Lucene search
K

152 matches found

RedhatCVE
RedhatCVE
added 2026/01/24 3:18 p.m.12 views

CVE-2026-24536

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in webpushr Webpushr webpushr-web-push-notifications allows Retrieve Embedded Sensitive Data.This issue affects Webpushr: from n/a through = 4.38.0...

5.3CVSS5.4AI score0.00305EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/24 3:17 p.m.7 views

CVE-2026-24565

Insertion of Sensitive Information Into Sent Data vulnerability in bPlugins B Accordion b-accordion allows Retrieve Embedded Sensitive Data.This issue affects B Accordion: from n/a through = 2.0.2...

6.5CVSS5.9AI score0.00276EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/23 9:16 p.m.6 views

CVE-2025-63051

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in sizam REHub Framework rehub-framework allows Retrieve Embedded Sensitive Data.This issue affects REHub Framework: from n/a through 19.9.9.4...

4.3CVSS5.4AI score0.00314EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/23 9:16 p.m.5 views

CVE-2025-63019

Insertion of Sensitive Information Into Sent Data vulnerability in Johan Jonk Stenström Cookies and Content Security Policy cookies-and-content-security-policy allows Retrieve Embedded Sensitive Data.This issue affects Cookies and Content Security Policy: from n/a through = 2.34...

5.3CVSS5.4AI score0.00352EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/01/23 2:28 p.m.3 views

CVE-2026-24523 WordPress WP FullCalendar plugin <= 1.6 - Sensitive Data Exposure vulnerability

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Marcus aka @msykes WP FullCalendar wp-fullcalendar allows Retrieve Embedded Sensitive Data.This issue affects WP FullCalendar: from n/a through = 1.6...

5.3CVSS5.9AI score0.00296EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/01/23 12:0 a.m.5 views

WordPress plugin Webpushr has a security vulnerability

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. WordPres...

5.3CVSS5.8AI score0.00305EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/01/23 12:0 a.m.6 views

PT-2026-4396

Name of the Vulnerable Software and Affected Versions Dotstore Fraud Prevention For Woocommerce versions n/a through 2.3.1 Description A flaw exists in Dotstore Fraud Prevention For Woocommerce that allows retrieval of embedded sensitive data, potentially exposing system information to unauthoriz...

5.2AI score0.00215EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/01/23 12:0 a.m.9 views

PT-2026-4401

Name of the Vulnerable Software and Affected Versions CRM Perks Integration for Contact Form 7 HubSpot versions n/a through 1.4.3 Description The CRM Perks Integration for Contact Form 7 HubSpot cf7-hubspot contains a flaw that allows retrieval of embedded sensitive data. This issue relates to th...

5.2AI score0.0024EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/01/22 12:0 a.m.5 views

PT-2026-4000

Insertion of Sensitive Information Into Sent Data vulnerability in Johan Jonk Stenström Cookies and Content Security Policy cookies-and-content-security-policy allows Retrieve Embedded Sensitive Data.This issue affects Cookies and Content Security Policy: from n/a through = 2.34...

5.4AI score0.00352EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/01/22 12:0 a.m.5 views

PT-2026-4002

Name of the Vulnerable Software and Affected Versions sizam REHub Framework versions prior to 19.9.9.4 Description A flaw exists in the sizam REHub Framework, specifically in the rehub-framework component, that allows for the retrieval of embedded sensitive data. This results in the exposure of...

5.2AI score0.00314EPSS
Exploits0References3
CVE
CVE
added 2026/01/08 9:17 a.m.16 views

CVE-2025-67931

CVE-2025-67931 affects BulletProof Security (WordPress plugin). An unauthenticated vulnerability allows sensitive information to be exposed via insertion of sensitive data into sent data. Public details indicate affected versions range up to 6.9, with Wordfence noting an unauthenticated sensitive...

7.5CVSS6.5AI score0.00245EPSS
Exploits0References1
CVE
CVE
added 2026/01/06 9:13 p.m.37 views

CVE-2025-31051

CVE-2025-31051 describes an exposure of embedded sensitive data in the EngoTheme Plant – Gardening & Houseplants WordPress Theme (versions up to 1.0.0). Public sources concur that this is an unauthenticated information exposure affecting the Plant theme, with a CVSS v3.1 base score of 5.3 (Networ...

5.3CVSS8.5AI score0.00196EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/01 4:26 p.m.8 views

CVE-2025-62143

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in nicashmu Post Video Players video-playlist-and-gallery-plugin allows Retrieve Embedded Sensitive Data.This issue affects Post Video Players: from n/a through = 1.163...

4.3CVSS5.9AI score0.0018EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/01 3:32 p.m.6 views

CVE-2025-59136

Insertion of Sensitive Information Into Sent Data vulnerability in Efí Bank Gerencianet Oficial woo-gerencianet-official allows Retrieve Embedded Sensitive Data.This issue affects Gerencianet Oficial: from n/a through = 3.1.3...

5.3CVSS5.9AI score0.00626EPSS
Exploits0References1
NVD
NVD
added 2025/12/31 4:15 p.m.6 views

CVE-2025-62143

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in nicashmu Post Video Players video-playlist-and-gallery-plugin allows Retrieve Embedded Sensitive Data.This issue affects Post Video Players: from n/a through = 1.163...

4.3CVSS0.0018EPSS
Exploits0References1
NVD
NVD
added 2025/12/31 4:15 p.m.18 views

CVE-2025-59136

Insertion of Sensitive Information Into Sent Data vulnerability in Efí Bank Gerencianet Oficial woo-gerencianet-official allows Retrieve Embedded Sensitive Data.This issue affects Gerencianet Oficial: from n/a through = 3.1.3...

5.3CVSS0.00626EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/31 3:49 p.m.5 views

EUVD-2025-206027

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in nicashmu Post Video Players allows Retrieve Embedded Sensitive Data.This issue affects Post Video Players: from n/a through 1.163...

4.3CVSS6.3AI score0.0018EPSS
Exploits0References2
EUVD
EUVD
added 2025/12/31 3:40 p.m.6 views

EUVD-2025-206014

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Marcelo Torres Download Media Library allows Retrieve Embedded Sensitive Data.This issue affects Download Media Library: from n/a through 0.2.1...

5.3CVSS6.3AI score0.00196EPSS
Exploits0References2
EUVD
EUVD
added 2025/12/31 3:36 p.m.4 views

EUVD-2025-206012

Insertion of Sensitive Information Into Sent Data vulnerability in Razvan Stanga Varnish/Nginx Proxy Caching allows Retrieve Embedded Sensitive Data.This issue affects Varnish/Nginx Proxy Caching: from n/a through 1.8.3...

5.3CVSS6.4AI score0.00659EPSS
Exploits0References2
NVD
NVD
added 2025/12/31 3:15 p.m.3 views

CVE-2025-62139

Insertion of Sensitive Information Into Sent Data vulnerability in Vladimir Statsenko Terms descriptions terms-descriptions allows Retrieve Embedded Sensitive Data.This issue affects Terms descriptions: from n/a through = 3.4.10...

5.3CVSS0.00192EPSS
Exploits0References1
Rows per page
Query Builder