CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

CVE•added 2026/06/18 3:41 a.m.•21 views

CVE-2026-10023

Dok an: AI Powered WooCommerce Marketplace Solution

4.3CVSS5.7AI score0.0025EPSS

Exploits0References10

Positive Technologies•added 2026/05/02 12:0 a.m.•7 views

PT-2026-36618

The Dokan: AI Powered WooCommerce Multivendor Marketplace Solution plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 4.3.1 via the '/dokan/v1/stores/id/reviews' REST API endpoint. This is due to the 'prepare reviews for response' method...

5.3CVSS5.8AI score0.0026EPSS

Exploits0References6

ATTACKERKB•added 2026/01/20 4:35 a.m.•4 views

CVE-2025-14977

The Dokan: AI Powered WooCommerce Multivendor Marketplace Solution – Build Your Own Amazon, eBay, Etsy plugin for WordPress is vulnerable to Insecure Direct Object Reference in versions up to, and including, 4.2.4 via the /wp-json/dokan/v1/settings REST API endpoint due to missing validation on a...

8.1CVSS5.4AI score0.00265EPSS

Exploits0References7

EUVD•added 2025/10/07 12:30 a.m.•6 views

EUVD-2020-24189

Malware in sbrugna...

4.3CVSS4.9AI score0.00389EPSS

Exploits1References10

RedhatCVE•added 2025/05/22 5:36 p.m.•9 views

CVE-2020-36748

The Dokan plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 3.0.8. This is due to missing or incorrect nonce validation on the handleorderexport function. This makes it possible for unauthenticated attackers to trigger an order export via a forged...

4.3CVSS6.5AI score0.00389EPSS

Exploits1References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by