Lucene search
K

9 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.2 views

EUVD-2025-9212

Malicious code in bioql PyPI...

6.5CVSS7.3AI score0.00331EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/04/03 3:41 p.m.5 views

CVE-2025-31812

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Tomas BuddyPress Members Only buddypress-members-only allows Stored XSS.This issue affects BuddyPress Members Only: from n/a through = 3.5.3...

6.5CVSS7.2AI score0.00331EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/04/01 3:58 p.m.3 views

WordPress BuddyPress Members Only plugin <= 3.5.3 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by theviper17 in WordPress Plugin BuddyPress Members Only versions = 3.5.3...

6.5CVSS7AI score0.00331EPSS
Exploits0Affected Software1
NVD
NVD
added 2025/04/01 3:16 p.m.5 views

CVE-2025-31812

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Tomas BuddyPress Members Only buddypress-members-only allows Stored XSS.This issue affects BuddyPress Members Only: from n/a through = 3.5.3...

6.5CVSS0.00331EPSS
Exploits0References1
CVE
CVE
added 2025/04/01 2:51 p.m.44 views

CVE-2025-31812

CVE-2025-31812 : Stored XSS in BuddyPress Members Only (WordPress) due to improper input neutralization during web page generation; affects BuddyPress Members Only 3.5.3 and earlier. Exploitation details are not provided in the initial document, but Wordfence’s vulnerability listing indicates the...

6.5CVSS7.2AI score0.00331EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/06/06 2:52 a.m.3 views

WordPress BuddyPress Members Only plugin <= 3.4.8 - Sensitive Data Exposure vulnerability

Sensitive Data Exposure vulnerability discovered by Francesco Carlucci in WordPress Plugin BuddyPress Members Only versions = 3.4.8...

5.3CVSS7AI score0.00443EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/06/06 12:0 a.m.11 views

WordPress BuddyPress Members Only Plugin <= 3.3.5 is vulnerable to Sensitive Data Exposure

Software BuddyPress Members Only Type Plugin Vulnerable versions = 3.3.5 Fixed in N/A OWASP Top 10 A3: Sensitive Data Exposure Classification Sensitive Data Exposure CVE CVE-2024-0972 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 96dc46493939 Credits Francesco Carlucci...

5.3CVSS6.5AI score0.00443EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
added 2024/06/06 12:0 a.m.4 views

WordPress plugin BuddyPress Members Only security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation, a blogging platform developed in PHP. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in WordPress plugin BuddyPress Members...

5.3CVSS6.5AI score0.00443EPSS
Exploits0References3
WPVulnDB
WPVulnDB
added 2024/06/05 12:0 a.m.10 views

BuddyPress Members Only <= 3.3.5 - Improper Access Control to Sensitive Information Exposure via REST API

Description The BuddyPress Members Only plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.3.5 via the REST API. This makes it possible for unauthenticated attackers to bypass the plugin's "All Other Sections On Your Site Will be Opened to...

5.3CVSS6.8AI score0.00443EPSS
Exploits0References1
Rows per page
Query Builder