CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

138 matches found

WordPress Smart Online Order for Clover plugin <= 1.6.0 - Sensitive Data Exposure vulnerability

Sensitive Data Exposure vulnerability discovered by she11f in WordPress Plugin Smart Online Order for Clover versions = 1.6.0...

7.3CVSS5.8AI score0.00049EPSS

Exploits0Affected Software1

Patchstack•added last week•7 views

WordPress Smart Online Order for Clover plugin <= 1.6.0 - Broken Authentication vulnerability

Broken Authentication vulnerability discovered by she11f in WordPress Plugin Smart Online Order for Clover versions = 1.6.0...

7.3CVSS5.8AI score0.00057EPSS

Exploits0Affected Software1

Patchstack•added 2026/05/27 5:0 p.m.•4 views

WordPress Smart Online Order for Clover plugin <= 1.6.0 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by she11f in WordPress Plugin Smart Online Order for Clover versions = 1.6.0...

7.1CVSS5.8AI score0.00036EPSS

Exploits0Affected Software1

NVD•added 2026/05/27 11:16 a.m.•6 views

CVE-2026-42746

Insertion of Sensitive Information Into Sent Data vulnerability in ZAYTECH Smart Online Order for Clover clover-online-orders allows Retrieve Embedded Sensitive Data.This issue affects Smart Online Order for Clover: from n/a through = 1.6.0...

7.3CVSS0.00049EPSS

Exploits0References1

NVD•added 2026/05/27 11:16 a.m.•6 views

CVE-2026-42738

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ZAYTECH Smart Online Order for Clover clover-online-orders allows Stored XSS.This issue affects Smart Online Order for Clover: from n/a through = 1.6.0...

7.1CVSS0.00036EPSS

Exploits0References1

NVD•added 2026/05/27 11:16 a.m.•4 views

CVE-2026-42745

Authentication Bypass Using an Alternate Path or Channel vulnerability in ZAYTECH Smart Online Order for Clover clover-online-orders allows Authentication Bypass.This issue affects Smart Online Order for Clover: from n/a through = 1.6.0...

7.3CVSS0.00057EPSS

Exploits0References1

Vulnrichment•added 2026/05/27 9:49 a.m.•5 views

CVE-2026-42746 WordPress Smart Online Order for Clover plugin <= 1.6.0 - Sensitive Data Exposure vulnerability

7.3CVSS5.8AI score0.00049EPSS

Exploits0References1

Cvelist•added 2026/05/27 9:49 a.m.•24 views

CVE-2026-42745 WordPress Smart Online Order for Clover plugin <= 1.6.0 - Broken Authentication vulnerability

7.3CVSS0.00057EPSS

Exploits0References1

EUVD•added 2026/05/27 9:49 a.m.•6 views

EUVD-2026-32195

7.3CVSS5.8AI score0.00049EPSS

Exploits0References1

ATTACKERKB•added 2026/05/27 9:49 a.m.•2 views

CVE-2026-42745

7.3CVSS5.8AI score0.00057EPSS

Exploits0References2

CVE•added 2026/05/27 9:49 a.m.•8 views

CVE-2026-42746

CVE-2026-42746 concerns the WordPress Clover plugin “clover-online-orders” (Smart Online Order for Clover) with versions up to 1.6.0. The vulnerability is described as an Insertion of Sensitive Information Into Sent Data, allowing retrieval of embedded sensitive data. The provided documents indic...

7.3CVSS5.8AI score0.00049EPSS

Exploits0References1

ATTACKERKB•added 2026/05/27 9:49 a.m.•2 views

CVE-2026-42746

7.3CVSS5.8AI score0.00049EPSS

Exploits0References2

Vulnrichment•added 2026/05/27 9:49 a.m.•4 views

CVE-2026-42745 WordPress Smart Online Order for Clover plugin <= 1.6.0 - Broken Authentication vulnerability

7.3CVSS5.8AI score0.00057EPSS

Exploits0References1

EUVD•added 2026/05/27 9:49 a.m.•3 views

EUVD-2026-32194

7.3CVSS5.8AI score0.00057EPSS

Exploits0References1

CVE•added 2026/05/27 9:49 a.m.•9 views

CVE-2026-42745

The CVE-2026-42745 entry concerns the WordPress Clover plugin ( Clover Online Orders) version <= 1.6.0, where a Broken Authentication vulnerability allows bypassing authentication via an alternate path or channel. Documents consistently describe an authentication bypass affecting the Smart Onl...

7.3CVSS5.8AI score0.00057EPSS

Exploits0References1

Cvelist•added 2026/05/27 9:49 a.m.•24 views

CVE-2026-42746 WordPress Smart Online Order for Clover plugin <= 1.6.0 - Sensitive Data Exposure vulnerability

7.3CVSS0.00049EPSS

Exploits0References1

Vulnrichment•added 2026/05/27 9:49 a.m.•4 views

CVE-2026-42738 WordPress Smart Online Order for Clover plugin <= 1.6.0 - Cross Site Scripting (XSS) vulnerability

7.1CVSS5.8AI score0.00036EPSS

Exploits0References1

CVE•added 2026/05/27 9:49 a.m.•9 views

CVE-2026-42738

The CVE-2026-42738 entry concerns the WordPress Clover-based plugin Smart Online Order for Clover (clover-online-orders), affected versions up to and including 1.6.0. A stored XSS flaw arises from improper neutralization of input during web page generation, enabling malicious input to be stored a...

7.1CVSS5.8AI score0.00036EPSS

Exploits0References1

EUVD•added 2026/05/27 9:49 a.m.•6 views

EUVD-2026-32190

7.1CVSS5.8AI score0.00036EPSS

Exploits0References1

ATTACKERKB•added 2026/05/27 9:49 a.m.•4 views

CVE-2026-42738

7.1CVSS5.8AI score0.00036EPSS

Exploits0References2

Rows per page