CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

42 matches found

CVE•added 2026/05/16 3:26 p.m.•6 views

CVE-2020-37245

Supsystic Digital Publications 1.6.9 for WordPress is affected by two issues described in the CVE-2020-37245 entry: a path traversal vulnerability in the Folder input field that can expose files outside the web root, and stored cross-site scripting caused by failure to sanitize inputs in publicat...

8.7CVSS5.7AI score0.00158EPSS

Exploits0References4

Vulnrichment•added 2026/05/16 3:26 p.m.•2 views

CVE-2020-37245 WordPress Plugin Supsystic Digital Publications 1.6.9 Path Traversal XSS

Supsystic Digital Publications 1.6.9 contains a path traversal vulnerability in the Folder input field that allows attackers to access files outside the web root by injecting directory traversal sequences. Additionally, the plugin fails to sanitize input fields in publication settings, allowing...

8.7CVSS5.7AI score0.00158EPSS

Exploits0References4

CNNVD•added 2026/05/16 12:0 a.m.•4 views

WordPress plugin Supsystic Digital Publications 跨站脚本漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. The...

8.7CVSS5.6AI score0.00158EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2024-34491

Malicious code in bioql PyPI...

5.3CVSS6.4AI score0.00324EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•5 views

EUVD-2022-34651

Malicious code in bioql PyPI...

4.8CVSS5.2AI score0.00218EPSS

Exploits2References1

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2024-29911

Malicious code in bioql PyPI...

4.3CVSS6.4AI score0.00129EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 8:36 a.m.•4 views

CVE-2024-32089

Cross-Site Request Forgery CSRF vulnerability in Supsystic Digital Publications by Supsystic.This issue affects Digital Publications by Supsystic: from n/a through 1.7.7...

4.3CVSS5.1AI score0.00129EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 7:58 a.m.•4 views

CVE-2024-33910

Missing Authorization vulnerability in Supsystic Digital Publications by Supsystic.This issue affects Digital Publications by Supsystic: from n/a through 1.7.7...

5.3CVSS5.1AI score0.00324EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 4:32 a.m.•5 views

CVE-2023-5756

The Digital Publications by Supsystic plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.7.6. This is due to missing or incorrect nonce validation on the AJAX action handler. This makes it possible for unauthenticated attackers to execute AJAX...

8.8CVSS6.7AI score0.00054EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 9:54 p.m.•3 views

CVE-2022-2384

The Digital Publications by Supsystic WordPress plugin before 1.7.4 does not sanitise and escape its settings, allowing high privilege users such as admin to perform cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed...

4.8CVSS6.2AI score0.00218EPSS

Exploits2References1

NVD•added 2024/05/06 7:15 p.m.•10 views

CVE-2024-33910

Missing Authorization vulnerability in Supsystic Digital Publications by Supsystic.This issue affects Digital Publications by Supsystic: from n/a through 1.7.7...

5.3CVSS5.8AI score0.00324EPSS

Exploits0References1

Cvelist•added 2024/05/06 7:11 p.m.•13 views

CVE-2024-33910 WordPress Digital Publications by Supsystic plugin <= 1.7.7 - Broken Access Control vulnerability

Missing Authorization vulnerability in Supsystic Digital Publications by Supsystic.This issue affects Digital Publications by Supsystic: from n/a through 1.7.7...

5.3CVSS6AI score0.00324EPSS

Exploits0References1

Vulnrichment•added 2024/05/06 7:11 p.m.•8 views

CVE-2024-33910 WordPress Digital Publications by Supsystic plugin <= 1.7.7 - Broken Access Control vulnerability

Missing Authorization vulnerability in Supsystic Digital Publications by Supsystic.This issue affects Digital Publications by Supsystic: from n/a through 1.7.7...

5.3CVSS6.9AI score0.00324EPSS

Exploits0References1

CVE•added 2024/05/06 7:11 p.m.•43 views

CVE-2024-33910

CVE-2024-33910 corresponds to a Missing Authorization vulnerability in the Supsystic Digital Publications WordPress plugin. Connected sources confirm the issue affects Digital Publications by Supsystic up to version 1.7.7 and indicate a patch is available (status: Patched). Specific root-cause de...

5.3CVSS5.1AI score0.00324EPSS

Exploits0References1

Positive Technologies•added 2024/05/06 12:0 a.m.•2 views

PT-2024-25543 · Supsystic · Digital Publications By Supsystic

Name of the Vulnerable Software and Affected Versions: Supsystic Digital Publications by Supsystic versions 1.7.7 and earlier Description: The issue is related to a Missing Authorization vulnerability. This vulnerability affects Supsystic Digital Publications by Supsystic. Recommendations: For...

5.3CVSS6.4AI score0.00324EPSS

Exploits0References4

CNNVD•added 2024/05/06 12:0 a.m.•2 views

WordPress plugin Digital Publications by Supsystic 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exist...

5.3CVSS6.5AI score0.00324EPSS

Exploits0References2

Patchstack•added 2024/04/29 1:47 p.m.•2 views

WordPress Digital Publications by Supsystic plugin <= 1.7.7 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Steven Julian Patchstack Alliance in WordPress Plugin Digital Publications by Supsystic versions = 1.7.7...

5.3CVSS7AI score0.00324EPSS

Exploits0Affected Software1

NVD•added 2024/04/15 9:15 a.m.•6 views

CVE-2024-32089

Cross-Site Request Forgery CSRF vulnerability in Supsystic Digital Publications by Supsystic.This issue affects Digital Publications by Supsystic: from n/a through 1.7.7...

4.3CVSS4.6AI score0.00129EPSS

Exploits0References1

Cvelist•added 2024/04/15 9:6 a.m.•14 views

CVE-2024-32089 WordPress Digital Publications by Supsystic plugin <= 1.7.7 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in Supsystic Digital Publications by Supsystic.This issue affects Digital Publications by Supsystic: from n/a through 1.7.7...

4.3CVSS4.9AI score0.00129EPSS

Exploits0References1

CVE•added 2024/04/15 9:6 a.m.•51 views

CVE-2024-32089

CVE-2024-32089 is a CSRF vulnerability in the WordPress plugin Digital Publications by Supsystic , affecting versions up to 1.7.7. The initial description and connected entries confirm CSRF-type exposure for this plugin, but do not provide exploitation details, impacted product variants beyond th...

4.3CVSS5.1AI score0.00129EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by