portfolio · threatengine.sh

CVE-2014-125109

< 2.28

A vulnerability was found in BestWebSoft Portfolio Plugin up to 2.27. It has been declared as problematic. This vulnerability affe

3.5LOW

CVE-2012-10017

< 2.06

A vulnerability was found in BestWebSoft Portfolio Plugin up to 2.04 on WordPress. It has been classified as problematic. This aff

4.3MEDIUM

CVE-2023-23685

< 2.8.11

Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in RadiusTheme Portfolio - WordPress Portfolio plugin <= 2.8

6.5MEDIUM

CVE-2022-24255

all versions

Extensis Portfolio v4.0 was discovered to contain hardcoded credentials which allows attackers to gain administrator privileges.

8.8HIGH

CVE-2022-24254

all versions

An unrestricted file upload vulnerability in the Backup/Restore Archive component of Extensis Portfolio v4.0 allows remote attacke

8.8HIGH

CVE-2022-24253

all versions

Extensis Portfolio v4.0 was discovered to contain an authenticated unrestricted file upload vulnerability via the component AdminF

8.8HIGH

CVE-2022-24252

all versions

An unrestricted file upload vulnerability in the FileTransferServlet component of Extensis Portfolio v4.0 allows remote attackers

8.8HIGH

CVE-2022-24251

all versions

Extensis Portfolio v4.0 was discovered to contain an authenticated unrestricted file upload vulnerability via the Catalog Asset Up

8.8HIGH

CVE-2018-18087

all versions

The Bixie Portfolio plugin 1.2.0 for Pagekit has XSS: a logged-in user who has the "Manage portfolio" privilege can inject arbitra

5.4MEDIUM

CVE-2017-2171

<= 2.3

Cross-site scripting vulnerability in Captcha prior to version 4.3.0, Car Rental prior to version 1.0.5, Contact Form Multi prior

6.1MEDIUM

CVE-2015-6523

<= 1.0

Cross-site request forgery (CSRF) vulnerability in the Portfolio plugin before 1.05 for WordPress allows remote attackers to hijac

extensis portfolio