CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

25 matches found

RedhatCVE•added 2026/01/09 9:0 a.m.•23 views

CVE-2023-29385

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Kevon Adonis WP Abstracts plugin = 2.6.2 versions...

7.1CVSS5.9AI score0.00105EPSS

Exploits0References1

CVE•added 2025/10/22 2:32 p.m.•5 views

CVE-2025-48338

The CVE notes a PHP Local File Inclusion in the WordPress plugin WP Abstracts wp-abstracts-manuscripts-manager (affected:

7.5CVSS6.7AI score0.00108EPSS

Exploits0References1

CNNVD•added 2025/10/22 12:0 a.m.•1 views

WordPress plugin WP Abstracts 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security vulnerabili...

7.5CVSS6.7AI score0.00108EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2023-32957

Malicious code in bioql PyPI...

7.1CVSS7AI score0.00105EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2023-32335

Malicious code in bioql PyPI...

5.9CVSS5.2AI score0.00079EPSS

Exploits1References1

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2023-40466

Malicious code in bioql PyPI...

8.8CVSS9.1AI score0.00094EPSS

Exploits0References1

Patchstack•added 2025/09/03 12:59 p.m.•2 views

WordPress WP Abstracts plugin <= 2.7.4 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by timomangcut Patchstack Alliance in WordPress Plugin WP Abstracts versions = 2.7.4...

7.5CVSS7AI score0.00108EPSS

Exploits0Affected Software1

RedhatCVE•added 2025/05/23 5:3 a.m.•5 views

CVE-2023-36517

Cross-Site Request Forgery CSRF vulnerability in Kevon Adonis WP Abstracts plugin = 2.6.2 versions...

8.8CVSS7.1AI score0.00094EPSS

Exploits0

RedhatCVE•added 2025/05/23 4:50 a.m.•3 views

CVE-2023-28692

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Kevon Adonis WP Abstracts plugin = 2.6.3 versions...

5.9CVSS5.6AI score0.00079EPSS

Exploits1References1

CVE•added 2025/04/09 4:9 p.m.•53 views

CVE-2025-32591

CVE-2025-32591 describes a Cross-Site Request Forgery (CSRF) vulnerability in the WordPress plugin WP Abstracts (Kevon Adonis). Affected: WP Abstracts versions up to 2.7.4 (from n/a). CVSS 3.1 base score 7.1 (HIGH): Network attack vector, Low confidentiality/integrity/availability impact, UI requ...

7.1CVSS7.2AI score0.00216EPSS

Exploits0References1

RedhatCVE•added 2025/02/14 11:29 a.m.•7 views

CVE-2024-12386

The WP Abstracts plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.7.3. This is due to missing nonce validation on multiple functions. This makes it possible for unauthenticated attackers to delete arbitrary accounts via a forged request...

8.1CVSS9.1AI score0.00115EPSS

Exploits0References1

NVD•added 2025/02/12 12:15 p.m.•12 views

CVE-2024-12386

8.1CVSS0.00115EPSS

Exploits0References3

CVE•added 2025/02/12 11:11 a.m.•46 views

CVE-2024-12386

The CVE-2024-12386 entry concerns the WP Abstracts WordPress plugin (prevalent versions up to 2.7.3) and documents a Cross-Site Request Forgery (CSRF) flaw caused by missing nonce validation in multiple functions. Exploitation requires an administrator to perform an action (e.g., click a forged l...

8.1CVSS7.8AI score0.00115EPSS

Exploits0References3Affected Software1

Vulnrichment•added 2025/02/12 11:11 a.m.•10 views

CVE-2024-12386 WP Abstracts <= 2.7.3 - Cross-Site Request Forgery to Arbitrary Account Deletion

8.1CVSS7.8AI score0.00115EPSS

Exploits0References3

NVD•added 2025/01/18 7:15 a.m.•10 views

CVE-2024-12385

The WP Abstracts plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.7.2. This is due to missing nonce validation on the wpabstractsloadstatus and wpabstractsdeleteabstracts functions. This makes it possible for unauthenticated attackers to...

6.1CVSS0.00271EPSS

Exploits0References5

Cvelist•added 2025/01/18 7:5 a.m.•12 views

CVE-2024-12385 WP Abstracts <= 2.7.2 - Cross-Site Request Forgery to Reflected Cross-Site Scripting

6.1CVSS0.00271EPSS

Exploits0References5

CNNVD•added 2025/01/18 12:0 a.m.•1 views

WordPress plugin WP Abstracts 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forger...

6.1CVSS8.3AI score0.00271EPSS

Exploits0References6

Patchstack•added 2024/10/24 7:53 a.m.•2 views

WordPress WP Abstracts plugin <= 2.7.1 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by UKO Patchstack Alliance in WordPress Plugin WP Abstracts versions = 2.7.1...

5.9CVSS6.1AI score0.00278EPSS

Exploits0Affected Software1

Vulnrichment•added 2023/08/30 3:27 p.m.•5 views

CVE-2023-28692 WordPress WP Abstracts Plugin <= 2.6.3 is vulnerable to Cross Site Scripting (XSS)

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Kevon Adonis WP Abstracts plugin = 2.6.3 versions...

5.9CVSS5.4AI score0.00079EPSS

Exploits1References1

OSV•added 2023/07/11 9:15 a.m.•2 views

CVE-2023-36517

Cross-Site Request Forgery CSRF vulnerability in Kevon Adonis WP Abstracts plugin = 2.6.2 versions...

8.8CVSS5.8AI score0.00094EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by