Lucene search
+L

370 matches found

NVD
NVD
added 2025/12/16 9:15 a.m.4 views

CVE-2025-64241

Missing Authorization vulnerability in Imtiaz Rayhan WP Coupons and Deals wp-coupons-and-deals allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Coupons and Deals: from n/a through = 3.2.4...

4.3CVSS0.00192EPSS
Exploits0References1
CVE
CVE
added 2025/12/16 8:12 a.m.9 views

CVE-2025-64241

CVE-2025-64241 is a Missing Authorization vulnerability in the WP Coupons and Deals plugin for WordPress, affecting versions up to 3.2.4. The issue stems from incorrectly configured access control, enabling unauthorized actions. CVSS v3.1 base score is 4.3 (Medium). Remediation: update the plugin...

4.3CVSS6.6AI score0.00192EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/12/16 12:0 a.m.6 views

PT-2025-51389

Name of the Vulnerable Software and Affected Versions WP Coupons and Deals versions through 3.2.4 Description The software contains a flaw related to incorrectly configured access control security levels, potentially allowing unauthorized access. The issue impacts the 'wp-coupons-and-deals'...

4.3CVSS6.5AI score0.00192EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/12/16 12:0 a.m.6 views

WordPress plugin WP Coupons and Deals 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin... A security...

4.3CVSS6.4AI score0.00192EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/12/11 6:31 p.m.4 views

WordPress WP Coupons and Deals plugin <= 3.2.4 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Nabil Irawan in WordPress Plugin WP Coupons and Deals versions = 3.2.4...

4.3CVSS7AI score0.00192EPSS
Exploits0Affected Software1
CNNVD
CNNVD
added 2025/12/02 12:0 a.m.7 views

oci-helper 路径遍历漏洞

oci-helper is a visual Oracle Cloud helper by Yohann Personal Developer. A path traversal vulnerability exists in oci-helper 3.2.4 and earlier versions, which stems from a misbehavior with the parameter File in the file src/main/java/com/yohann/ocihelper/service/impl/OciServiceImpl.java, which...

6.5CVSS6.4AI score0.00353EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/12/02 12:0 a.m.12 views

PT-2025-48698

A weakness has been identified in Yohann0617 oci-helper up to 3.2.4. This issue affects the function addCfg of the file src/main/java/com/yohann/ocihelper/service/impl/OciServiceImpl.java of the component OCI Configuration Upload. Executing manipulation of the argument File can lead to path...

6.5CVSS6.5AI score0.00353EPSS
Exploits0References6
vulnersOsv
vulnersOsv
added 2025/11/10 9:42 p.m.6 views

sfx (=0.1.0) potentially affected by CVE-2025-64182 via openexr (=3.2.4)

openexr PYPI version =3.2.4 is affected by a known vulnerability. The following packages have a transitive dependency on openexr and may be impacted: - sfx =0.1.0 Source cves: CVE-2025-64182 Source advisory: SNYK:PYTHON-OPENEXR-13876683...

7.8CVSS7.1AI score0.00237EPSS
Exploits1
NVD
NVD
added 2025/10/25 5:15 a.m.10 views

CVE-2025-11823

The ShopLentor – WooCommerce Builder for Elementor & Gutenberg +21 Modules – All in One Solution plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'buttonexisttext' parameter in the 'wishsuitebutton' shortcode in all versions up to, and including, 3.2.4 due to insufficient...

6.4CVSS0.00203EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/10/25 4:22 a.m.6 views

CVE-2025-11823 ShopLentor – WooCommerce Builder for Elementor & Gutenberg +21 Modules – All in One Solution <= 3.2.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode

The ShopLentor – WooCommerce Builder for Elementor & Gutenberg +21 Modules – All in One Solution plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'buttonexisttext' parameter in the 'wishsuitebutton' shortcode in all versions up to, and including, 3.2.4 due to insufficient...

6.4CVSS4.7AI score0.00203EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/10/25 4:22 a.m.37 views

CVE-2025-11823 ShopLentor – WooCommerce Builder for Elementor & Gutenberg +21 Modules – All in One Solution <= 3.2.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode

The ShopLentor – WooCommerce Builder for Elementor & Gutenberg +21 Modules – All in One Solution plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'buttonexisttext' parameter in the 'wishsuitebutton' shortcode in all versions up to, and including, 3.2.4 due to insufficient...

6.4CVSS0.00203EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2009-0457

Malware in sbrugna...

5CVSS6.4AI score0.02618EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2014-1923

Malware in sbrugna...

9.8CVSS9.2AI score0.03648EPSS
Exploits2References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2018-8456

Malware in sbrugna...

6.1CVSS6.3AI score0.00826EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-7459

Malware in sbrugna...

7.5CVSS7.6AI score0.03101EPSS
Exploits0References10
EUVD
EUVD
added 2025/10/07 12:30 a.m.9 views

EUVD-2018-11285

Malware in sbrugna...

4.8CVSS5.1AI score0.00565EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2018-11195

Malware in sbrugna...

4.8CVSS5.1AI score0.00559EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-28791

Malicious code in bioql PyPI...

8.8CVSS6.4AI score0.00594EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-2918

Malicious code in bioql PyPI...

6.1CVSS6.4AI score0.01245EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.9 views

EUVD-2025-3764

Malicious code in bioql PyPI...

7.5CVSS6.6AI score0.00517EPSS
Exploits0References1
Rows per page
Query Builder