CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Missing Authorization vulnerability in CreativeMindsSolutions CM Answers cm-answers allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects CM Answers: from n/a through = 3.2.6...

4.3CVSS7.2AI score0.00183EPSS

Exploits0References1

RedhatCVE•added 2025/04/25 11:39 p.m.•5 views

CVE-2025-46246

Cross-Site Request Forgery CSRF vulnerability in CreativeMindsSolutions CM Answers cm-answers allows Cross Site Request Forgery.This issue affects CM Answers: from n/a through = 3.3.3...

8.8CVSS7.2AI score0.00181EPSS

Exploits0References1

Patchstack•added 2025/04/22 11:40 a.m.•4 views

WordPress CM Answers plugin <= 3.3.3 - Cross Site Request Forgery (CSRF) Vulnerability

Cross Site Request Forgery CSRF Vulnerability discovered by ch4r0n in WordPress Plugin CM Answers versions = 3.3.3...

8.8CVSS8AI score0.00181EPSS

Exploits0Affected Software1

NVD•added 2025/04/22 10:15 a.m.•8 views

CVE-2025-46246

Cross-Site Request Forgery CSRF vulnerability in CreativeMindsSolutions CM Answers cm-answers allows Cross Site Request Forgery.This issue affects CM Answers: from n/a through = 3.3.3...

8.8CVSS0.00181EPSS

Exploits0References1

Cvelist•added 2025/04/22 9:53 a.m.•11 views

CVE-2025-46246 WordPress CM Answers plugin <= 3.3.3 - Cross Site Request Forgery (CSRF) Vulnerability

Cross-Site Request Forgery CSRF vulnerability in CreativeMindsSolutions CM Answers cm-answers allows Cross Site Request Forgery.This issue affects CM Answers: from n/a through = 3.3.3...

4.3CVSS0.00181EPSS

Exploits0References1

CVE•added 2025/04/22 9:53 a.m.•48 views

CVE-2025-46246

CSRF in CM Answers plugin for WordPress (CVE-2025-46246) affects CM Answers versions up to 3.3.3. The issue enables cross-site request forgery via the CM Answers feature, potentially allowing an attacker to induce state-changing actions on behalf of an authenticated user. Public details come from...

8.8CVSS7.2AI score0.00181EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2025/04/22 9:53 a.m.•5 views

CVE-2025-46246 WordPress CM Answers <= 3.3.3 - Cross Site Request Forgery (CSRF) Vulnerability

Cross-Site Request Forgery CSRF vulnerability in CreativeMindsSolutions CM Answers allows Cross Site Request Forgery. This issue affects CM Answers: from n/a through 3.3.3...

4.3CVSS7.2AI score0.00181EPSS

Exploits0References1

Positive Technologies•added 2025/04/22 12:0 a.m.•2 views

PT-2025-17511 · Creativemindssolutions · Cm Answers

Name of the Vulnerable Software and Affected Versions: CreativeMindsSolutions CM Answers versions through 3.3.3 Description: The issue is a Cross-Site Request Forgery CSRF vulnerability, which allows Cross Site Request Forgery. Recommendations: For versions through 3.3.3, update to a version that...

8.8CVSS8.9AI score0.00181EPSS

Exploits0References8

CNNVD•added 2025/04/22 12:0 a.m.•3 views

WordPress plugin CM Answers 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site request...

8.8CVSS8.6AI score0.00181EPSS

Exploits0References1

Patchstack•added 2025/02/03 3:52 p.m.•2 views

WordPress CM Answers plugin <= 3.2.4 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by SOPROBRO in WordPress Plugin CM Answers versions = 3.2.4...

7.1CVSS6.1AI score0.00232EPSS

Exploits0Affected Software1

NVD•added 2024/12/13 3:15 p.m.•7 views

CVE-2024-54267

4.3CVSS0.00183EPSS

Exploits0References1

Vulnrichment•added 2024/12/13 2:24 p.m.•10 views

CVE-2024-54267 WordPress CM Answers plugin <= 3.2.6 - Broken Access Control vulnerability

Missing Authorization vulnerability in CreativeMindsSolutions CM Answers allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects CM Answers: from n/a through 3.2.6...

4.3CVSS6.9AI score0.00183EPSS

Exploits0References1

CVE•added 2024/12/13 2:24 p.m.•37 views

CVE-2024-54267

CVE-2024-54267 involves CM Answers (CreativeMindsSolutions) for WordPress. The CM Answers plugin has a Missing Authorization vulnerability that can be exploited due to incorrectly configured access control levels, affecting CM Answers versions up to 3.2.6 (inclusive of n/a). The CVSS 3.1 score is...

4.3CVSS7.2AI score0.00183EPSS

Exploits0References1

Patchstack•added 2024/12/10 1:30 p.m.•3 views

WordPress CM Answers plugin <= 3.2.6 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Muhmmad Zidan Ali Mansur Patchstack Alliance in WordPress Plugin CM Answers versions = 3.2.6...

4.3CVSS7AI score0.00183EPSS

Exploits0Affected Software1

NVD•added 2023/03/23 5:15 p.m.•9 views

CVE-2023-25992

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in CreativeMindsSolutions CM Answers plugin = 3.1.9 versions...

5.9CVSS5.4AI score0.00207EPSS

Exploits0References1

Vulnrichment•added 2023/03/23 4:18 p.m.•5 views

CVE-2023-25992 WordPress CM Answers Plugin <= 3.1.9 is vulnerable to Cross Site Scripting (XSS)

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in CreativeMindsSolutions CM Answers plugin = 3.1.9 versions...

5.9CVSS5.5AI score0.00207EPSS

Exploits0References1

Cvelist•added 2023/03/23 4:18 p.m.•13 views

CVE-2023-25992 WordPress CM Answers Plugin <= 3.1.9 is vulnerable to Cross Site Scripting (XSS)

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in CreativeMindsSolutions CM Answers plugin = 3.1.9 versions...

5.9CVSS5.5AI score0.00207EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by