CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

Patchstack•added 2025/11/10 2:2 a.m.•6 views

WordPress Mail Mint plugin <= 1.18.10 - Authenticated (Admin+) Arbitrary File Upload vulnerability

Authenticated Admin+ Arbitrary File Upload vulnerability discovered by vodanh in WordPress Plugin Mail Mint versions = 1.18.10...

7.2CVSS6.8AI score0.0046EPSS

Exploits0References1Affected Software1

Positive Technologies•added 2025/11/08 12:0 a.m.•6 views

PT-2025-45561

Name of the Vulnerable Software and Affected Versions Mail Mint plugin for WordPress versions prior to 1.18.11 Description The Mail Mint plugin for WordPress is susceptible to arbitrary file uploads because of a lack of file type validation within the process contact attribute import function. Th...

7.2CVSS7.7AI score0.0046EPSS

Exploits0References8

EUVD•added 2025/10/03 8:7 p.m.•5 views

EUVD-2023-44783

Malicious code in bioql PyPI...

7.5CVSS5.7AI score0.00636EPSS

Exploits1References3

CNNVD•added 2025/08/01 12:0 a.m.•3 views

HashiCorp Vault Enterprise和HashiCorp Vault Community Edition 安全漏洞

HashiCorp Vault Enterprise and HashiCorp Vault Community Edition are both products of HashiCorp, Inc. of the U.S.A. HashiCorp Vault Enterprise is an enterprise information archiving platform.HashiCorp Vault HashiCorp Vault Enterprise is an enterprise information archiving platform, and HashiCorp...

7.2CVSS6.7AI score0.00459EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 4:5 a.m.•9 views

CVE-2023-37874

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Dimitar Ivanov HTTP Headers plugin = 1.18.11 versions...

5.9CVSS5.6AI score0.00339EPSS

Exploits0

RedhatCVE•added 2025/05/23 3:32 a.m.•7 views

CVE-2023-40183

DataEase is an open source data visualization and analysis tool. Prior to version 1.18.11, DataEase has a vulnerability that allows an attacker to to obtain user cookies. The program only uses the ImageIO.read method to determine whether the file is an image file or not. There is no whitelisting...

7.5CVSS6.8AI score0.00636EPSS

Exploits1References1

Prion•added 2023/09/21 3:15 p.m.•26 views

Code injection

5CVSS5.3AI score0.00636EPSS

Exploits1References3Affected Software1

CNNVD•added 2023/09/21 12:0 a.m.•5 views

DataEase Code Issues Vulnerabilities

DataEase is an open source data visualization and analysis tool. It is used to help users quickly analyze data and gain insight into business trends to achieve business improvement and optimization. A code issue vulnerability exists in DataEase versions prior to 1.18.11. The vulnerability stems...

7.5CVSS6.9AI score0.00636EPSS

Exploits1References4

OSV•added 2023/08/05 11:15 p.m.•2 views

CVE-2023-37874

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Dimitar Ivanov HTTP Headers plugin = 1.18.11 versions...

4.8CVSS7.3AI score0.00339EPSS

Exploits0References1

Positive Technologies•added 2023/07/10 12:0 a.m.•22 views

PT-2023-16821 · WordPress · Http Headers

Name of the Vulnerable Software and Affected Versions: HTTP Headers WordPress plugin versions prior to 1.18.11 Description: The issue allows arbitrary data to be written to arbitrary files, leading to a Remote Code Execution. Recommendations: For versions prior to 1.18.11, update to version 1.18....

7.2CVSS7.7AI score0.0132EPSS

Exploits2References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by