2023-07-10 12:38:53 | Deep Dive |
| CVE-2020-36742 | Custom Field Template <= 2.5.1 - Cross-Site Request Forgery Bypass | hiroaki-miyashita | Custom Field Template | Medium | 4.3 | 2023-07-01 04:26:50 | Deep Dive |
| CVE-2023-35146 | Jenkins Plugin Template Workflows 跨站脚本漏洞 | Jenkins Project | Jenkins Template Workflows Plugin | 中危 | - | 2023-06-14 12:53:09 | Deep Dive |
| CVE-2019-25148 | WP HTML Mail < 2.9.1 - HTML Injection | haet | Email Template Designer – WP HTML Mail | Medium | 6.1 | 2023-06-07 01:51:40 | Deep Dive |
| CVE-2019-25144 | WP HTML Mail < 2.2.11 - HTML injection | a3rev | WP Email Template | Medium | 5.4 | 2023-06-07 01:51:32 | Deep Dive |
| CVE-2021-4349 | Process Steps Template Designer <= 1.2.1 - Cross-Site Request Forgery | narinder-singh | Process Steps Template Designer | High | 8.8 | 2023-06-07 01:51:15 | Deep Dive |