Lucene search
K

4953 matches found

Patchstack
Patchstack
added 2026/02/11 8:35 a.m.13 views

WordPress Custom Block Builder - Lazy Blocks plugin <= 4.2.0 - Authenticated (Contributor+) Remote Code Execution vulnerability

WordPress Custom Block Builder - Lazy Blocks plugin = 4.2.0 - Authenticated Contributor+ Remote Code Execution vulnerability discovered by Youssef Elouaer - ISET ZAGHOUAN in WordPress Plugin Lazy Blocks versions = 4.2.0...

8.8CVSS5.7AI score0.09093EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2026/02/11 8:26 a.m.28 views

CVE-2026-1560 Custom Block Builder – Lazy Blocks <= 4.2.0 - Authenticated (Contributor+) Remote Code Execution

The Custom Block Builder – Lazy Blocks plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 4.2.0 via multiple functions in the 'LazyBlocksBlocks' class. This makes it possible for authenticated attackers, with Contributor-level access and above, to...

8.8CVSS0.09093EPSS
Exploits1References5
CVE
CVE
added 2026/02/11 8:26 a.m.25 views

CVE-2026-1560

The CVE covers the Custom Block Builder – Lazy Blocks plugin for WordPress, with RCE in all versions up to 4.2.0 via multiple functions in the LazyBlocks_Blocks class. Exploitation requires authenticated access at Contributor level or higher, enabling code execution on the server. The description...

8.8CVSS5.9AI score0.09093EPSS
Exploits1References5
ATTACKERKB
ATTACKERKB
added 2026/02/11 8:26 a.m.10 views

CVE-2026-1560

The Custom Block Builder – Lazy Blocks plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 4.2.0 via multiple functions in the 'LazyBlocksBlocks' class. This makes it possible for authenticated attackers, with Contributor-level access and above, to...

8.8CVSS5.9AI score0.09093EPSS
Exploits1References6
Vulnrichment
Vulnrichment
added 2026/02/11 8:26 a.m.6 views

CVE-2026-1560 Custom Block Builder – Lazy Blocks <= 4.2.0 - Authenticated (Contributor+) Remote Code Execution

The Custom Block Builder – Lazy Blocks plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 4.2.0 via multiple functions in the 'LazyBlocksBlocks' class. This makes it possible for authenticated attackers, with Contributor-level access and above, to...

8.8CVSS5.9AI score0.09093EPSS
Exploits1References5
CNNVD
CNNVD
added 2026/02/11 12:0 a.m.8 views

WordPress plugin Custom Block Builder – Lazy Blocks 代码注入漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be added t...

8.8CVSS6.2AI score0.09093EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2026/02/11 12:0 a.m.9 views

PT-2026-7490

Name of the Vulnerable Software and Affected Versions Custom Block Builder – Lazy Blocks versions prior to 4.2.1 Description The Custom Block Builder – Lazy Blocks plugin for WordPress has a flaw that allows for Remote Code Execution. An authenticated attacker with Contributor-level access or...

8.8CVSS5.8AI score0.09093EPSS
Exploits1References11
GithubExploit
GithubExploit
added 2026/02/10 9:11 p.m.198 views

Exploit for CVE-2026-1560

CVE-2026-XXXX – Authenticated Remote Code Execution in Lazy Bl...

6.6AI score0.09093EPSS
Exploits1
Patchstack
Patchstack
added 2026/02/10 12:26 p.m.5 views

WordPress Business Template Blocks for WPBakery (Visual Composer) Page Builder plugin <= 1.3.2 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by Skalucy in WordPress Plugin Business Template Blocks for WPBakery Visual Composer Page Builder versions = 1.3.2...

7.1CVSS5.4AI score0.00175EPSS
Exploits0Affected Software1
CNNVD
CNNVD
added 2026/02/10 12:0 a.m.5 views

AutoGPT 安全漏洞

AutoGPT is an open-source tool developed by AutoGPT. It aims to make AI accessible and usable for everyone. Versions of AutoGPT prior to 0.6.32 contain security vulnerabilities. These vulnerabilities stem from dangerous patterns in the regular expressions used in code extraction blocks, which cou...

6.5CVSS5.9AI score0.00473EPSS
Exploits1References5
Patchstack
Patchstack
added 2026/02/06 6:17 a.m.11 views

WordPress Essential Blocks plugin < 4.4.3 - Unauthenticated Local File Inclusion vulnerability

Unauthenticated Local File Inclusion vulnerability discovered by Marc Montpas in WordPress Plugin Essential Blocks for Gutenberg versions 4.4.3...

9.8CVSS8.3AI score0.50673EPSS
Exploits2References1Affected Software1
RedhatCVE
RedhatCVE
added 2026/02/06 1:25 a.m.5 views

CVE-2026-22038

AutoGPT is a platform that allows users to create, deploy, and manage continuous artificial intelligence agents that automate complex workflows. Prior to autogpt-platform-beta-v0.6.46, the AutoGPT platform's Stagehand integration blocks log API keys and authentication secrets in plaintext using...

8.1CVSS5.4AI score0.00433EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2026/02/06 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2020-37121

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - CODE::BLOCKS 16.01 contains a buffer overflow vulnerability that allows attackers to execute arbitrary code by overwriting Structured Exception Handler with...

6.7CVSS6.5AI score0.00207EPSS
Exploits0References2
OSV
OSV
added 2026/02/05 5:16 p.m.4 views

DEBIAN-CVE-2020-37121

CODE::BLOCKS 16.01 contains a buffer overflow vulnerability that allows attackers to execute arbitrary code by overwriting Structured Exception Handler with crafted Unicode characters. Attackers can create a malicious M3U playlist file with 536 bytes of buffer and shellcode to trigger remote code...

5.5CVSS6.8AI score0.00207EPSS
Exploits0References1
OSV
OSV
added 2026/02/05 5:16 p.m.4 views

UBUNTU-CVE-2020-37121

CODE::BLOCKS 16.01 contains a buffer overflow vulnerability that allows attackers to execute arbitrary code by overwriting Structured Exception Handler with crafted Unicode characters. Attackers can create a malicious M3U playlist file with 536 bytes of buffer and shellcode to trigger remote code...

6.7CVSS6.7AI score0.00207EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2026/02/05 4:13 p.m.4 views

CVE-2020-37121

CODE::BLOCKS 16.01 contains a buffer overflow vulnerability that allows attackers to execute arbitrary code by overwriting Structured Exception Handler with crafted Unicode characters. Attackers can create a malicious M3U playlist file with 536 bytes of buffer and shellcode to trigger remote code...

6.7CVSS6.6AI score0.00207EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2026/02/05 4:13 p.m.13 views

CVE-2020-37121

CODE::BLOCKS 16.01 has a buffer overflow vulnerability that enables remote code execution by overwriting the Structured Exception Handler with crafted Unicode in a malicious M3U playlist (~536 bytes). Affected component is the SEH handler logic within CODE::BLOCKS 16.01; exploitation details spec...

6.7CVSS6.6AI score0.00207EPSS
Exploits0References4
EUVD
EUVD
added 2026/02/05 4:13 p.m.7 views

EUVD-2020-31020

CODE::BLOCKS 16.01 contains a buffer overflow vulnerability that allows attackers to execute arbitrary code by overwriting Structured Exception Handler with crafted Unicode characters. Attackers can create a malicious M3U playlist file with 536 bytes of buffer and shellcode to trigger remote code...

6.7CVSS6.6AI score0.00207EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2026/02/05 4:13 p.m.7 views

CVE-2020-37121

Removed by vendor...

6.7CVSS5.8AI score0.00207EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/02/05 12:0 a.m.6 views

PT-2026-6566

Name of the Vulnerable Software and Affected Versions CODE::BLOCKS version 16.01 Description CODE::BLOCKS version 16.01 contains a buffer overflow issue that allows attackers to execute arbitrary code. This is achieved by overwriting the Structured Exception Handler with specially crafted Unicode...

6.7CVSS6.8AI score0.00207EPSS
Exploits0References6
Rows per page
Query Builder