Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

CVE
CVEadded 2026/03/25 4:15 p.m.1 views

CVE-2026-32511

CVE-2026-32511 refers to a Deserialization of Untrusted Data vulnerability in Mikado-Themes Stål (WordPress Stål theme) that allows Object Injection. The issue affects Stål versions before 1.7. The root cause is deserializing untrusted data, enabling object instantiation through crafted input. Pu...

5.4CVSS5.8AI score0.00061EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2026/03/25 12:0 a.m.1 views

PT-2026-28020

Name of the Vulnerable Software and Affected Versions Archicon versions prior to 1.7 Description A flaw exists in Archicon that allows for object injection due to deserialization of untrusted data. This issue impacts the software's ability to securely handle data, potentially leading to...

5.4CVSS5.9AI score0.00061EPSS
Exploits0References3
Cvelist
Cvelistadded 2026/01/08 9:17 a.m.24 views

CVE-2025-67937 WordPress Hendon theme < 1.7 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Mikado-Themes Hendon hendon allows PHP Local File Inclusion.This issue affects Hendon: from n/a through 1.7...

8.1CVSS0.00066EPSS
Exploits0References1
Patchstack
Patchstackadded 2026/01/06 12:6 p.m.2 views

WordPress Hendon theme < 1.7 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Hendon versions 1.7...

8.1CVSS7AI score0.00066EPSS
Exploits0Affected Software1
Vulnrichment
Vulnrichmentadded 2025/01/27 11:11 a.m.5 views

CVE-2025-0695

An Allocation of Resources Without Limits or Throttling vulnerability in Cesanta Frozen versions less than 1.7 allows an attacker to induce a crash of the component embedding the library by supplying a maliciously crafted JSON as input...

5.3CVSS5.2AI score0.00085EPSS
Exploits0References1
Patchstack
Patchstackadded 2024/11/20 11:14 a.m.1 views

WordPress BSK Forms Validation plugin <= 1.7 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by Le Ngoc Anh in WordPress Plugin BSK Forms Validation versions = 1.7...

7.1CVSS6.1AI score0.00041EPSS
Exploits0Affected Software1
Patchstack
Patchstackadded 2024/04/05 8:49 a.m.3 views

WordPress LMS by Masteriyo plugin <= 1.7.2 - Privilege Escalation vulnerability

Privilege Escalation vulnerability discovered by Steven Julian Patchstack Alliance in WordPress Plugin Masteriyo - LMS versions = 1.7.2...

9.8CVSS7AI score0.48278EPSS
Exploits0Affected Software1
Positive Technologies
Positive Technologiesadded 2023/03/10 12:0 a.m.4 views

PT-2023-6477 · Oracle +1 · Jre +1

Name of the Vulnerable Software and Affected Versions: Apache Log4j versions prior to 2 Description: The issue is related to the Chainsaw and SocketAppender components in Log4j 1.x when used with JRE less than 1.7. An attacker can cause a logging entry involving a specially-crafted hashmap or...

9.8CVSS7.2AI score0.72202EPSS
Exploits13References61
Rows per page
Query Builder