CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Missing Authorization vulnerability in themehunk Big Store big-store allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Big Store: from n/a through = 2.0.8...

5.4CVSS7.2AI score0.00312EPSS

Exploits0References1

OSV•added 2025/03/27 11:15 a.m.•2 views

CVE-2025-30881

Missing Authorization vulnerability in ThemeHunk Big Store allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Big Store: from n/a through 2.0.8...

5.4CVSS5.8AI score0.00312EPSS

Exploits0References1

ATTACKERKB•added 2025/03/27 11:15 a.m.•2 views

CVE-2025-30881

Missing Authorization vulnerability in themehunk Big Store big-store allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Big Store: from n/a through = 2.0.8...

5.4CVSS7.2AI score0.00312EPSS

Exploits0References3

NVD•added 2025/03/27 11:15 a.m.•12 views

CVE-2025-30881

Missing Authorization vulnerability in themehunk Big Store big-store allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Big Store: from n/a through = 2.0.8...

5.4CVSS0.00312EPSS

Exploits0References1

Patchstack•added 2025/03/27 11:12 a.m.•3 views

WordPress Big Store theme <= 2.0.8 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Peter Thaleikis in WordPress Theme Big Store versions = 2.0.8...

5.4CVSS7AI score0.00312EPSS

Exploits0Affected Software1

CVE•added 2025/03/27 10:55 a.m.•55 views

CVE-2025-30881

CVE-2025-30881 affects the WordPress theme Big Store (ThemeHunk) and is disclosed as a Missing Authorization vulnerability for Big Store versions up to 2.0.8. Connected Wordfence content confirms the issue is real for Big Store and shows a Patched status, indicating a fix exists in a subsequent r...

5.4CVSS7.2AI score0.00312EPSS

Exploits0References1Affected Software1

Cvelist•added 2025/03/27 10:55 a.m.•15 views

CVE-2025-30881 WordPress Big Store theme <= 2.0.8 - Broken Access Control vulnerability

Missing Authorization vulnerability in themehunk Big Store big-store allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Big Store: from n/a through = 2.0.8...

4.3CVSS0.00312EPSS

Exploits0References1

Vulnrichment•added 2025/03/27 10:55 a.m.•8 views

CVE-2025-30881 WordPress Big Store theme <= 2.0.8 - Broken Access Control vulnerability

Missing Authorization vulnerability in themehunk Big Store big-store allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Big Store: from n/a through = 2.0.8...

4.3CVSS7.3AI score0.00312EPSS

Exploits0References1

CNNVD•added 2025/03/27 12:0 a.m.•2 views

WordPress plugin Big Store 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exist...

4.3CVSS8.5AI score0.00312EPSS

Exploits0References2

OSV•added 2023/11/12 11:15 p.m.•1 views

CVE-2023-27431

Cross-Site Request Forgery CSRF vulnerability in ThemeHunk Big Store theme = 1.9.3 versions...

8.8CVSS7.3AI score0.00312EPSS

Exploits0References1

NVD•added 2023/11/12 11:15 p.m.•9 views

CVE-2023-27431

Cross-Site Request Forgery CSRF vulnerability in ThemeHunk Big Store theme = 1.9.3 versions...

8.8CVSS0.00312EPSS

Exploits0References1

Prion•added 2023/11/12 11:15 p.m.•19 views

Cross site request forgery (csrf)

Cross-Site Request Forgery CSRF vulnerability in ThemeHunk Big Store theme = 1.9.3 versions...

6.8CVSS7.5AI score0.00312EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2023/11/12 11:4 p.m.•14 views

CVE-2023-27431 WordPress Big Store Theme <= 1.9.3 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in ThemeHunk Big Store theme = 1.9.3 versions...

4.3CVSS7.1AI score0.00312EPSS

Exploits0References1

Cvelist•added 2023/11/12 11:4 p.m.•15 views

CVE-2023-27431 WordPress Big Store Theme <= 1.9.3 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in ThemeHunk Big Store theme = 1.9.3 versions...

4.3CVSS9AI score0.00312EPSS

Exploits0References1

CVE•added 2023/11/12 11:4 p.m.•40 views

CVE-2023-27431

CVE-2023-27431 is a CSRF flaw in the WordPress ThemeHunk Big Store theme (<= 1.9.3). The vulnerability affects the theme’s ability to perform privileged actions via cross-site requests, with a CVSS v3.1 base score of 8.8 (NVD) indicating high impact on confidentiality, integrity, and availabil...

8.8CVSS6.5AI score0.00312EPSS

Exploits0References1Affected Software1

CNNVD•added 2023/11/12 12:0 a.m.•2 views

WordPress Plugin Big Store Cross-Site Request Forgery Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site request forgery vulnerability...

8.8CVSS6.5AI score0.00312EPSS

Exploits0References3

Patchstack•added 2023/03/05 12:0 a.m.•9 views

WordPress Big Store Theme <= 1.9.3 is vulnerable to Cross Site Request Forgery (CSRF)

Software Big Store Type Theme Vulnerable versions = 1.9.3 Fixed in 1.9.4 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-27431 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 7ff26778242f Credits Dave Jong Patchstack...

8.8CVSS6.6AI score0.00312EPSS

Exploits0References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by