CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

29 matches found

Packet Storm•added 2026/03/02 12:0 a.m.•118 views

📄 WordPress Document Library Lite 1.1.6 Information Disclosure

Proof of concept exploit for WordPress Document Library Lite plugin version 1.1.6. The plugin fails to restrict access to an internal AJAX API endpoint allowing unauthenticated attackers to fetch document records exposing sensitive metadata...

5.3CVSS5.9AI score0.00105EPSS

Exploits2

RedhatCVE•added 2025/12/17 10:3 a.m.•1 views

CVE-2025-67986

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Barn2 Plugins Document Library Lite document-library-lite allows DOM-Based XSS.This issue affects Document Library Lite: from n/a through = 1.1.7...

5.9CVSS6.4AI score0.00027EPSS

Exploits0References1

EUVD•added 2025/12/16 9:31 a.m.•1 views

EUVD-2025-203557

6.1CVSS5.9AI score0.00027EPSS

Exploits0References2

EUVD•added 2025/12/16 9:31 a.m.•2 views

EUVD-2025-203558

Authorization Bypass Through User-Controlled Key vulnerability in Barn2 Plugins Document Library Lite document-library-lite allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Document Library Lite: from n/a through = 1.1.7...

6.5AI score0.00038EPSS

Exploits0References2

NVD•added 2025/12/16 9:16 a.m.•1 views

CVE-2025-67985

5.3CVSS0.00038EPSS

Exploits0References1

NVD•added 2025/12/16 9:16 a.m.•1 views

CVE-2025-67986

5.9CVSS0.00027EPSS

Exploits0References1

Vulnrichment•added 2025/12/16 8:12 a.m.•2 views

CVE-2025-67985 WordPress Document Library Lite plugin <= 1.1.7 - Insecure Direct Object References (IDOR) vulnerability

5.3CVSS6.6AI score0.00038EPSS

Exploits0References1

CVE•added 2025/12/16 8:12 a.m.•2 views

CVE-2025-67986

CVE-2025-67986: Barn2 Plugins Document Library Lite suffers DOM-based XSS due to improper input neutralization during web page generation. Affected: Document Library Lite (Barn2 Plugins) up to version 1.1.7. Impact: potential client-side script execution if user-supplied input is processed on the...

5.9CVSS6AI score0.00027EPSS

Exploits0References1

Cvelist•added 2025/12/16 8:12 a.m.•24 views

CVE-2025-67985 WordPress Document Library Lite plugin <= 1.1.7 - Insecure Direct Object References (IDOR) vulnerability

5.3CVSS0.00038EPSS

Exploits0References1

Cvelist•added 2025/12/16 8:12 a.m.•26 views

CVE-2025-67986 WordPress Document Library Lite plugin <= 1.1.7 - Cross Site Scripting (XSS) vulnerability

5.9CVSS0.00027EPSS

Exploits0References1

CVE•added 2025/12/16 8:12 a.m.•4 views

CVE-2025-67985

CVE-2025-67985 affects Document Library Lite (WordPress plugin) with an Unauthenticated Insecure Direct Object Reference due to insecure access controls. Impact recorded as medium (CVSS ~5.3) in the source; affected versions are Document Library Lite

5.3CVSS6.6AI score0.00038EPSS

Exploits0References1

Vulnrichment•added 2025/12/16 8:12 a.m.•3 views

CVE-2025-67986 WordPress Document Library Lite plugin <= 1.1.7 - Cross Site Scripting (XSS) vulnerability

5.9CVSS6AI score0.00027EPSS

Exploits0References1

CNNVD•added 2025/12/16 12:0 a.m.•2 views

WordPress plugin Document Library Lite 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security vulnerabili...

5.9CVSS6AI score0.00027EPSS

Exploits0References1

Positive Technologies•added 2025/12/16 12:0 a.m.•2 views

PT-2025-51441

Name of the Vulnerable Software and Affected Versions Barn2 Plugins Document Library Lite versions through 1.1.7 Description The Document Library Lite plugin contains a flaw related to improper input handling during web page generation, leading to a Cross-site Scripting XSS condition. This specif...

6.1CVSS6.2AI score0.00027EPSS

Exploits0References3

CNNVD•added 2025/12/16 12:0 a.m.•1 views

WordPress plugin Document Library Lite 安全漏洞

5.3CVSS6.6AI score0.00038EPSS

Exploits0References1

Positive Technologies•added 2025/12/16 12:0 a.m.•3 views

PT-2025-51440

Name of the Vulnerable Software and Affected Versions Barn2 Plugins Document Library Lite versions through 1.1.7 Description An authorization bypass exists due to incorrectly configured access control security levels in Barn2 Plugins Document Library Lite. This allows for unauthorized access. The...

6.5AI score0.00038EPSS

Exploits0References4

Patchstack•added 2025/12/15 1:30 p.m.•4 views

WordPress Document Library Lite plugin <= 1.1.7 - Insecure Direct Object References (IDOR) vulnerability

Insecure Direct Object References IDOR vulnerability discovered by Zeeshan Haider in WordPress Plugin Document Library Lite versions = 1.1.7...

5.3CVSS7AI score0.00038EPSS

Exploits0Affected Software1

Patchstack•added 2025/12/15 1:30 p.m.•8 views

WordPress Document Library Lite plugin <= 1.1.7 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Zeeshan Haider in WordPress Plugin Document Library Lite versions = 1.1.7...

6.1CVSS6.1AI score0.00027EPSS

Exploits0Affected Software1

CNVD•added 2025/11/05 12:0 a.m.•7 views

WordPress Document Library Lite plugin improper authorization vulnerability

WordPress Document Library Lite plugin is a WordPress plugin for creating document libraries and download management features with support for multiple file types and responsive layouts. The WordPress Document Library Lite plugin suffers from an improper authorization vulnerability that stems fro...

5.3CVSS6.8AI score0.00105EPSS

Exploits2References1

Patchstack•added 2025/11/03 10:17 p.m.•9 views

WordPress Document Library Lite plugin <= 1.1.6 - Missing Authorization to Sensitive Information Exposure vulnerability

Missing Authorization to Sensitive Information Exposure vulnerability discovered by Avraham Shemesh and Kai Aizen in WordPress Plugin Document Library Lite versions = 1.1.6...

5.3CVSS6.9AI score0.00105EPSS

Exploits2References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by