CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

EUVD•added 2025/10/03 8:7 p.m.•6 views

EUVD-2024-51007

Malicious code in bioql PyPI...

7.5CVSS8.7AI score0.0053EPSS

Exploits0References2

RedhatCVE•added 2025/05/23 9:29 a.m.•6 views

CVE-2024-12204

The Coupon X: Discount Pop Up, Promo Code Pop Ups, Announcement Pop Up, WooCommerce Popups plugin for WordPress is vulnerable to unauthorized access due to missing capability checks on several functions in the class-cx-rest.php file in all versions up to, and including, 1.3.5. This makes it...

5.4CVSS6.7AI score0.00238EPSS

Exploits0References1

RedhatCVE•added 2025/02/05 10:25 a.m.•4 views

CVE-2024-12627

The Coupon X: Discount Pop Up, Promo Code Pop Ups, Announcement Pop Up, WooCommerce Popups plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 1.3.5 via deserialization of untrusted input from post content passed to the captureemail AJAX action. This...

7.5CVSS7.2AI score0.0053EPSS

Exploits0References1

Vulnrichment•added 2025/01/11 2:20 a.m.•4 views

CVE-2024-12204 Coupon X: Discount Pop Up, Promo Code Pop Ups, Announcement Pop Up, WooCommerce Popups <= 1.3.5 - Missing Authorization

5.4CVSS6.7AI score0.00238EPSS

Exploits0References2

Cvelist•added 2025/01/11 2:20 a.m.•10 views

CVE-2024-12204 Coupon X: Discount Pop Up, Promo Code Pop Ups, Announcement Pop Up, WooCommerce Popups <= 1.3.5 - Missing Authorization

5.4CVSS0.00238EPSS

Exploits0References2

Cvelist•added 2025/01/11 2:20 a.m.•8 views

CVE-2024-12627 Coupon X: Discount Pop Up, Promo Code Pop Ups, Announcement Pop Up, WooCommerce Popups <= 1.3.5 - Missing Authorization to Authenticated (Contributor+) PHP Object Injection

7.5CVSS0.0053EPSS

Exploits0References2

CVE•added 2025/01/11 2:20 a.m.•30 views

CVE-2024-12627

CVE-2024-12627 - Coupon X: Discount Pop Up plugin (WordPress) is a PHP Object Injection vulnerability in versions up to 1.3.5, triggered by deserialization of untrusted input in the capture_email AJAX action. Authenticated attackers with Contributor-level access or higher can inject a PHP object....

7.5CVSS7.7AI score0.0053EPSS

Exploits0References2

Patchstack•added 2025/01/10 9:1 p.m.•6 views

WordPress Coupon X plugin <= 1.3.5 - Missing Authorization to Authenticated (Contributor+) PHP Object Injection vulnerability

Missing Authorization to Authenticated Contributor+ PHP Object Injection vulnerability discovered by Lucio Sá in WordPress Plugin Coupon X versions = 1.3.5...

7.5CVSS7.3AI score0.0053EPSS

Exploits0References1Affected Software1

Patchstack•added 2025/01/10 9:0 p.m.•2 views

WordPress Coupon X plugin <= 1.3.5 - Missing Authorization vulnerability

Missing Authorization vulnerability discovered by Lucio Sá in WordPress Plugin Coupon X versions = 1.3.5...

5.4CVSS7AI score0.00238EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by