CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Nuclei•added 2026/02/04 7:0 a.m.•16 views

Advanced Custom Fields Extended < 0.9.2 - Remote Code Execution

Advanced Custom Fields: Extended WordPress plugin 0.9.0.5 through 0.9.1.1 contains a remote code execution caused by unsafe use of calluserfuncarray in prepareform function, letting unauthenticated attackers execute arbitrary code remotely. id: CVE-2025-13486 info: name: Advanced Custom Fields...

9.8CVSS8.7AI score0.7789EPSS

Exploits10References2

Positive Technologies•added 2026/02/04 12:0 a.m.•6 views

PT-2026-6106

Name of the Vulnerable Software and Affected Versions F5 BIG-IP Advanced WAF and ASM affected versions not specified Description A configuration issue within BIG-IP Advanced WAF or ASM security policies on a virtual server can lead to the termination of the bd process due to undisclosed requests...

8.2CVSS5.5AI score0.00102EPSS

Exploits0References6

NVD•added 2026/02/03 3:16 p.m.•6 views

CVE-2026-24992

Insertion of Sensitive Information Into Sent Data vulnerability in WPFactory Advanced WooCommerce Product Sales Reporting webd-woocommerce-advanced-reporting-statistics allows Retrieve Embedded Sensitive Data.This issue affects Advanced WooCommerce Product Sales Reporting: from n/a through = 4.1....

5.3CVSS0.0005EPSS

Vulnrichment•added 2026/02/03 2:8 p.m.•3 views

CVE-2026-24992 WordPress Advanced WooCommerce Product Sales Reporting plugin <= 4.1.2 - Sensitive Data Exposure vulnerability

5.3CVSS5.3AI score0.0005EPSS

Cvelist•added 2026/02/03 2:8 p.m.•23 views

CVE-2026-24992 WordPress Advanced WooCommerce Product Sales Reporting plugin <= 4.1.2 - Sensitive Data Exposure vulnerability

5.3CVSS0.0005EPSS

EUVD•added 2026/02/03 2:8 p.m.•3 views

EUVD-2026-5225

5.3CVSS5.3AI score0.0005EPSS

CVE•added 2026/02/03 2:8 p.m.•7 views

CVE-2026-24992

CVE-2026-24992 describes a vulnerability in WPFactory Advanced WooCommerce Product Sales Reporting (webd-woocommerce-advanced-reporting-statistics) affecting versions up to and including 4.1.2. The issue is described as an insertion of sensitive information into sent data, which allows retrieval ...

5.3CVSS5.3AI score0.0005EPSS

Redos•added 2026/02/03 12:0 a.m.•4 views

ROS-20260203-73-0017

A vulnerability in the amdgpudmhdcp.c component of the Linux operating system kernel is related to errors in updating the reference count. Exploitation of the vulnerability could allow an attacker to gain access to sensitive data, compromise its integrity, and cause denial of service...

7.8CVSS5.5AI score0.0007EPSS

CNNVD•added 2026/02/03 12:0 a.m.•4 views

WordPress plugin Advanced WooCommerce Product Sales Reporting 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. There is...

5.3CVSS5.8AI score0.0005EPSS

Patchstack•added 2026/02/02 7:39 p.m.•4 views

WordPress Ultimate Addons for Beaver Builder - Lite plugin <= 1.5.7 - Authenticated (Contributor+) Stored Cross-Site Scripting via Advanced Icons Widget vulnerability

WordPress Ultimate Addons for Beaver Builder - Lite plugin = 1.5.7 - Authenticated Contributor+ Stored Cross-Site Scripting via Advanced Icons Widget vulnerability discovered by Francesco Carlucci in WordPress Plugin Ultimate Addons for Beaver Builder – Lite versions = 1.5.7...

6.4CVSS8.3AI score0.00134EPSS

Exploits0References1Affected Software1

Patchstack•added 2026/02/02 9:27 a.m.•5 views

WordPress Advanced Contact form 7 DB plugin <= 2.0.2 - Sensitive Information Exposure vulnerability

Sensitive Information Exposure vulnerability discovered by Tim Coen in WordPress Plugin Advanced Contact form 7 DB versions = 2.0.2...

5.3CVSS5.3AI score0.00961EPSS

Exploits0References1Affected Software1

Redos•added 2026/02/02 12:0 a.m.•4 views

ROS-20260202-73-0044

A vulnerability in the amdpowerplay.c component of the Linux operating system kernel is related to pointer dereferencing errors. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

5.5CVSS5.5AI score0.00054EPSS

Vulnrichment•added 2026/02/01 12:15 p.m.•2 views

CVE-2022-50940 Knap Advanced PHP Login 3.1.3 Persistent Cross-Site Scripting via Name Parameter

Knap Advanced PHP Login 3.1.3 contains a persistent cross-site scripting vulnerability that allows remote attackers to inject malicious script code in the name parameter. Attackers can exploit the vulnerability to execute arbitrary scripts in users and activity log backend modules, potentially...

6.4CVSS5.7AI score0.00136EPSS

CVE•added 2026/02/01 12:15 p.m.•7 views

CVE-2022-50940

CVE-2022-50940 affects Knap Advanced PHP Login 3.1.3 with a persistent cross-site scripting vulnerability exploitable via the name parameter. Attackers could potentially inject script code into user-facing flows and activity logs, with possible session hijacking and persistent phishing as describ...

6.4CVSS6.1AI score0.00136EPSS

Cvelist•added 2026/02/01 12:15 p.m.•31 views

CVE-2022-50940 Knap Advanced PHP Login 3.1.3 Persistent Cross-Site Scripting via Name Parameter

6.4CVSS0.00136EPSS

CNNVD•added 2026/02/01 12:0 a.m.•3 views

Knap Advanced PHP Login 跨站脚本漏洞

Knap Advanced PHP Login is an authentication system script developed by the Knap company. Version 3.1.3 of Knap Advanced PHP Login contains a cross-site scripting vulnerability. This vulnerability stems from a name parameter that allows for stored cross-site scripting, potentially leading to...

6.4CVSS5.7AI score0.00136EPSS

Packet Storm News•added 2026/01/30 12:0 a.m.•4 views

Semantic-Aware Advanced Persistent Threat Detection Using Autoencoders on LLM-Encoded System Logs

Advanced Persistent Threats APTs are among the most challenging cyberattacks to detect. They are carried out by highly skilled attackers who carefully study their targets and operate in a stealthy, long-term manner. Because APTs exhibit "low-and-slow" behavior, traditional statistical methods and...

5.4AI score