Lucene search
K

10 matches found

Cvelist
Cvelist
added 2026/06/07 10:15 p.m.33 views

CVE-2026-11463 USCiLab Cereal Shared Pointer type confusion

A vulnerability was determined in USCiLab Cereal up to 1.3.2. Affected is an unknown function of the component Shared Pointer Handler. Executing a manipulation can lead to type confusion. The attack can be launched remotely. The exploit has been publicly disclosed and may be utilized. The vendor...

7.5CVSS0.00313EPSS
Exploits0References7
Vulnrichment
Vulnrichment
added 2026/05/25 10:35 p.m.9 views

CVE-2026-42773 WordPress eMagicOne Store Manager plugin <= 1.3.2 - SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in eMagicOne eMagicOne Store Manager allows Blind SQL Injection. This issue affects eMagicOne Store Manager: from n/a through 1.3.2...

9.3CVSS5.8AI score0.00372EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/03/13 12:0 a.m.4 views

PT-2026-25195

CVE-2026-32348 Missing Authorization vulnerability in MadrasThemes MAS Videos masvideos allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects MA… https://t.co/aNSuwN2k7g...

5.3CVSS5.8AI score0.00224EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/02/25 1:32 p.m.1 views

CVE-2026-3185

A vulnerability was found in feiyuchuixue sz-boot-parent up to 1.3.2-beta. Affected is an unknown function of the file /api/admin/sys-message/ of the component API Endpoint. The manipulation of the argument messageId results in authorization bypass. The attack can be launched remotely. The exploi...

6.9CVSS5.7AI score0.0044EPSS
Exploits1References7
Positive Technologies
Positive Technologies
added 2025/08/15 12:0 a.m.12 views

PT-2025-33482 · Joomla +1 · Joomla! +1

Name of the Vulnerable Software and Affected Versions: JS Jobs plugin versions 1.3.2 through 1.4.4 Description: A SQL injection vulnerability in the JS Jobs plugin for Joomla allows low-privilege users to execute arbitrary SQL commands. Recommendations: Update the JS Jobs plugin to a version late...

8.7CVSS7.9AI score0.00251EPSS
Exploits0References7
Vulnrichment
Vulnrichment
added 2025/08/14 10:34 a.m.3 views

CVE-2025-54686 WordPress Exertio Theme <= 1.3.2 - PHP Object Injection Vulnerability

Deserialization of Untrusted Data vulnerability in scriptsbundle Exertio exertio allows Object Injection.This issue affects Exertio: from n/a through = 1.3.2...

9.8CVSS5.9AI score0.0037EPSS
Exploits0References1
CVE
CVE
added 2025/08/14 10:34 a.m.19 views

CVE-2025-54686

CVE-2025-54686 applies to WordPress Exertio Theme

9.8CVSS5.9AI score0.0037EPSS
Exploits0References1
OSV
OSV
added 2025/01/25 8:15 a.m.8 views

CVE-2024-13368

The Youzify – BuddyPress Community, User Profile, Social Network & Membership Plugin for WordPress plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on the youzifyofferbanner function in all versions up to, and including, 1.3.2. This makes it possible for...

4.3CVSS5.7AI score0.00331EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/01/21 12:0 a.m.4 views

PT-2025-5253 · Anyroad · Anyroad

Name of the Vulnerable Software and Affected Versions: AnyRoad versions 1.3.2 and earlier Description: The issue is related to a Cross-Site Request Forgery CSRF problem, which affects AnyRoad. This allows for Cross Site Request Forgery. Recommendations: For versions 1.3.2 and earlier, update to a...

4.3CVSS7.3AI score0.00142EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2024/12/13 12:0 a.m.3 views

PT-2024-12461 · Unknown · G5Theme Grid Plus

Name of the Vulnerable Software and Affected Versions: G5Theme Grid Plus versions 1.3.2 and earlier Description: The issue is related to a Missing Authorization vulnerability, which allows exploiting incorrectly configured access control security levels. Recommendations: For versions 1.3.2 and...

5.4CVSS7AI score0.00421EPSS
Exploits0References3
Rows per page
Query Builder