CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

The CTL Behance Importer Lite WordPress plugin through 1.0 does not properly sanitise and escape a parameter before using it in a SQL statement via an AJAX action available to unauthenticated users, leading to a SQL injection...

6.5CVSS7.6AI score0.00305EPSS

Exploits0References1

Patchstack•added 2025/10/03 12:52 a.m.•6 views

WordPress CTL Behance Importer Lite plugin <= 1.0 - Unauthenticated SQL Injection vulnerability

Unauthenticated SQL Injection vulnerability discovered by Khaled Alenazi Nxploited in WordPress Plugin CTL Behance Importer Lite versions = 1.0...

8.6CVSS7.8AI score0.00305EPSS

Exploits0References1Affected Software1

Tenable Nessus•added 2025/03/04 12:0 a.m.•7 views

Linux Distros Unpatched Vulnerability : CVE-2016-9587

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Ansible before versions 2.1.4, 2.2.1 is vulnerable to an improper input validation in Ansible's handling of data sent from client systems. An attacker with...

8.1CVSS7.6AI score0.17865EPSS

Exploits5References1

Circl•added 2024/10/11 4:10 p.m.•3 views

CVE-2024-9587

creationtimestamp| type| source ---|---|--- 2024-10-11 16:10:30+00:00| seen| https://t.me/cvedetector/7660...

5.4CVSS4.8AI score0.00353EPSS

Exploits0References1

Vulnrichment•added 2024/10/11 5:33 a.m.•8 views

CVE-2024-9587 Linkz.ai <= 1.1.8 - Missing Authorization to Authenticated (Subscriber+) Plugin Settings Update via AJAX

The Linkz.ai plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'ajaxlinkz' function in versions up to, and including, 1.1.8. This makes it possible for authenticated attackers with contributor-level privileges or above, to update plug...

5.4CVSS6.5AI score0.00353EPSS

Exploits0References3

Patchstack•added 2024/10/10 12:0 a.m.•15 views

WordPress Linkz.ai Plugin <= 1.1.8 is vulnerable to Broken Access Control

Software Linkz.ai Type Plugin Vulnerable versions = 1.1.8 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-9587 Patch priority Low CVSS severity Low 5.4 Developer Claim ownership PSID 00b01a60baf6 Credits István Márton Required privilege...

5.4CVSS5.4AI score0.00353EPSS

Exploits0References3Affected Software1

Tenable Nessus•added 2024/05/07 12:0 a.m.•30 views

SUSE SLES15 / openSUSE 15 Security Update : SUSE Manager Client Tools (SUSE-SU-2024:1509-1)

The remote SUSE Linux SLES15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:1509-1 advisory. - A flaw was found in Ansible before version 2.2.0. The aptkey module does not properly verify key fingerprints, allowing remote...

9.8CVSS7.2AI score0.17865EPSS

Exploits9References50

SUSE CVE•added 2023/04/28 1:56 a.m.•1 views

SUSE CVE-2023-26936

REJECT DO NOT USE THIS CVE RECORD. ConsultIDs: CVE-2019-9587. Reason: This record is a reservation duplicate of CVE-2019-9587. Notes: All CVE users should reference CVE-2019-9587 instead of this record. All references and descriptions in this record have been removed to prevent accidental usage...

7AI score

Exploits0References3

SUSE CVE•added 2023/04/28 1:56 a.m.•1 views

SUSE CVE-2023-26937

7AI score

Exploits0References3

SUSE CVE•added 2023/04/28 1:56 a.m.•2 views

SUSE CVE-2023-26934

7.1AI score

Exploits0References3

SUSE CVE•added 2023/04/28 1:56 a.m.•2 views

SUSE CVE-2023-26935

7.1AI score

Exploits0References3

NVD•added 2023/04/26 7:15 p.m.•13 views

CVE-2023-26938

Rejected reason: REJECT DO NOT USE THIS CVE RECORD. ConsultIDs: CVE-2019-9587. Reason: This record is a reservation duplicate of CVE-2019-9587. Notes: All CVE users should reference CVE-2019-9587 instead of this record. All references and descriptions in this record have been removed to prevent...

7.5AI score

Exploits0