CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

16 matches found

RedhatCVE•added 2026/01/09 9:24 a.m.•2 views

CVE-2023-40671

Cross-Site Request Forgery CSRF vulnerability in 大侠wp DX-auto-save-images plugin = 1.4.0 versions...

8.8CVSS7.1AI score0.0007EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2023-45227

Malicious code in bioql PyPI...

8.8CVSS7.9AI score0.0007EPSS

Exploits0References1

CNNVD•added 2025/09/10 12:0 a.m.•1 views

WordPress plugin Auto Save Remote Images (Drafts) 代码问题漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed using the PHP language, which supports personal blogs on PHP and MySQL servers.WordPress plugin is an...

6.4CVSS6.4AI score0.00051EPSS

Exploits0References2

Patchstack•added 2025/09/09 11:19 p.m.•6 views

WordPress Auto Save Remote Images (Drafts) plugin <= 1.0.9 - Authenticated (Contributor+) Server-Side Request Forgery vulnerability

Authenticated Contributor+ Server-Side Request Forgery vulnerability discovered by Nabil Irawan in WordPress Plugin Auto Save Remote Images Drafts versions = 1.0.9...

6.4CVSS6.9AI score0.00051EPSS

Exploits0References1Affected Software1

Patchstack•added 2024/06/03 1:49 a.m.•1 views

WordPress QQWorld Auto Save Images plugin <= 1.9.8 - Missing Authorization to Arbitrary Post Content Retrieval vulnerability

Missing Authorization to Arbitrary Post Content Retrieval vulnerability discovered by Francesco Carlucci in WordPress Plugin QQWorld Auto Save Images versions = 1.9.8...

5.3CVSS7AI score0.00627EPSS

Exploits0References1Affected Software1

Patchstack•added 2024/06/03 12:0 a.m.•9 views

WordPress QQWorld Auto Save Images Plugin <= 1.9.8 is vulnerable to Broken Access Control

Software QQWorld Auto Save Images Type Plugin Vulnerable versions = 1.9.8 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-1324 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 67a28d48882a Credits Francesco Carlucci...

5.3CVSS6.6AI score0.00627EPSS

Exploits0References2Affected Software1

Cvelist•added 2024/06/01 6:51 a.m.•17 views

CVE-2024-1324 QQWorld Auto Save Images <= 1.9.8 - Missing Authorization to Arbitrary Post Content Retrieval

The QQWorld Auto Save Images plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the saveremoteimagesgetautosavedresults function hooked via a norpriv AJAX in all versions up to, and including, 1.9.8. This makes it possible for unauthenticated...

5.3CVSS5.5AI score0.00627EPSS

Exploits0References2

WPVulnDB•added 2024/05/31 12:0 a.m.•16 views

QQWorld Auto Save Images <= 1.9.8 - Missing Authorization to Arbitrary Post Content Retrieval

Description The QQWorld Auto Save Images plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the saveremoteimagesgetautosavedresults function hooked via a norpriv AJAX in all versions up to, and including, 1.9.8. This makes it possible for...

5.3CVSS5.5AI score0.00627EPSS

Exploits0References1

NVD•added 2023/10/06 1:15 p.m.•12 views

CVE-2023-40671

Cross-Site Request Forgery CSRF vulnerability in 大侠wp DX-auto-save-images plugin = 1.4.0 versions...

8.8CVSS5.8AI score0.0007EPSS

Exploits0References1

OSV•added 2023/10/06 1:15 p.m.•0 views

CVE-2023-40671

Cross-Site Request Forgery CSRF vulnerability in 大侠wp DX-auto-save-images plugin = 1.4.0 versions...

8.8CVSS5.8AI score

Exploits0References1

Prion•added 2023/10/06 1:15 p.m.•11 views

Cross site request forgery (csrf)

Cross-Site Request Forgery CSRF vulnerability in ??wp DX-auto-save-images plugin = 1.4.0 versions...

6.8CVSS8.8AI score0.0007EPSS

Exploits0References1Affected Software1

CVE•added 2023/10/06 12:38 p.m.•53 views

CVE-2023-40671

CVE-2023-40671 concerns the WordPress plugin DX-auto-save-images (vulnerable

8.8CVSS6.5AI score0.0007EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2023/10/06 12:38 p.m.•13 views

CVE-2023-40671 WordPress DX-auto-save-images Plugin <= 1.4.0 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in 大侠wp DX-auto-save-images plugin = 1.4.0 versions...

4.3CVSS7.4AI score0.0007EPSS

Exploits0References1

Cvelist•added 2023/10/06 12:38 p.m.•16 views

CVE-2023-40671 WordPress DX-auto-save-images Plugin <= 1.4.0 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in 大侠wp DX-auto-save-images plugin = 1.4.0 versions...

4.3CVSS9AI score0.0007EPSS

Exploits0References1

Positive Technologies•added 2023/10/06 12:0 a.m.•1 views

PT-2023-27591 · 大侠Wp · Dx-Auto-Save-Images

Name of the Vulnerable Software and Affected Versions: 大侠wp DX-auto-save-images plugin versions 1.4.0 and earlier Description: The issue is a Cross-Site Request Forgery CSRF vulnerability. This means an attacker can trick a user into performing unintended actions on a web application that the use...

8.8CVSS7.5AI score0.0007EPSS

Exploits0References6

Patchstack•added 2023/08/21 12:0 a.m.•9 views

WordPress DX-auto-save-images Plugin <= 1.4.0 is vulnerable to Cross Site Request Forgery (CSRF)

Software DX-auto-save-images Type Plugin Vulnerable versions = 1.4.0 Fixed in N/A OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-40671 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID dbea39d50672 Credits Skalucy Required...

8.8CVSS6.6AI score0.0007EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by