CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7 matches found

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2023-39780

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.00068EPSS

Exploits0References1

NVD•added 2025/09/12 6:15 a.m.•1 views

CVE-2025-8575

The LWS Cleaner plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the 'lwscldeletefile' function in all versions up to, and including, 2.4.1.3. This makes it possible for authenticated attackers, with Administrator-level access and above, to...

7.2CVSS0.0202EPSS

Exploits0References3

CNNVD•added 2025/09/12 12:0 a.m.•0 views

WordPress plugin LWS Cleaner 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plug-in. A security...

7.2CVSS7.7AI score0.0202EPSS

Exploits0References4

Patchstack•added 2025/09/11 10:59 p.m.•3 views

WordPress LWS Cleaner plugin <= 2.4.1.3 - Authenticated (Administrator+) Arbitrary File Deletion via 'lws_cl_delete_file' vulnerability

Authenticated Administrator+ Arbitrary File Deletion via 'lwscldeletefile' vulnerability discovered by Jonas Benjamin Friedli in WordPress Plugin LWS Cleaner versions = 2.4.1.3...

7.2CVSS6.8AI score0.0202EPSS

Exploits0References1Affected Software1

NVD•added 2023/07/11 8:15 a.m.•9 views

CVE-2023-35781

Cross-Site Request Forgery CSRF vulnerability in LWS Cleaner plugin = 2.3.0 versions...

8.8CVSS6.5AI score0.00068EPSS

Exploits0References1