CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

32 matches found

RedhatCVE•added 2025/10/30 9:16 a.m.•1 views

CVE-2025-58711

Missing Authorization vulnerability in solwin Blog Designer PRO blog-designer-pro allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Blog Designer PRO: from n/a through = 3.4.8...

5.3CVSS7AI score0.00041EPSS

Exploits0References1

EUVD•added 2025/10/29 9:30 a.m.•2 views

EUVD-2025-36633

5.3CVSS6.5AI score0.00041EPSS

Exploits0References2

NVD•added 2025/10/29 9:15 a.m.•4 views

CVE-2025-58711

5.3CVSS0.00041EPSS

Exploits0References1

CVE•added 2025/10/29 8:38 a.m.•7 views

CVE-2025-58711

CVE-2025-58711 affects the WordPress Blog Designer PRO plugin up to version 3.4.8. The root cause is missing authorization checking, allowing access to functionality not properly constrained by ACLs. Impact is unauthorized access to constrained features; exploitation status is not provided in the...

5.3CVSS6.6AI score0.00041EPSS

Exploits0References1

Cvelist•added 2025/10/29 8:38 a.m.•6 views

CVE-2025-58711 WordPress Blog Designer PRO plugin <= 3.4.8 - Broken Access Control vulnerability

5.3CVSS0.00041EPSS

Exploits0References1

Positive Technologies•added 2025/10/29 12:0 a.m.•4 views

PT-2025-44238

Name of the Vulnerable Software and Affected Versions solwin Blog Designer PRO versions through 3.4.8 Description A missing authorization issue exists in solwin Blog Designer PRO, allowing access to functionality that is not properly constrained by Access Control Lists ACLs. Recommendations Updat...

5.3CVSS6.6AI score0.00041EPSS

Exploits0References3

CNNVD•added 2025/10/29 12:0 a.m.•1 views

WordPress plugin Blog Designer PRO 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security vulnerabili...

5.3CVSS6.6AI score0.00041EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2025-27437

Malicious code in bioql PyPI...

7.1CVSS6.5AI score0.00042EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2025-27436

Malicious code in bioql PyPI...

7.5CVSS6.5AI score0.00176EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2025-26283

Malicious code in bioql PyPI...

8.1CVSS6.4AI score0.00178EPSS

Exploits0References1

RedhatCVE•added 2025/09/11 4:26 p.m.•1 views

CVE-2025-47695

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in solwin Blog Designer PRO blog-designer-pro.This issue affects Blog Designer PRO: from n/a through = 3.4.7...

7.5CVSS5.9AI score0.00176EPSS

Exploits0References1

NVD•added 2025/09/09 5:15 p.m.•1 views

CVE-2025-47695

7.5CVSS0.00176EPSS

Exploits0References1

NVD•added 2025/09/09 5:15 p.m.•1 views

CVE-2025-47694

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in solwin Blog Designer PRO blog-designer-pro.This issue affects Blog Designer PRO: from n/a through = 3.4.7...

7.1CVSS0.00042EPSS

Exploits0References1

CVE•added 2025/09/09 4:25 p.m.•12 views

CVE-2025-47695

CVE-2025-47695 affects WordPress Blog Designer PRO (plugin)

7.5CVSS5.9AI score0.00176EPSS

Exploits0References1

CVE•added 2025/09/09 4:25 p.m.•12 views

CVE-2025-47694

CVE-2025-47694 affects the WordPress plugin Blog Designer PRO (versions up to 3.4.7). The vulnerability is a Reflected Cross-Site Scripting (XSS) caused by improper input neutralization during web page generation. Several connected sources (Red Hat, NVD/CVE entries, Patchstack, PT-Software) corro...

7.1CVSS5.9AI score0.00042EPSS

Exploits0References1

Cvelist•added 2025/09/09 4:25 p.m.•7 views

CVE-2025-47695 WordPress Blog Designer PRO plugin <= 3.4.7 - Authenticated Non-Arbitrary Local File Inclusion vulnerability

7.5CVSS0.00176EPSS

Exploits0References1

Vulnrichment•added 2025/09/09 4:25 p.m.•1 views

CVE-2025-47694 WordPress Blog Designer PRO plugin <= 3.4.7 - Reflected Cross Site Scripting (XSS) vulnerability

7.1CVSS5.9AI score0.00042EPSS

Exploits0References1

Vulnrichment•added 2025/09/09 4:25 p.m.•2 views

CVE-2025-47695 WordPress Blog Designer PRO plugin <= 3.4.7 - Authenticated Non-Arbitrary Local File Inclusion vulnerability

7.5CVSS5.9AI score0.00176EPSS

Exploits0References1

Positive Technologies•added 2025/09/09 12:0 a.m.•2 views

PT-2025-36765

Name of the Vulnerable Software and Affected Versions: solwin Blog Designer PRO versions through 3.4.7 Description: The software contains an improper neutralization of input during web page generation, which may lead to cross-site scripting. Recommendations: Update solwin Blog Designer PRO to a...

7.1CVSS5.9AI score0.00042EPSS

Exploits0References3

CNNVD•added 2025/09/09 12:0 a.m.•1 views

WordPress plugin Blog Designer PRO 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

7.1CVSS5.8AI score0.00042EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by