Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

86 matches found

NVD
NVDadded 2026/04/24 8:16 a.m.1 views

CVE-2026-3565

The Taqnix plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0.3. This is due to a missing nonce verification in the taqnixdeletemyaccount function, where the checkajaxreferer call is explicitly commented out on line 883. This makes it possib...

4.3CVSS0.00022EPSS
Exploits0References8
EUVD
EUVDadded 2026/04/24 7:45 a.m.2 views

EUVD-2026-25405

The Taqnix plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0.3. This is due to a missing nonce verification in the taqnixdeletemyaccount function, where the checkajaxreferer call is explicitly commented out on line 883. This makes it possib...

4.3CVSS5.2AI score0.00022EPSS
Exploits0References8
Positive Technologies
Positive Technologiesadded 2026/04/24 12:0 a.m.1 views

PT-2026-34863

The Taqnix plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0.3. This is due to a missing nonce verification in the taqnix delete my account function, where the check ajax referer call is explicitly commented out on line 883. This makes it...

4.3CVSS5.3AI score0.00022EPSS
Exploits0References10
NVD
NVDadded 2026/01/23 5:16 p.m.3 views

CVE-2021-47905

MyBB Delete Account Plugin 1.4 contains a cross-site scripting vulnerability in the account deletion reason input field. Attackers can inject malicious scripts that will execute in the admin interface when viewing delete account reasons...

6.1CVSS0.00044EPSS
Exploits1References3
CVE
CVEadded 2026/01/23 4:47 p.m.9 views

CVE-2021-47905

CVE-2021-47905 concerns the MyBB Delete Account Plugin (v1.4) with a stored/reflected-like cross-site scripting flaw in the account deletion reason input field. The vulnerability allows an attacker to inject malicious scripts that can execute in the admin interface when viewing delete account rea...

6.1CVSS5.1AI score0.00044EPSS
Exploits1References3Affected Software1
ATTACKERKB
ATTACKERKBadded 2026/01/23 4:47 p.m.1 views

CVE-2021-47905

MyBB Delete Account Plugin 1.4 contains a cross-site scripting vulnerability in the account deletion reason input field. Attackers can inject malicious scripts that will execute in the admin interface when viewing delete account reasons...

6.1CVSS5.9AI score0.00044EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichmentadded 2026/01/23 4:47 p.m.2 views

CVE-2021-47905 MyBB Delete Account Plugin 1.4 - Cross-Site Scripting

MyBB Delete Account Plugin 1.4 contains a cross-site scripting vulnerability in the account deletion reason input field. Attackers can inject malicious scripts that will execute in the admin interface when viewing delete account reasons...

6.1CVSS5.1AI score0.00044EPSS
Exploits1References3
Cvelist
Cvelistadded 2026/01/23 4:47 p.m.26 views

CVE-2021-47905 MyBB Delete Account Plugin 1.4 - Cross-Site Scripting

MyBB Delete Account Plugin 1.4 contains a cross-site scripting vulnerability in the account deletion reason input field. Attackers can inject malicious scripts that will execute in the admin interface when viewing delete account reasons...

6.1CVSS0.00044EPSS
Exploits1References3
Positive Technologies
Positive Technologiesadded 2026/01/23 12:0 a.m.2 views

PT-2026-4518

Name of the Vulnerable Software and Affected Versions MyBB Delete Account Plugin version 1.4 Description The MyBB Delete Account Plugin contains a cross-site scripting issue in the account deletion reason input field. An attacker can inject malicious scripts that will execute in the admin interfa...

6.1CVSS5AI score0.00044EPSS
Exploits1References5
CNNVD
CNNVDadded 2026/01/23 12:0 a.m.2 views

MyBB_Plugin-Delete_Account security vulnerability

MyBBPlugin-DeleteAccount is a MyBB plugin developed by Vintagedaddyo. Version 1.4 of MyBBPlugin-DeleteAccount contains a security vulnerability. This vulnerability stems from the input field used for specifying the reason for account deletion, which has a cross-site scripting vulnerability,...

6.1CVSS5.6AI score0.00044EPSS
Exploits1References3
RedhatCVE
RedhatCVEadded 2026/01/09 11:24 a.m.3 views

CVE-2021-31930

Persistent cross-site scripting XSS in the web interface of Concerto through 2.3.6 allows an unauthenticated remote attacker to introduce arbitrary JavaScript by injecting an XSS payload into the First Name or Last Name parameter upon registration. When a privileged user attempts to delete the...

6.1CVSS5.7AI score0.01056EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2021-26681

Malware in sbrugna...

6.1CVSS6.3AI score0.0024EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2025-27503

Malicious code in bioql PyPI...

5.5CVSS6.4AI score0.00083EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2025-26236

Malicious code in bioql PyPI...

8.8CVSS6.6AI score0.00064EPSS
Exploits1References5
EUVD
EUVDadded 2025/10/03 8:7 p.m.6 views

EUVD-2022-39383

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.00334EPSS
Exploits1References1
Tenable Nessus
Tenable Nessusadded 2025/09/10 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2024-48912

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GLPI is a free asset and IT management software package. Starting in version 10.0.0 and prior to version 10.0.17, an authenticated user can use an application...

8.1CVSS4.9AI score0.00473EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2025/09/09 12:0 a.m.4 views

PT-2025-36994

Name of the Vulnerable Software and Affected Versions: Infrahub versions prior to 1.3.9 Infrahub versions prior to 1.4.5 Description: Infrahub provides a central hub for managing data, templates, and playbooks. A flaw in the authentication logic allows deleted or expired API tokens to be consider...

5.5CVSS6.4AI score0.00083EPSS
Exploits0References10
RedhatCVE
RedhatCVEadded 2025/08/31 7:10 p.m.1 views

CVE-2025-9667

A vulnerability was detected in code-projects Simple Grading System 1.0. This affects an unknown part of the file /deleteaccount.php of the component Admin Panel. Performing manipulation of the argument ID results in sql injection. The attack may be initiated remotely. The exploit is now public a...

8.8CVSS7.3AI score0.00064EPSS
Exploits1References1
OSV
OSVadded 2025/08/29 7:15 p.m.1 views

CVE-2025-9667

A vulnerability was detected in code-projects Simple Grading System 1.0. This affects an unknown part of the file /deleteaccount.php of the component Admin Panel. Performing manipulation of the argument ID results in sql injection. The attack may be initiated remotely. The exploit is now public a...

8.8CVSS5.7AI score
Exploits0References5
Cvelist
Cvelistadded 2025/08/29 6:32 p.m.5 views

CVE-2025-9667 code-projects Simple Grading System Admin Panel delete_account.php sql injection

A vulnerability was detected in code-projects Simple Grading System 1.0. This affects an unknown part of the file /deleteaccount.php of the component Admin Panel. Performing manipulation of the argument ID results in sql injection. The attack may be initiated remotely. The exploit is now public a...

6.5CVSS0.00064EPSS
Exploits1References5
Rows per page
Query Builder