Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

RedhatCVE
RedhatCVEadded 2026/01/07 9:18 a.m.1 views

CVE-2025-14153

The Page Expire Popup/Redirection for WordPress plugin for WordPress is vulnerable to time-based SQL Injection via the 'id' shortcode attribute in all versions up to, and including, 1.0 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing...

6.5CVSS6.4AI score0.00024EPSS
Exploits0References1
NVD
NVDadded 2026/01/06 4:15 a.m.6 views

CVE-2025-14153

The Page Expire Popup/Redirection for WordPress plugin for WordPress is vulnerable to time-based SQL Injection via the 'id' shortcode attribute in all versions up to, and including, 1.0 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing...

6.5CVSS0.00024EPSS
Exploits0References4
Vulnrichment
Vulnrichmentadded 2026/01/06 3:21 a.m.1 views

CVE-2025-14153 Page Expire Popup/Redirection for WordPress <= 1.0 - Authenticated (Author+) SQL Injection via 'id' Shortcode Attribute

The Page Expire Popup/Redirection for WordPress plugin for WordPress is vulnerable to time-based SQL Injection via the 'id' shortcode attribute in all versions up to, and including, 1.0 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing...

6.5CVSS6AI score0.00024EPSS
Exploits0References4
CVE
CVEadded 2026/01/06 3:21 a.m.11 views

CVE-2025-14153

CVE-2025-14153 is a WordPress plugin vulnerability in Page Expire Popup/Redirection for WordPress. The issue is a time-based SQL Injection via the shortcod e attribute id in versions up to 1.0, caused by insufficient escaping and lack of proper query preparation. Exploitation requires authenticat...

6.5CVSS6AI score0.00024EPSS
Exploits0References4
Cvelist
Cvelistadded 2026/01/06 3:21 a.m.23 views

CVE-2025-14153 Page Expire Popup/Redirection for WordPress <= 1.0 - Authenticated (Author+) SQL Injection via 'id' Shortcode Attribute

The Page Expire Popup/Redirection for WordPress plugin for WordPress is vulnerable to time-based SQL Injection via the 'id' shortcode attribute in all versions up to, and including, 1.0 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing...

6.5CVSS0.00024EPSS
Exploits0References4
CNNVD
CNNVDadded 2026/01/06 12:0 a.m.7 views

WordPress plugin Page Expire Popup/Redirection for WordPress SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A SQL injection...

6.5CVSS7.7AI score0.00024EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2026/01/06 12:0 a.m.3 views

PT-2026-1403

Name of the Vulnerable Software and Affected Versions Page Expire Popup/Redirection for WordPress plugin versions prior to 1.0 Description The Page Expire Popup/Redirection for WordPress plugin is susceptible to a time-based SQL Injection issue. This is due to inadequate escaping of user-supplied...

6.5CVSS7AI score0.00024EPSS
Exploits0References7
Rows per page
Query Builder