Calgary, Alberta, Canada
sales@hackhalt.com
Free Download Free Download Free Download
Explore Pricing Explore Pricing Explore Pricing

Blog

"Prevention is cheaper than a breach"

Live Vulnerability Intelligence

Threat Database

Search CVEs, inspect descriptions, and open detail pages with AI-assisted technical context.

Total3
Critical1
High0
Medium2
Reset
Showing 1-3 of 3 records
Threat Entry Updated 2025-05-16

CVE-2024-5604 - Bug Library Plugin

The Bug Library WordPress plugin before 2.1.2 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup)

PLUGIN Bug Library

CVE-2024-5604

MEDIUM CVSS 5.9 2024-07-19
Open Full Technical Breakdown
Threat Entry Updated 2025-05-13

CVE-2024-5450 - Bug Library Plugin

The Bug Library WordPress plugin before 2.1.1 does not check the file type on user-submitted bug reports, allowing an unauthenticated user to upload PHP files

PLUGIN Bug Library

CVE-2024-5450

CRITICAL CVSS 9.1 2024-07-13
Open Full Technical Breakdown
Threat Entry Updated 2024-11-21

CVE-2021-38355 - Bug Library Plugin

The Bug Library WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the successimportcount parameter found in the ~/bug-library.php file which allows attackers to inject arbitrary web scripts, in versions up to and including 2.0.3.

PLUGIN Bug Library

CVE-2021-38355

MEDIUM CVSS 6.1 2021-09-10
Open Full Technical Breakdown
Scroll to top