Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Patchstack
Patchstackadded 2026/02/19 10:27 a.m.2 views

WordPress Checkout Field Manager (Checkout Manager) for WooCommerce plugin <= 7.8.5 - Missing Authorization to Unauthenticated Arbitrary Attachment Deletion vulnerability

Missing Authorization to Unauthenticated Arbitrary Attachment Deletion vulnerability discovered by NosleeP++ in WordPress Plugin WooCommerce Checkout Manager versions = 7.8.5...

5.3CVSS5.5AI score0.00089EPSS
Exploits0References1Affected Software1
RedhatCVE
RedhatCVEadded 2025/05/17 9:1 p.m.6 views

CVE-2024-8492

The Hustle WordPress plugin through 7.8.5 does not sanitise and escape some of its settings, which could allow high privilege users such as editors to perform Cross-Site Scripting attacks even when unfilteredhtml is disallowed...

4.8CVSS6AI score0.00267EPSS
Exploits1References1
NVD
NVDadded 2024/11/26 11:21 a.m.15 views

CVE-2024-10579

The Hustle – Email Marketing, Lead Generation, Optins, Popups plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the previewmodule function in all versions up to, and including, 7.8.5. This makes it possible for authenticated attackers, with...

4.3CVSS0.00204EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2024/11/26 12:0 a.m.1 views

PT-2024-16378 · WordPress · The Hustle – Email Marketing

Name of the Vulnerable Software and Affected Versions: The Hustle – Email Marketing, Lead Generation, Optins, Popups plugin for WordPress versions up to, and including, 7.8.5 Description: The issue is related to unauthorized access of data due to a missing capability check on the preview module...

4.3CVSS6.9AI score0.00204EPSS
Exploits0References5
Patchstack
Patchstackadded 2024/11/25 12:0 a.m.9 views

WordPress Hustle Plugin <= 7.8.5 is vulnerable to Broken Access Control

Software Hustle Type Plugin Vulnerable versions = 7.8.5 Fixed in 7.8.6 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-10579 Patch priority Low CVSS severity Low 4.3 Developer WPMU DEV PSID 422186a969dd Credits Vijaysimha Reddy vijaysimha Required privileg...

4.3CVSS6.5AI score0.00204EPSS
Exploits0References3Affected Software1
CVE
CVEadded 2018/10/23 2:0 p.m.69 views

CVE-2018-13401

CVE-2018-13401 affects Atlassian Jira. The vulnerability is an open-redirect issue in the XsrfErrorAction resource that lets remote attackers obtain a user’s CSRF token. Affected Jira versions are: before 7.6.9; 7.7.0–before 7.7.5; 7.8.0–before 7.8.5; 7.9.0–before 7.9.3; 7.10.0–before 7.10.3; 7.1...

6.1CVSS6.1AI score0.00087EPSS
Exploits0References2Affected Software2
Prion
Prionadded 2018/08/28 12:29 p.m.15 views

Cross site scripting

Various resources in Atlassian Jira before version 7.6.8, from version 7.7.0 before version 7.7.5, from version 7.8.0 before version 7.8.5, from version 7.9.0 before version 7.9.3, from version 7.10.0 before version 7.10.3 and before version 7.11.1 allow remote attackers to inject arbitrary HTML ...

4.3CVSS5.9AI score0.00231EPSS
Exploits0References1Affected Software2
Rows per page
Query Builder