CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

3030 matches found

Cvelist•added 2025/10/16 6:47 a.m.•8 views

CVE-2025-10850 Felan Framework <= 1.1.4 - Hardcoded Credentials

The Felan Framework plugin for WordPress is vulnerable to improper authentication in versions up to, and including, 1.1.4. This is due to the hardcoded password in the 'fbajaxloginorregister' function and in the 'googleajaxloginorregister' function. This makes it possible for unauthenticated...

9.8CVSS0.00579EPSS

Exploits0References2

Vulnrichment•added 2025/10/16 6:47 a.m.•3 views

CVE-2025-10850 Felan Framework <= 1.1.4 - Hardcoded Credentials

9.8CVSS5.7AI score0.00579EPSS

Exploits0References2

CVE•added 2025/10/16 6:47 a.m.•16 views

CVE-2025-10850

CVE-2025-10850 pertains to the Felan Framework WordPress plugin. The vulnerability arises from hardcoded credentials in the functions fb_ajax_login_or_register and google_ajax_login_or_register, enabling unauthenticated attackers to log in as existing users who registered via Facebook or Google i...

9.8CVSS5.9AI score0.00579EPSS

Exploits0References2

Cvelist•added 2025/10/16 12:0 a.m.•7 views

CVE-2025-60639

Hardcoded credentials in gsigel14 ATLAS-EPIC commit f29312c 2025-05-26...

0.00312EPSS

Exploits0References4

Vulnrichment•added 2025/10/16 12:0 a.m.•1 views

CVE-2025-60639

Hardcoded credentials in gsigel14 ATLAS-EPIC commit f29312c 2025-05-26...

6.6AI score0.00312EPSS

Exploits0References4

CVE•added 2025/10/16 12:0 a.m.•10 views

CVE-2025-60639

CVE-2025-60639 affects the ATLAS-EPIC project by gsiegel14, based on the consolidated records: hardcoded credentials in commit f29312c (2025-05-26). The CVSS v3.1 vector (AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N) yields a base score of 6.5 (Medium). There is no publicly documented exploitation status ...

6.5CVSS6.6AI score0.00312EPSS

Exploits0References4