CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

43 matches found

ATTACKERKB•added 2026/02/19 8:26 a.m.•2 views

CVE-2026-23803

Server-Side Request Forgery SSRF vulnerability in Burhan Nasir Smart Auto Upload Images smart-auto-upload-images allows Server Side Request Forgery.This issue affects Smart Auto Upload Images: from n/a through = 1.2.2...

5.5AI score0.00013EPSS

Exploits0References2

Patchstack•added 2026/01/03 5:40 p.m.•3 views

WordPress Smart Auto Upload Images plugin <= 1.2.2 - Server Side Request Forgery (SSRF) vulnerability

Server Side Request Forgery SSRF vulnerability discovered by lilmingwa13 in WordPress Plugin Smart Auto Upload Images versions = 1.2.2...

6.4CVSS5.5AI score0.00013EPSS

Exploits0Affected Software1

NVD•added 2025/11/08 4:15 a.m.•4 views

CVE-2025-12161

The Smart Auto Upload Images plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the auto-image creation functionality in all versions up to, and including, 1.2.0. This makes it possible for authenticated attackers, with Contributor-level access and...

8.8CVSS0.00278EPSS

Exploits0References2

CVE•added 2025/11/08 3:27 a.m.•17 views

CVE-2025-12161

The CVE concerns the WordPress plugin Smart Auto Upload Images. Affected versions:

8.8CVSS7AI score0.00278EPSS

Exploits0References2

Positive Technologies•added 2025/11/08 12:0 a.m.•2 views

PT-2025-45549

Name of the Vulnerable Software and Affected Versions Smart Auto Upload Images versions prior to 1.2.1 Description The Smart Auto Upload Images plugin for WordPress is affected by a flaw related to missing file type validation during the auto-image creation process. This allows authenticated...

8.8CVSS7.6AI score0.00278EPSS

Exploits0References9

CNNVD•added 2025/11/08 12:0 a.m.•1 views

WordPress plugin Smart Auto Upload Images 代码问题漏洞

WordPress Smart Auto Upload Images plugin is a WordPress plugin that is mainly used to automatically upload and manage images. WordPress Smart Auto Upload Images plugin has an arbitrary file upload vulnerability that stems from a lack of file type validation, which can be exploited by an attacker...

8.8CVSS8.2AI score0.00278EPSS

Exploits0References3

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2022-45943

Malicious code in bioql PyPI...

6.1CVSS6.4AI score0.00097EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2022-51963

Malicious code in bioql PyPI...

8.8CVSS5.3AI score0.00167EPSS

Exploits0References3

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2025-28338

Malicious code in bioql PyPI...

4.9CVSS6.4AI score0.0012EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2022-51962

Malicious code in bioql PyPI...

6.1CVSS4.8AI score0.00272EPSS

Exploits0References3

CNVD•added 2025/06/27 12:0 a.m.•2 views

WordPress Auto Upload Images plugin code issue vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress plugin is an application plugin. A code issue vulnerability exists in the WordPress Auto Upload Images plugin that stems from the server not implementing an adequate authentication mechanism to confirm the orig...

4.9CVSS6.4AI score0.0012EPSS

Exploits0References1

RedhatCVE•added 2025/06/23 8:40 a.m.•2 views

CVE-2025-49985

Server-Side Request Forgery SSRF vulnerability in Ali Irani Auto Upload Images auto-upload-images allows Server Side Request Forgery.This issue affects Auto Upload Images: from n/a through = 3.3.2...

4.9CVSS5.9AI score0.0012EPSS

Exploits0References1

NVD•added 2025/06/20 3:15 p.m.•1 views

CVE-2025-49985

Server-Side Request Forgery SSRF vulnerability in Ali Irani Auto Upload Images auto-upload-images allows Server Side Request Forgery.This issue affects Auto Upload Images: from n/a through = 3.3.2...

4.9CVSS0.0012EPSS

Exploits0References1

Vulnrichment•added 2025/06/20 3:4 p.m.•2 views

CVE-2025-49985 WordPress Auto Upload Images plugin <= 3.3.2 - Server Side Request Forgery (SSRF) Vulnerability

Server-Side Request Forgery SSRF vulnerability in Ali Irani Auto Upload Images allows Server Side Request Forgery. This issue affects Auto Upload Images: from n/a through 3.3.2...

4.9CVSS5.2AI score0.0012EPSS

Exploits0References1

CNNVD•added 2025/06/20 12:0 a.m.•1 views

WordPress plugin Auto Upload Images 代码问题漏洞

4.9CVSS7.1AI score0.0012EPSS

Exploits0References1

Positive Technologies•added 2025/06/20 12:0 a.m.•1 views

PT-2025-26353 · Unknown · Ali Irani Auto Upload Images

Name of the Vulnerable Software and Affected Versions: Ali Irani Auto Upload Images versions 3.3.2 and earlier Description: The issue is a Server-Side Request Forgery SSRF vulnerability that allows Server Side Request Forgery. This means an attacker can potentially force the server to make reques...

4.9CVSS6.2AI score0.0012EPSS

Exploits0References4

RedhatCVE•added 2025/05/23 12:34 a.m.•5 views

CVE-2022-4632

A vulnerability has been found in Auto Upload Images up to 3.3.0 and classified as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to cross site scripting. The attack can be launched remotely. Upgrading to version 3.3.1 is able to address this issue...

6.1CVSS6.3AI score0.00272EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 12:33 a.m.•6 views

CVE-2022-4633

A vulnerability was found in Auto Upload Images up to 3.3.0 and classified as problematic. Affected by this issue is some unknown functionality of the file src/setting-page.php of the component Settings Handler. The manipulation leads to cross-site request forgery. The attack may be launched...

8.8CVSS6.9AI score0.00167EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 11:45 p.m.•7 views

CVE-2022-42880

Cross-Site Request Forgery CSRF vulnerability in Ali Irani Auto Upload Images plugin = 3.3 versions allows Stored Cross-Site Scripting XSS...

6.1CVSS6.4AI score0.00097EPSS

Exploits0References1