CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

14 matches found

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2023-39780

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.00068EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2025-29027

Malicious code in bioql PyPI...

7.2CVSS6.4AI score0.0202EPSS

Exploits0References4

NVD•added 2025/09/12 6:15 a.m.•1 views

CVE-2025-8575

The LWS Cleaner plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the 'lwscldeletefile' function in all versions up to, and including, 2.4.1.3. This makes it possible for authenticated attackers, with Administrator-level access and above, to...

7.2CVSS0.0202EPSS

Exploits0References3

CNNVD•added 2025/09/12 12:0 a.m.•0 views

WordPress plugin LWS Cleaner 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plug-in. A security...

7.2CVSS7.7AI score0.0202EPSS

Exploits0References4

Patchstack•added 2025/09/11 10:59 p.m.•3 views

WordPress LWS Cleaner plugin <= 2.4.1.3 - Authenticated (Administrator+) Arbitrary File Deletion via 'lws_cl_delete_file' vulnerability

Authenticated Administrator+ Arbitrary File Deletion via 'lwscldeletefile' vulnerability discovered by Jonas Benjamin Friedli in WordPress Plugin LWS Cleaner versions = 2.4.1.3...

7.2CVSS6.8AI score0.0202EPSS

Exploits0References1Affected Software1

RedhatCVE•added 2025/05/23 5:13 a.m.•10 views

CVE-2023-41697

Cross-Site Request Forgery CSRF vulnerability in Nikunj Soni Easy WP Cleaner plugin = 1.9 versions...

8.8CVSS7.1AI score0.00147EPSS

Exploits0References1

Vulnrichment•added 2025/04/01 8:58 p.m.•5 views

CVE-2025-31446 WordPress WP Cleaner plugin <= 1.1.5 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in jiangmiao WP Cleaner allows Reflected XSS. This issue affects WP Cleaner: from n/a through 1.1.5...

7.1CVSS7.2AI score0.00219EPSS

Exploits0References1

Cvelist•added 2025/04/01 8:58 p.m.•12 views

CVE-2025-31446 WordPress WP Cleaner plugin <= 1.1.5 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in jiangmiao WP Cleaner wpcleaner allows Reflected XSS.This issue affects WP Cleaner: from n/a through = 1.1.5...

7.1CVSS0.00219EPSS

Exploits0References1

CVE•added 2025/04/01 8:58 p.m.•43 views

CVE-2025-31446

CVE-2025-31446 : A reflected XSS in the WordPress plugin WP Cleaner (versions up to 1.1.5) arises from improper input neutralization during page generation. Public technical details are limited in the provided documents; no patch/mitigation details are available. Monitor for updates from the vend...

7.1CVSS7.2AI score0.00219EPSS

Exploits0References1

Cvelist•added 2024/02/05 9:22 p.m.•16 views

CVE-2024-0668 Advanced Database Cleaner <= 3.1.3 - Authenticated(Administrator+) PHP Object Injection via process_bulk_action

The Advanced Database Cleaner plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 3.1.3 via deserialization of untrusted input in the 'processbulkaction' function. This makes it possible for authenticated attacker, with administrator access and above, ...

6.6CVSS7.3AI score0.00533EPSS

Exploits0References4

Cvelist•added 2023/10/10 7:39 a.m.•15 views

CVE-2023-41697 WordPress Easy WP Cleaner Plugin <= 1.9 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in Nikunj Soni Easy WP Cleaner plugin = 1.9 versions...

4.3CVSS9AI score0.00147EPSS

Exploits0References1

NVD•added 2023/07/11 8:15 a.m.•9 views

CVE-2023-35781

Cross-Site Request Forgery CSRF vulnerability in LWS Cleaner plugin = 2.3.0 versions...

8.8CVSS6.5AI score0.00068EPSS

Exploits0References1