CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2024-35075

Malicious code in bioql PyPI...

4.3CVSS6.5AI score0.00123EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 8:49 a.m.•4 views

CVE-2024-34809

Cross-Site Request Forgery CSRF vulnerability in Extend Themes EmpowerWP.This issue affects EmpowerWP: from n/a through 1.0.21...

4.3CVSS7AI score0.00123EPSS

Exploits0References1

WPVulnDB•added 2024/05/19 12:0 a.m.•15 views

EmpowerWP < 1.0.22 - Cross-Site Request Forgery to Notice Dismissal

Description The EmpowerWP theme for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.0.21. This is due to missing or incorrect nonce validation on the empoweradminajaxwelcomenoticedismiss function. This makes it possible for unauthenticated attackers to...

4.3CVSS6.3AI score0.00123EPSS

Exploits0References1Affected Software1

NVD•added 2024/05/17 10:15 a.m.•10 views

CVE-2024-34809

Cross-Site Request Forgery CSRF vulnerability in Extend Themes EmpowerWP.This issue affects EmpowerWP: from n/a through 1.0.21...

4.3CVSS5.1AI score0.00123EPSS

Exploits0References1

OSV•added 2024/05/17 10:15 a.m.•2 views

CVE-2024-34809

Cross-Site Request Forgery CSRF vulnerability in Extend Themes EmpowerWP.This issue affects EmpowerWP: from n/a through 1.0.21...

4.3CVSS5.8AI score

Exploits0References1

CVE•added 2024/05/17 9:43 a.m.•49 views

CVE-2024-34809

CVE-2024-34809 is a CSRF vulnerability in EmpowerWP (Extend Themes EmpowerWP) affecting EmpowerWP versions up to 1.0.21. The related Red Hat and Wordfence entries confirm Cross-Site Request Forgery enabling notice dismissal. Patch status in the vulnerability record indicates EmpowerWP

4.3CVSS6.8AI score0.00123EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2024/05/17 9:43 a.m.•16 views

CVE-2024-34809 WordPress EmpowerWP theme <= 1.0.21 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in Extend Themes EmpowerWP.This issue affects EmpowerWP: from n/a through 1.0.21...

4.3CVSS7AI score0.00123EPSS

Exploits0References1

Cvelist•added 2024/05/17 9:43 a.m.•15 views

CVE-2024-34809 WordPress EmpowerWP theme <= 1.0.21 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in Extend Themes EmpowerWP.This issue affects EmpowerWP: from n/a through 1.0.21...

4.3CVSS5AI score0.00123EPSS

Exploits0References1

CNNVD•added 2024/05/17 12:0 a.m.•2 views

WordPress plugin EmpowerWP 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin. A cross-site reques...

4.3CVSS6.6AI score0.00123EPSS

Exploits0References2

Patchstack•added 2024/05/13 2:18 p.m.•1 views

WordPress EmpowerWP theme <= 1.0.21 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Dhabaleshwar Das Patchstack Alliance in WordPress Theme EmpowerWP versions = 1.0.21...

4.3CVSS7AI score0.00123EPSS

Exploits0Affected Software1

Patchstack•added 2024/05/13 12:0 a.m.•9 views

WordPress EmpowerWP Theme <= 1.0.21 is vulnerable to Cross Site Request Forgery (CSRF)

Software EmpowerWP Type Theme Vulnerable versions = 1.0.21 Fixed in 1.0.22 OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-34809 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 85b13182da01 Credits Dhabaleshwar Das Require...

4.3CVSS6.6AI score0.00123EPSS

Exploits0References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by