Lucene search
+L

474 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-43384

Malicious code in bioql PyPI...

4.3CVSS6.5AI score0.00319EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/09/29 1:36 a.m.8 views

WordPress Custom Post Type Attachment plugin <= 3.4.6 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Muhammad Yudha - DJ in WordPress Plugin Custom Post Type Attachment versions = 3.4.6...

5.4CVSS6.1AI score0.00186EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVE
added 2025/09/27 8:44 a.m.11 views

CVE-2025-60116

Missing Authorization vulnerability in ThemeGoods Grand Conference Theme Custom Post Type grandconference-custom-post allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Grand Conference Theme Custom Post Type: from n/a through 2.6.4...

8.8CVSS5.9AI score0.00278EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/09/26 9:53 a.m.8 views

WordPress Grand Conference Theme Custom Post Type plugin < 2.6.4 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Bonds in WordPress Plugin Grand Conference Theme Custom Post Type versions 2.6.4...

8.8CVSS6.9AI score0.00278EPSS
Exploits0Affected Software1
NVD
NVD
added 2025/09/26 9:15 a.m.3 views

CVE-2025-60116

Missing Authorization vulnerability in ThemeGoods Grand Conference Theme Custom Post Type grandconference-custom-post allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Grand Conference Theme Custom Post Type: from n/a through 2.6.4...

8.8CVSS0.00278EPSS
Exploits0References1
OSV
OSV
added 2025/09/26 9:15 a.m.9 views

CVE-2025-60116

Missing Authorization vulnerability in ThemeGoods Grand Conference Theme Custom Post Type allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Grand Conference Theme Custom Post Type: from n/a through 2.6.3...

8.8CVSS5.8AI score0.00278EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/09/26 8:31 a.m.3 views

CVE-2025-60116 WordPress Grand Conference Theme Custom Post Type plugin < 2.6.4 - Broken Access Control vulnerability

Missing Authorization vulnerability in ThemeGoods Grand Conference Theme Custom Post Type grandconference-custom-post allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Grand Conference Theme Custom Post Type: from n/a through 2.6.4...

5.4CVSS5.9AI score0.00278EPSS
Exploits0References1
CVE
CVE
added 2025/09/26 8:31 a.m.16 views

CVE-2025-60116

CVE-2025-60116: Missing Authorization in Grand Conference Theme Custom Post Type (WordPress). Affected software: Grand Conference Theme Custom Post Type up to version 2.6.3. Root cause: incorrectly configured access control/security levels enabling unauthorized actions on the custom post type. Ex...

8.8CVSS5.9AI score0.00278EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/09/26 8:31 a.m.11 views

CVE-2025-60116 WordPress Grand Conference Theme Custom Post Type plugin < 2.6.4 - Broken Access Control vulnerability

Missing Authorization vulnerability in ThemeGoods Grand Conference Theme Custom Post Type grandconference-custom-post allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Grand Conference Theme Custom Post Type: from n/a through 2.6.4...

5.4CVSS0.00278EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/09/26 12:0 a.m.9 views

WordPress plugin Grand Conference Theme Custom Post Type security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed using the PHP language, with the ability to host personal blog sites on PHP and MySQL based servers.WordPress...

8.8CVSS5.8AI score0.00278EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/09/26 12:0 a.m.7 views

PT-2025-39563

Name of the Vulnerable Software and Affected Versions ThemeGoods Grand Conference Theme Custom Post Type versions through 2.6.3 Description An authorization issue exists in the ThemeGoods Grand Conference Theme Custom Post Type. The problem stems from incorrectly configured access control securit...

8.8CVSS5.9AI score0.00278EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/09/24 6:30 p.m.3 views

CVE-2025-58255

Cross-Site Request Forgery CSRF vulnerability in yonisink Custom Post Type Images custom-post-types-image allows Code Injection.This issue affects Custom Post Type Images: from n/a through = 0.5...

9.6CVSS5.9AI score0.00159EPSS
Exploits0References1
NVD
NVD
added 2025/09/22 7:16 p.m.6 views

CVE-2025-58255

Cross-Site Request Forgery CSRF vulnerability in yonisink Custom Post Type Images custom-post-types-image allows Code Injection.This issue affects Custom Post Type Images: from n/a through = 0.5...

9.6CVSS0.00159EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/09/22 6:46 p.m.6 views

WordPress Custom Post Type Images Plugin <= 0.5 - Cross Site Request Forgery (CSRF) Vulnerability

Cross Site Request Forgery CSRF Vulnerability discovered by Mika in WordPress Plugin Custom Post Type Images versions = 0.5...

9.6CVSS6.6AI score0.00159EPSS
Exploits0Affected Software1
Vulnrichment
Vulnrichment
added 2025/09/22 6:23 p.m.1 views

CVE-2025-58255 WordPress Custom Post Type Images Plugin <= 0.5 - Cross Site Request Forgery (CSRF) Vulnerability

Cross-Site Request Forgery CSRF vulnerability in yonisink Custom Post Type Images custom-post-types-image allows Code Injection.This issue affects Custom Post Type Images: from n/a through = 0.5...

9.6CVSS5.9AI score0.00159EPSS
Exploits0References1
CVE
CVE
added 2025/09/22 6:23 p.m.14 views

CVE-2025-58255

CVE-2025-58255 describes a Cross-Site Request Forgery (CSRF) in the WordPress plugin Custom Post Type Images that allegedly enables Code Injection . The entry states affected versions are from n/a through 0.5 . Public metrics show a high-severity impact (CVSS 3.1/3.1: base score 9.6, CRITICAL, wi...

9.6CVSS5.9AI score0.00159EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/09/22 6:23 p.m.13 views

CVE-2025-58255 WordPress Custom Post Type Images Plugin <= 0.5 - Cross Site Request Forgery (CSRF) Vulnerability

Cross-Site Request Forgery CSRF vulnerability in yonisink Custom Post Type Images custom-post-types-image allows Code Injection.This issue affects Custom Post Type Images: from n/a through = 0.5...

9.6CVSS0.00159EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/09/22 12:0 a.m.5 views

PT-2025-38918

Name of the Vulnerable Software and Affected Versions yonisink Custom Post Type Images versions through 0.5 Description A Cross-Site Request Forgery CSRF issue exists in yonisink Custom Post Type Images that can lead to Code Injection. The issue allows for potential code execution through crafted...

9.6CVSS7.2AI score0.00159EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/08/16 11:25 a.m.5 views

CVE-2025-28975

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in redqteam Alike - WordPress Custom Post Comparison alike allows Reflected XSS.This issue affects Alike - WordPress Custom Post Comparison: from n/a through = 3.0.1...

7.1CVSS5.9AI score0.00228EPSS
Exploits0References1
NVD
NVD
added 2025/08/14 11:15 a.m.3 views

CVE-2025-28975

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in redqteam Alike - WordPress Custom Post Comparison alike allows Reflected XSS.This issue affects Alike - WordPress Custom Post Comparison: from n/a through = 3.0.1...

7.1CVSS0.00228EPSS
Exploits0References1
Rows per page
Query Builder