Lucene search
+L

90 matches found

RedhatCVE
RedhatCVE
added 2025/05/18 4:3 p.m.15 views

CVE-2025-48127

Missing Authorization vulnerability in App Cheap Push notification for Mobile and Web app push-notification-mobile-and-web-app allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Push notification for Mobile and Web app: from n/a through = 2.0.3...

6.5CVSS7.2AI score0.00214EPSS
Exploits0References1
NVD
NVD
added 2025/05/16 4:15 p.m.23 views

CVE-2025-39493

Missing Authorization vulnerability in ValvePress Rankie valvepress-rankie allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Rankie: from n/a through 1.8.2...

8.8CVSS0.00286EPSS
Exploits0References1
NVD
NVD
added 2025/05/07 3:16 p.m.16 views

CVE-2025-47612

Missing Authorization vulnerability in ClickWhale ClickWhale clickwhale allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects ClickWhale: from n/a through = 2.4.6...

8.8CVSS0.00305EPSS
Exploits0References1
CVE
CVE
added 2025/05/07 2:20 p.m.56 views

CVE-2025-47628

CVE-2025-47628 relates to the WordPress plugin QS Dark Mode (versions ≤ 3.0). The available documents describe a Missing Authorization/Broken Access Control vulnerability, allowing exploitation of improperly configured access control levels. No concrete exploit details, affected product/version r...

8.8CVSS7.2AI score0.00305EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2025/04/16 1:15 p.m.10 views

CVE-2025-39545

Missing Authorization vulnerability in miniOrange WordPress REST API Authentication wp-rest-api-authentication allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WordPress REST API Authentication: from n/a through = 3.6.3...

5.4CVSS0.0047EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/04/05 2:32 p.m.9 views

CVE-2025-31746

Missing Authorization vulnerability in Think201 Clients clients allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Clients: from n/a through = 1.1.4...

6.4CVSS7.2AI score0.0032EPSS
Exploits0References1
NVD
NVD
added 2025/04/04 4:15 p.m.10 views

CVE-2025-32218

Missing Authorization vulnerability in RealMag777 TableOn posts-table-filterable allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects TableOn: from n/a through = 1.0.5.1...

5.4CVSS0.00458EPSS
Exploits0References1
NVD
NVD
added 2025/04/01 3:16 p.m.6 views

CVE-2025-31820

Missing Authorization vulnerability in webdevstudios Automatic Featured Images from Videos automatic-featured-images-from-videos allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Automatic Featured Images from Videos: from n/a through = 1.2.4...

4.3CVSS0.00308EPSS
Exploits0References1
NVD
NVD
added 2025/04/01 3:16 p.m.11 views

CVE-2025-31732

Missing Authorization vulnerability in gb-plugins GB Gallery Slideshow gb-gallery-slideshow allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects GB Gallery Slideshow: from n/a through = 1.3...

4.3CVSS0.00372EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/04/01 2:51 p.m.19 views

CVE-2025-31846 WordPress Theater for WordPress plugin <= 0.18.7 - Broken Access Control vulnerability

Missing Authorization vulnerability in Jeroen Schmit Theater for WordPress theatre allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Theater for WordPress: from n/a through = 0.18.7...

4.3CVSS0.00372EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/03/31 12:0 p.m.38 views

CVE-2025-2994 Tenda FH1202 Web Management Interface qossetting access control

A vulnerability, which was classified as critical, was found in Tenda FH1202 1.2.0.14408. This affects an unknown part of the file /goform/qossetting of the component Web Management Interface. The manipulation leads to improper access controls. It is possible to initiate the attack remotely. The...

6.9CVSS0.00597EPSS
Exploits1References5
CVE
CVE
added 2025/03/27 9:46 p.m.65 views

CVE-2025-22739

CVE-2025-22739 affects LearnPress (WordPress LMS Plugin) up to version 4.2.7.5 and is a Missing Authorization vulnerability. The CVSS 3.1 score is 5.3 (Medium). Connected data confirm a patch exists for LearnPress, i.e., the issue has been addressed in a later release. Action: upgrade LearnPress ...

5.3CVSS7.2AI score0.00263EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/03/01 2:32 p.m.6 views

CVE-2025-22280

Missing Authorization vulnerability in revmakx DefendWP Firewall defend-wp-firewall allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects DefendWP Firewall: from n/a through = 1.1.0...

7.6CVSS7.2AI score0.0026EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/20 8:25 p.m.12 views

CVE-2025-22657

Missing Authorization vulnerability in Vito Peleg Atarim atarim-visual-collaboration allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Atarim: from n/a through = 4.0.9...

7.5CVSS5.9AI score0.00357EPSS
Exploits0References1
NVD
NVD
added 2025/01/07 11:15 a.m.9 views

CVE-2024-56276

Missing Authorization vulnerability in Syed Balkhi Contact Form by WPForms wpforms-lite allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Contact Form by WPForms: from n/a through = 1.9.2.2...

8.8CVSS0.00385EPSS
Exploits0References1
NVD
NVD
added 2025/01/02 12:15 p.m.9 views

CVE-2023-46644

Missing Authorization vulnerability in WP CTA PRO WordPress CTA allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WordPress CTA: from n/a through 1.5.8...

6.5CVSS0.00391EPSS
Exploits0References1
NVD
NVD
added 2025/01/02 12:15 p.m.8 views

CVE-2023-46082

Missing Authorization vulnerability in Cyberlord92 Broken Link Checker | Finder broken-link-finder allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Broken Link Checker | Finder: from n/a through = 2.4.2...

5.3CVSS0.00343EPSS
Exploits0References1
NVD
NVD
added 2024/12/13 3:15 p.m.27 views

CVE-2023-39997

Missing Authorization vulnerability in supsystic.com Popup by Supsystic allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Popup by Supsystic: from n/a through 1.10.19...

9.8CVSS0.00544EPSS
Exploits0References1
OSV
OSV
added 2024/12/13 3:15 p.m.5 views

CVE-2023-38475

Missing Authorization vulnerability in RedNao Donations Made Easy – Smart Donations allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Donations Made Easy – Smart Donations: from n/a through 4.0.12...

8.8CVSS7.3AI score0.00481EPSS
Exploits0References1
NVD
NVD
added 2024/12/13 3:15 p.m.4 views

CVE-2023-35046

Missing Authorization vulnerability in Dynamic.ooo Dynamic Visibility for Elementor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Dynamic Visibility for Elementor: from n/a through 5.0.5...

5.4CVSS0.0058EPSS
Exploits0References1
Rows per page
Query Builder