Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

20 matches found

Patchstack
Patchstackadded 2026/05/26 5:45 a.m.8 views

WordPress LuxMed | Medicine & Healthcare Doctor WordPress Theme theme <= 1.2.2 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme LuxMed | Medicine & Healthcare Doctor WordPress Theme versions = 1.2.2...

5.8AI score0.00348EPSS
Exploits0Affected Software1
Patchstack
Patchstackadded 2026/05/12 3:52 p.m.6 views

WordPress Cost of Goods: Product Cost & Profit Calculator for WooCommerce plugin <= 4.1.0 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by Muhammad Yudha - DJ in WordPress Plugin Cost of Goods for WooCommerce versions = 4.1.0...

6.4CVSS5.8AI score0.00193EPSS
Exploits0References1Affected Software1
Patchstack
Patchstackadded 2026/03/03 12:20 p.m.5 views

WordPress Pets Club theme <= 2.3 - PHP Object Injection vulnerability

PHP Object Injection vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Pets Club versions = 2.3...

9.8CVSS6AI score0.0051EPSS
Exploits0Affected Software1
Patchstack
Patchstackadded 2026/03/03 11:25 a.m.7 views

WordPress Lendiz theme < 2.0.1 - Arbitrary File Upload vulnerability

Arbitrary File Upload vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Lendiz versions 2.0.1...

9.9CVSS5.9AI score0.00447EPSS
Exploits0Affected Software1
Patchstack
Patchstackadded 2026/01/23 7:43 a.m.7 views

WordPress KiviCare - Clinic & Patient Management System (EHR) plugin <= 3.6.15 - Missing Authorization to Unauthenticated Limited Arbitrary File Upload vulnerability

WordPress KiviCare - Clinic & Patient Management System EHR plugin = 3.6.15 - Missing Authorization to Unauthenticated Limited Arbitrary File Upload vulnerability discovered by Sarawut Poolkhet MisterHelloz in WordPress Plugin KiviCare versions = 3.6.15...

5.3CVSS5.5AI score0.003EPSS
Exploits0References1Affected Software1
Patchstack
Patchstackadded 2025/12/29 3:40 p.m.5 views

WordPress Backpack Traveler theme <= 2.10.3 - Insecure Direct Object References (IDOR) vulnerability

Insecure Direct Object References IDOR vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Backpack Traveler versions = 2.10.3...

5.4CVSS7AI score0.00185EPSS
Exploits0Affected Software1
Patchstack
Patchstackadded 2025/07/22 6:49 a.m.3 views

WordPress Saxon - Viral Content Blog & Magazine Marketing WordPress Theme theme <= 1.9.3 - Local File Inclusion vulnerability

WordPress Saxon - Viral Content Blog & Magazine Marketing WordPress Theme theme = 1.9.3 - Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Saxon - Viral Content Blog & Magazine Marketing WordPress Theme versions = 1.9.3...

8.1CVSS7AI score0.0035EPSS
Exploits0Affected Software1
Patchstack
Patchstackadded 2025/03/31 2:1 p.m.2 views

WordPress wordpress related Posts with thumbnails plugin <= 3.0.0.1 - CSRF to Stored XSS vulnerability

CSRF to Stored XSS vulnerability discovered by Abdi Pranata in WordPress Plugin wordpress related Posts with thumbnails versions = 3.0.0.1...

7.1CVSS6.2AI score0.00131EPSS
Exploits0Affected Software1
Patchstack
Patchstackadded 2025/01/31 11:13 p.m.3 views

WordPress ELEX WordPress HelpDesk & Customer Ticketing System plugin <= 3.2.6 - Missing Authorization to Authenticated (Subscriber+) Privilege Escalation vulnerability

Missing Authorization to Authenticated Subscriber+ Privilege Escalation vulnerability discovered by Thanh Nam Tran in WordPress Plugin ELEX WordPress HelpDesk & Customer Ticketing System versions = 3.2.6...

8.8CVSS7AI score0.00463EPSS
Exploits0References1Affected Software1
Patchstack
Patchstackadded 2025/01/16 6:42 p.m.3 views

WordPress wp-flickr-press Plugin <= 2.6.4 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by Le Ngoc Anh in WordPress Plugin wp-flickr-press versions = 2.6.4...

7.1CVSS6.1AI score0.00246EPSS
Exploits0Affected Software1
Patchstack
Patchstackadded 2025/01/07 10:41 p.m.3 views

WordPress Cost Calculator Builder PRO plugin <= 3.2.15 - Unauthenticated SQL Injection vulnerability

Unauthenticated SQL Injection vulnerability discovered by Trương Hữu Phúc truonghuuphuc in WordPress Plugin Cost Calculator Builder Pro versions = 3.2.15...

7.5CVSS8.1AI score0.00446EPSS
Exploits0References1Affected Software1
Patchstack
Patchstackadded 2024/06/26 1:14 p.m.5 views

WordPress Gutenberg Blocks with AI by Kadence WP plugin <= 3.2.42 - Contributor+ Stored Cross-Site Scripting in Google Maps Widget vulnerability

Contributor+ Stored Cross-Site Scripting in Google Maps Widget vulnerability discovered by wesley wcraft in WordPress Plugin Gutenberg Blocks by Kadence Blocks versions = 3.2.42...

6.4CVSS5.6AI score0.00322EPSS
Exploits0References1Affected Software1
Patchstack
Patchstackadded 2024/04/16 11:56 a.m.4 views

WordPress Cornerstone plugin <= 0.8.0 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by Rafie Muhammad Patchstack in WordPress Plugin Cornerstone versions = 0.8.0...

7.1CVSS6.1AI score0.00333EPSS
Exploits0Affected Software1
Openbugbounty
Openbugbountyadded 2024/01/23 7:13 p.m.6 views

migliorilavatrici.it Improper Access Control vulnerability OBB-3841598

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

7AI score
Exploits0
Vulnrichment
Vulnrichmentadded 2023/01/13 12:0 a.m.9 views

CVE-2022-46955

Dynamic Transaction Queuing System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/ajax.php?action=savequeue...

9.8AI score0.00602EPSS
Exploits0References1
Openbugbounty
Openbugbountyadded 2022/09/20 6:33 p.m.11 views

bidprentjes-online.nl Cross Site Scripting vulnerability OBB-2938073

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Openbugbounty
Openbugbountyadded 2022/08/26 3:28 p.m.14 views

europamedical.co.uk Cross Site Scripting vulnerability OBB-2865846

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Openbugbounty
Openbugbountyadded 2020/02/02 2:40 p.m.9 views

interroof.ru Cross Site Scripting vulnerability

Security Researcher geeknik Helped patch 8544 vulnerabilities Received 8 Coordinated Disclosure badges Received 20 recommendations , a holder of 8 badges for responsible and coordinated disclosure, found a security vulnerability affecting interroof.ru website and its users. Following coordinated...

0.1AI score
Exploits0
Openbugbounty
Openbugbountyadded 2019/09/24 5:46 a.m.8 views

pctplanner.com Cross Site Scripting vulnerability

Open Bug Bounty ID: OBB-979527 Security Researcher rajeshappsec Helped patch 116 vulnerabilities Received 4 Coordinated Disclosure badges Received 17 recommendations , a holder of 4 badges for responsible and coordinated disclosure, found a security vulnerability affecting pctplanner.com website...

0.1AI score
Exploits0
Exploit DB
Exploit DBadded 2013/02/15 12:0 a.m.20 views

ChillyCMS 1.3.0 - Multiple Vulnerabilities

Exploit Title: chillyCMS 1.3.0 Multiple Vulnerabilities Google Dork: "powered by chillyCMS" Date: 15 February 2013 Exploit Author: Abhi M Balakrishnan Vendor Homepage: http://chillycms.bplaced.net/ Software Link: http://chillycms.bplaced.net/chillyCMS/media/files/chillyCMSfull.zip Version: 1.3.0...

7AI score
Exploits0
Rows per page
Query Builder