Lucene search
K

182 matches found

NVD
NVD
added 2 days ago3 views

CVE-2026-57344

Unauthenticated Cross Site Scripting XSS in Classified Listing = 5.4.2 versions...

7.1CVSS0.00191EPSS
Exploits0References1
CVE
CVE
added 2 days ago6 views

CVE-2026-57355

The WordPress Classified Listing plugin ≤ 5.4.2 has a Broken Access Control vulnerability. Affected software: Classified Listing plugin for WordPress (versions ≤ 5.4.2). Root cause: insufficient access checks. Impact: according to CVSS 3.1 metrics (AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N) with a base...

6.5CVSS5.8AI score0.00299EPSS
Exploits0References1
Cvelist
Cvelist
added 2 days ago36 views

CVE-2026-57355 WordPress Classified Listing plugin <= 5.4.2 - Broken Access Control vulnerability

Subscriber Broken Access Control in Classified Listing = 5.4.2 versions...

6.5CVSS0.00299EPSS
Exploits0References1
CVE
CVE
added 2 days ago5 views

CVE-2026-57344

Summary: Unauthenticated Cross Site Scripting (XSS) vulnerability in the WordPress Classified Listing plugin (versions &lt;= 5.4.2). Affected product: WordPress Classified Listing plugin.Versions:

7.1CVSS5.8AI score0.00191EPSS
Exploits0References1
Cvelist
Cvelist
added 2 days ago33 views

CVE-2026-57344 WordPress Classified Listing plugin <= 5.4.2 - Cross Site Scripting (XSS) vulnerability

Unauthenticated Cross Site Scripting XSS in Classified Listing = 5.4.2 versions...

7.1CVSS0.00191EPSS
Exploits0References1
Patchstack
Patchstack
added 5 days ago5 views

WordPress Classified Listing plugin <= 5.4.2 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by daroo in WordPress Plugin Classified Listing versions = 5.4.2...

7.1CVSS5.8AI score0.00191EPSS
Exploits0Affected Software1
NVD
NVD
added 2026/06/19 6:17 a.m.14 views

CVE-2026-10779

The Classified Listing – Classified ads & Business Directory plugin for WordPress is vulnerable to Missing Authorization in all versions up to, and including, 5.4.2. This is due to a missing capability/ownership check on the galleryimageupdateasfeature AJAX handler action:...

4.3CVSS0.00213EPSS
Exploits0References8
EUVD
EUVD
added 2026/06/19 3:41 a.m.11 views

EUVD-2026-37978

The Classified Listing – Classified ads & Business Directory plugin for WordPress is vulnerable to Missing Authorization in all versions up to, and including, 5.4.2. This is due to a missing capability/ownership check on the galleryimageupdateasfeature AJAX handler action:...

4.3CVSS5.4AI score0.00213EPSS
Exploits0References8
Cvelist
Cvelist
added 2026/06/19 3:41 a.m.33 views

CVE-2026-10779 Classified Listing <= 5.4.2 - Missing Authorization to Authenticated (Subscriber+) Feature Modification via Multiple AJAX Handlers ('listingId'/'id' Parameters)

The Classified Listing – Classified ads & Business Directory plugin for WordPress is vulnerable to Missing Authorization in all versions up to, and including, 5.4.2. This is due to a missing capability/ownership check on the galleryimageupdateasfeature AJAX handler action:...

4.3CVSS0.00213EPSS
Exploits0References8
ATTACKERKB
ATTACKERKB
added 2026/06/19 3:41 a.m.7 views

CVE-2026-10779

The Classified Listing – Classified ads & Business Directory plugin for WordPress is vulnerable to Missing Authorization in all versions up to, and including, 5.4.2. This is due to a missing capability/ownership check on the galleryimageupdateasfeature AJAX handler action:...

4.3CVSS5.4AI score0.00213EPSS
Exploits0References9
CVE
CVE
added 2026/06/19 3:41 a.m.26 views

CVE-2026-10779

CVE-2026-10779 affects the WordPress Classified Listing plugin (versions

4.3CVSS6AI score0.00213EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2026/06/19 12:0 a.m.17 views

PT-2026-50830

Name of the Vulnerable Software and Affected Versions Classified Listing – Classified ads & Business Directory versions prior to 5.4.3 Description The plugin contains a missing authorization flaw in the gallery image update as feature AJAX handler action: rtcl fb gallery image update as feature...

4.3CVSS5.9AI score0.00213EPSS
Exploits0References14
Patchstack
Patchstack
added 2026/06/18 3:38 p.m.5 views

WordPress Classified Listing – AI-Powered Classified ads & Business Directory plugin <= 5.4.2 - Missing Authorization to Authenticated (Subscriber+) Feature Modification vulnerability

Missing Authorization to Authenticated Subscriber+ Feature Modification vulnerability discovered by Ben Tamam Ben Tamam in WordPress Plugin Classified Listing versions = 5.4.2...

4.3CVSS5.3AI score0.00213EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2026/06/15 9:16 p.m.7 views

CVE-2026-42658

Unauthenticated Cross Site Scripting XSS in Classified Listing = 5.3.8 versions...

7.1CVSS0.00175EPSS
Exploits0References1
NVD
NVD
added 2026/06/15 9:16 p.m.6 views

CVE-2026-42651

Subscriber Broken Access Control in Classified Listing = 5.3.9 versions...

6.3CVSS0.00242EPSS
Exploits0References1
NVD
NVD
added 2026/06/15 9:16 p.m.6 views

CVE-2026-42640

Unauthenticated Broken Access Control in Classified Listing = 5.3.8 versions...

6.5CVSS0.00188EPSS
Exploits0References1
CVE
CVE
added 2026/06/15 8:18 p.m.11 views

CVE-2026-42658

The CVE-2026-42658 entry concerns the WordPress Classified Listing plugin, affected versions

7.1CVSS5.1AI score0.00175EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/06/15 8:18 p.m.6 views

CVE-2026-42658 WordPress Classified Listing plugin <= 5.3.8 - Cross Site Scripting (XSS) vulnerability

Unauthenticated Cross Site Scripting XSS in Classified Listing = 5.3.8 versions...

7.1CVSS5.1AI score0.00175EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/15 8:18 p.m.25 views

CVE-2026-42658 WordPress Classified Listing plugin <= 5.3.8 - Cross Site Scripting (XSS) vulnerability

Unauthenticated Cross Site Scripting XSS in Classified Listing = 5.3.8 versions...

7.1CVSS0.00175EPSS
Exploits0References1
CVE
CVE
added 2026/06/15 8:18 p.m.10 views

CVE-2026-42651

CVE-2026-42651 affects the WordPress Classified Listing plugin (versions

6.3CVSS5.1AI score0.00242EPSS
Exploits0References1
Rows per page
Query Builder