CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

15 matches found

CVE•added 2026/02/25 9:26 a.m.•12 views

CVE-2026-2410

CVE-2026-2410 refers to the WordPress plugin Disable Admin Notices – Hide Dashboard Notifications, vulnerable to Cross-Site Request Forgery (CSRF) up to version 1.4.2. The issue arises from missing nonce validation in the showPageContent() function, enabling unauthenticated attackers to craft req...

4.3CVSS5.5AI score0.00131EPSS

Exploits0References4

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2024-31395

Malicious code in bioql PyPI...

4.3CVSS6.4AI score0.002EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 10:20 a.m.•7 views

CVE-2024-33683

Cross-Site Request Forgery CSRF vulnerability in WP Republic Hide Dashboard Notifications.This issue affects Hide Dashboard Notifications: from n/a through 1.2.3...

4.3CVSS5.1AI score0.002EPSS

Exploits0References1

NVD•added 2024/06/21 2:15 a.m.•18 views

CVE-2024-1955

The Hide Dashboard Notifications plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'warningnoticessettings' function in all versions up to, and including, 1.3. This makes it possible for authenticated attackers, with contributor acces...

4.3CVSS0.00343EPSS

Exploits0References3

OSV•added 2024/06/21 2:15 a.m.•1 views

CVE-2024-1955

4.3CVSS5.8AI score0.00343EPSS

Exploits0References3

CVE•added 2024/06/21 2:5 a.m.•65 views

CVE-2024-1955

CVE-2024-1955 affects the WordPress plugin Hide Dashboard Notifications (up to v1.3). Root cause: missing capability check in the warning_notices_settings function, enabling authenticated attackers with contributor+ rights to modify the plugin’s settings. Impact: unauthorized modification of data...

4.3CVSS4.7AI score0.00343EPSS

Exploits0References3Affected Software1

CNNVD•added 2024/06/21 12:0 a.m.•2 views

WordPress plugin Hide Dashboard Notifications security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin. A security vulnerability exists in the...

4.3CVSS6.4AI score0.00343EPSS

Exploits0References4

Patchstack•added 2024/06/20 1:4 p.m.•2 views

WordPress Hide Dashboard Notifications plugin <= 1.3 - Missing Authorization to Authenticated (Contributor+) Plugin Settings Modification vulnerability

Missing Authorization to Authenticated Contributor+ Plugin Settings Modification vulnerability discovered by Francesco Carlucci in WordPress Plugin Hide Dashboard Notifications versions = 1.3...

4.3CVSS7AI score0.00343EPSS

Exploits0References1Affected Software1

Patchstack•added 2024/06/20 12:0 a.m.•5 views

WordPress Hide Dashboard Notifications Plugin <= 1.3 is vulnerable to Broken Access Control

Software Hide Dashboard Notifications Type Plugin Vulnerable versions = 1.3 Fixed in 1.3.1 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-1955 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 47605ad93239 Credits Francesco Carlucci...

4.3CVSS6.6AI score0.00343EPSS

Exploits0References3Affected Software1

NVD•added 2024/04/26 11:15 a.m.•11 views

CVE-2024-33683

Cross-Site Request Forgery CSRF vulnerability in WP Republic Hide Dashboard Notifications.This issue affects Hide Dashboard Notifications: from n/a through 1.2.3...

4.3CVSS4.6AI score0.002EPSS

Exploits0References1

Vulnrichment•added 2024/04/26 10:33 a.m.•13 views

CVE-2024-33683 WordPress Hide Dashboard Notifications plugin <= 1.2.3 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in WP Republic Hide Dashboard Notifications.This issue affects Hide Dashboard Notifications: from n/a through 1.2.3...

4.3CVSS7.2AI score0.002EPSS

Exploits0References1

CVE•added 2024/04/26 10:33 a.m.•50 views

CVE-2024-33683

CVE-2024-33683 is a CSRF vulnerability in the WordPress plugin WP Republic Hide Dashboard Notifications , affecting version range including up to 1.2.3. The issue, described in connected Red Hat and PatchStack context, is a cross-site request forgery in the plugin’s handling of dashboard notices....

4.3CVSS5.1AI score0.002EPSS

Exploits0References1

Cvelist•added 2024/04/26 10:33 a.m.•14 views

CVE-2024-33683 WordPress Hide Dashboard Notifications plugin <= 1.2.3 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in WP Republic Hide Dashboard Notifications.This issue affects Hide Dashboard Notifications: from n/a through 1.2.3...

4.3CVSS5AI score0.002EPSS

Exploits0References1

Patchstack•added 2024/04/26 8:11 a.m.•5 views

WordPress Hide Dashboard Notifications plugin <= 1.2.3 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Dhabaleshwar Das Patchstack Alliance in WordPress Plugin Hide Dashboard Notifications versions = 1.2.3...

4.3CVSS7AI score0.002EPSS

Exploits0Affected Software1

CNNVD•added 2024/04/26 12:0 a.m.•4 views

WordPress plugin Hide Dashboard Notifications 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exist...

4.3CVSS6.6AI score0.002EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by