CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2025-17177

Malicious code in bioql PyPI...

8.2CVSS8.1AI score0.00093EPSS

Exploits0References2

RedhatCVE•added 2025/06/08 1:18 p.m.•9 views

CVE-2025-28986

Cross-Site Request Forgery CSRF vulnerability in Webaholicson Epicwin Plugin epicwin-subscribers allows SQL Injection.This issue affects Epicwin Plugin: from n/a through = 1.5...

8.2CVSS5.9AI score0.00093EPSS

Exploits0References1

NVD•added 2025/06/06 1:15 p.m.•5 views

CVE-2025-28986

Cross-Site Request Forgery CSRF vulnerability in Webaholicson Epicwin Plugin epicwin-subscribers allows SQL Injection.This issue affects Epicwin Plugin: from n/a through = 1.5...

8.2CVSS0.00093EPSS

Exploits0References1

CVE•added 2025/06/06 12:54 p.m.•37 views

CVE-2025-28986

CVE-2025-28986 is a CSRF-triggered SQL injection vulnerability in the Epicwin WordPress plugin (Epicwin Plugin) that affects versions up to 1.5. The vulnerability is documented with a CVSSv3.1 base score of 8.2 (HIGH), indicating high impact with network access, low attack complexity, no privileg...

8.2CVSS5.9AI score0.00093EPSS

Exploits0References1

Cvelist•added 2025/06/06 12:54 p.m.•13 views

CVE-2025-28986 WordPress Epicwin Plugin plugin <= 1.5 - CSRF to SQL Injection vulnerability

Cross-Site Request Forgery CSRF vulnerability in Webaholicson Epicwin Plugin epicwin-subscribers allows SQL Injection.This issue affects Epicwin Plugin: from n/a through = 1.5...

8.2CVSS0.00093EPSS

Exploits0References1

Vulnrichment•added 2025/06/06 12:54 p.m.•5 views

CVE-2025-28986 WordPress Epicwin Plugin plugin <= 1.5 - CSRF to SQL Injection vulnerability

Cross-Site Request Forgery CSRF vulnerability in Webaholicson Epicwin Plugin allows SQL Injection. This issue affects Epicwin Plugin: from n/a through 1.5...

8.2CVSS7.8AI score0.00093EPSS

Exploits0References1

Positive Technologies•added 2025/06/06 12:0 a.m.•2 views

PT-2025-24133 · Unknown · Epicwin Plugin

Name of the Vulnerable Software and Affected Versions: Epicwin Plugin versions 1.5 and earlier Description: The issue is related to a Cross-Site Request Forgery CSRF vulnerability that allows SQL Injection in the Epicwin Plugin. Recommendations: For Epicwin Plugin versions 1.5 and earlier, as a...

8.2CVSS8.5AI score0.00093EPSS

Exploits0References3

CNNVD•added 2025/06/06 12:0 a.m.•2 views

WordPress plugin Epicwin Plugin 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin ... A cross-site...

8.2CVSS8.3AI score0.00093EPSS

Exploits0References1