Lucene search
+L

137 matches found

Patchstack
Patchstack
added 2025/06/05 1:18 a.m.8 views

WordPress CubeWP plugin <= 1.1.29 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Nguyen Tran Tuan Dung domiee13 in WordPress Plugin CubeWP versions = 1.1.29...

4.3CVSS6.8AI score0.0014EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVE
added 2025/05/23 8:4 a.m.10 views

CVE-2024-51651

Missing Authorization vulnerability in Imran Tauqeer CubeWP Forms cubewp-forms allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects CubeWP Forms: from n/a through = 1.1.10...

5.3CVSS7.2AI score0.00364EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 6:20 a.m.6 views

CVE-2024-48039

Missing Authorization vulnerability in Imran Tauqeer CubeWP cubewp-framework allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects CubeWP: from n/a through = 1.1.15...

8.8CVSS5.9AI score0.00318EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 9:23 a.m.9 views

CVE-2024-30500

Unrestricted Upload of File with Dangerous Type vulnerability in CubeWP CubeWP – All-in-One Dynamic Content Framework.This issue affects CubeWP – All-in-One Dynamic Content Framework: from n/a through 1.1.12...

9.9CVSS8.6AI score0.00643EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 8:24 a.m.6 views

CVE-2024-47300

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Imran Tauqeer CubeWP Forms cubewp-forms allows Stored XSS.This issue affects CubeWP Forms: from n/a through = 1.1.1...

7.1CVSS5.9AI score0.00273EPSS
Exploits0References1
NVD
NVD
added 2025/01/07 11:15 a.m.7 views

CVE-2024-51651

Missing Authorization vulnerability in Imran Tauqeer CubeWP Forms cubewp-forms allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects CubeWP Forms: from n/a through = 1.1.10...

5.3CVSS0.00364EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/01/07 10:49 a.m.21 views

CVE-2024-51651 WordPress CubeWP Forms plugin <= 1.1.10 - Broken Access Control vulnerability

Missing Authorization vulnerability in Imran Tauqeer CubeWP Forms cubewp-forms allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects CubeWP Forms: from n/a through = 1.1.10...

5.3CVSS0.00364EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/01/07 10:49 a.m.7 views

CVE-2024-51651 WordPress CubeWP Forms plugin <= 1.1.10 - Broken Access Control vulnerability

Missing Authorization vulnerability in Imran Tauqeer CubeWP Forms cubewp-forms allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects CubeWP Forms: from n/a through = 1.1.10...

5.3CVSS7.2AI score0.00364EPSS
Exploits0References1
CVE
CVE
added 2025/01/07 10:49 a.m.43 views

CVE-2024-51651

CVE-2024-51651 is a Missing Authorization issue in CubeWP Forms – All-in-One Form Builder. Affected versions: 1.1.5 and earlier. CVSS v3.1 base score 5.3 (NETWORK, LOW complexity, PRIV:S NONE, UI: NONE). Impact per sources is limited to an incorrect access-control configuration; exploitation deta...

5.3CVSS7.2AI score0.00364EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/01/07 12:0 a.m.9 views

WordPress plugin CubeWP Forms 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

5.3CVSS8.1AI score0.00364EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/01/07 12:0 a.m.8 views

PT-2025-2906 · Unknown · Cubewp Forms

Name of the Vulnerable Software and Affected Versions: CubeWP Forms – All-in-One Form Builder versions 1.1.5 and earlier Description: The issue is related to a Missing Authorization vulnerability, which allows exploiting incorrectly configured access control security levels. This can lead to...

5.3CVSS6.9AI score0.00364EPSS
Exploits0References4
Patchstack
Patchstack
added 2025/01/06 1:17 p.m.8 views

WordPress CubeWP Forms plugin <= 1.1.10 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by hunter85 in WordPress Plugin CubeWP Forms versions = 1.1.10...

5.3CVSS7AI score0.00364EPSS
Exploits0Affected Software1
OSV
OSV
added 2024/11/01 3:15 p.m.5 views

CVE-2024-48039

Missing Authorization vulnerability in CubeWP CubeWP – All-in-One Dynamic Content Framework allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects CubeWP – All-in-One Dynamic Content Framework: from n/a through 1.1.15...

8.8CVSS5.8AI score0.00318EPSS
Exploits0References1
NVD
NVD
added 2024/11/01 3:15 p.m.34 views

CVE-2024-48039

Missing Authorization vulnerability in Imran Tauqeer CubeWP cubewp-framework allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects CubeWP: from n/a through = 1.1.15...

8.8CVSS0.00318EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/11/01 2:18 p.m.15 views

CVE-2024-48039 WordPress CubeWP – All-in-One Dynamic Content Framework plugin <= 1.1.15 - Broken Access Control vulnerability

Missing Authorization vulnerability in CubeWP CubeWP – All-in-One Dynamic Content Framework allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects CubeWP – All-in-One Dynamic Content Framework: from n/a through 1.1.15...

4.3CVSS6.9AI score0.00318EPSS
Exploits0References1
CVE
CVE
added 2024/11/01 2:18 p.m.51 views

CVE-2024-48039

CVE-2024-48039 concerns WordPress CubeWP – All-in-One Dynamic Content Framework (CubeWP) plugins ≤ 1.1.15. The vulnerability is described as a Missing Authorization / Broken Access Control issue that could enable exploitation of incorrectly configured access control security levels. Patchstack an...

8.8CVSS5.9AI score0.00318EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/11/01 2:18 p.m.28 views

CVE-2024-48039 WordPress CubeWP Framework plugin <= 1.1.15 - Broken Access Control vulnerability

Missing Authorization vulnerability in Imran Tauqeer CubeWP cubewp-framework allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects CubeWP: from n/a through = 1.1.15...

4.3CVSS0.00318EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/11/01 12:0 a.m.5 views

WordPress plugin CubeWP 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

8.8CVSS6.6AI score0.00318EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/11/01 12:0 a.m.9 views

PT-2024-32957 · Cubewp · Cubewp

Name of the Vulnerable Software and Affected Versions: CubeWP – All-in-One Dynamic Content Framework versions 1.1.15 and earlier Description: The issue affects the CubeWP – All-in-One Dynamic Content Framework due to a Missing Authorization vulnerability. This vulnerability allows for the...

8.8CVSS6.5AI score0.00318EPSS
Exploits0References5
Patchstack
Patchstack
added 2024/10/09 10:28 a.m.5 views

WordPress CubeWP Framework plugin <= 1.1.15 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Abdi Pranata Patchstack Alliance in WordPress Plugin CubeWP versions = 1.1.15...

8.8CVSS7AI score0.00318EPSS
Exploits0Affected Software1
Rows per page
Query Builder