Lucene search
K

64 matches found

Patchstack
Patchstack
added 2026/06/23 2:2 p.m.4 views

WordPress Themify Store Locator plugin <= 1.2.0 - PHP Object Injection vulnerability

PHP Object Injection vulnerability discovered by 0xd4rk5id3 in WordPress Plugin Themify Store Locator versions = 1.2.0...

8.8CVSS5.9AI score0.00309EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/06/23 2:2 p.m.4 views

WordPress Themify Event Post plugin <= 1.3.3 - PHP Object Injection vulnerability

PHP Object Injection vulnerability discovered by 0xd4rk5id3 in WordPress Plugin Themify Event Post versions = 1.3.3...

8.8CVSS5.9AI score0.00309EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/06/23 1:49 p.m.5 views

WordPress Themify Popup plugin <= 1.4.3 - PHP Object Injection vulnerability

PHP Object Injection vulnerability discovered by 0xd4rk5id3 in WordPress Plugin Themify Popup versions = 1.4.3...

8.8CVSS5.9AI score0.00309EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/06/05 9:10 a.m.14 views

WordPress User Registration Stripe plugin <= 1.3.12 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by 0xd4rk5id3 in WordPress Plugin User Registration Stripe versions = 1.3.12...

8.2CVSS5.4AI score0.00291EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/05/28 8:58 a.m.12 views

WordPress User Registration plugin <= 5.1.2 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by 0xd4rk5id3 in WordPress Plugin User Registration versions = 5.1.2...

7.5CVSS5.8AI score0.00372EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/04/16 11:2 a.m.6 views

WordPress User Registration Stripe plugin <= 1.3.14 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by 0xd4rk5id3 in WordPress Plugin User Registration Stripe versions = 1.3.14...

5.8AI score0.00244EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/27 1:8 a.m.6 views

WordPress Analytics Cat plugin <= 1.1.2 - Reflected Cross-Site Scripting vulnerability

Reflected Cross-Site Scripting vulnerability discovered by 0xd4rk5id3 - EnvoraSec in WordPress Plugin Analytics Cat versions = 1.1.2...

6.1CVSS8.6AI score0.00285EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/02/26 7:2 a.m.8 views

WordPress User Registration & Membership plugin <= 5.1.2 - Authentication Bypass vulnerability

Authentication Bypass vulnerability discovered by 0xd4rk5id3 - EnvoraSec in WordPress Plugin User Registration versions = 5.1.2...

8.1CVSS5.4AI score0.00335EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/02/09 7:5 a.m.5 views

WordPress WordPress Dating Theme theme <= 11.2.0 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by 0xd4rk5id3 in WordPress Theme WordPress Dating Theme versions = 11.2.0...

5.4AI score0.00261EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/03 9:27 a.m.7 views

WordPress Kudos Donations plugin <= 3.2.9 - Reflected Cross-Site Scripting via 'add_query_arg' vulnerability

Reflected Cross-Site Scripting via 'addqueryarg' vulnerability discovered by 0xd4rk5id3 - EnvoraSec in WordPress Plugin Kudos Donations versions = 3.2.9...

6.1CVSS5.3AI score0.0034EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/01/30 2:24 p.m.5 views

WordPress Fitness FSE theme <= 1.0.6 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by 0xd4rk5id3 in WordPress Theme Fitness FSE versions = 1.0.6...

4.3CVSS5.4AI score0.00185EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/01/22 6:4 a.m.5 views

WordPress LazyTasks plugin <= 1.4.10 - Privilege Escalation vulnerability

Privilege Escalation vulnerability discovered by 0xd4rk5id3 in WordPress Plugin LazyTasks versions = 1.4.10...

9.8CVSS5.3AI score0.00423EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/01/20 11:41 p.m.6 views

WordPress WishList Member X plugin <= 3.29.0 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by 0xd4rk5id3 in WordPress Plugin WishList Member X versions = 3.29.0...

5.4AI score0.00259EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/01/20 8:16 a.m.4 views

WordPress Directorist Booking plugin <= 2.4.1 - SQL Injection vulnerability

SQL Injection vulnerability discovered by 0xd4rk5id3 in WordPress Plugin Directorist Booking versions = 2.4.1...

5.8AI score0.00283EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/01/15 11:25 a.m.5 views

WordPress CleverReach® WP plugin <= 1.5.21 - SQL Injection vulnerability

SQL Injection vulnerability discovered by 0xd4rk5id3 in WordPress Plugin CleverReach® WP versions = 1.5.21...

9.3CVSS5.9AI score0.00389EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/01/15 10:18 a.m.8 views

WordPress Woocommerce Book Price plugin <= 1.3 - Arbitrary File Download vulnerability

Arbitrary File Download vulnerability discovered by 0xd4rk5id3 in WordPress Plugin Woocommerce Book Price versions = 1.3...

7AI score0.00467EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/01/13 1:35 p.m.6 views

WordPress Tutor LMS Pro plugin <= 3.8.3 - SQL Injection vulnerability

SQL Injection vulnerability discovered by 0xd4rk5id3 in WordPress Plugin Tutor LMS Pro versions = 3.8.3...

8.1AI score0.00283EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/01/08 8:13 a.m.6 views

WordPress Felan Framework plugin <= 1.1.3 - SQL Injection vulnerability

SQL Injection vulnerability discovered by 0xd4rk5id3 in WordPress Plugin Felan Framework versions = 1.1.3...

9.8CVSS8.1AI score0.00359EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/01/08 8:12 a.m.5 views

WordPress Felan Framework plugin <= 1.1.3 - Account Takeover vulnerability

Account Takeover vulnerability discovered by 0xd4rk5id3 in WordPress Plugin Felan Framework versions = 1.1.3...

9.8CVSS7AI score0.00429EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/31 12:0 a.m.6 views

WordPress Lexicata plugin <= 1.0.16 - Reflected Cross-Site Scripting vulnerability

Reflected Cross-Site Scripting vulnerability discovered by 0xd4rk5id3 - EnvoraSec in WordPress Plugin Lexicata versions = 1.0.16...

6.1CVSS5.4AI score0.00315EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder