CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

119 matches found

Patchstack•added 2026/06/11 11:48 a.m.•8 views

WordPress Feeds for YouTube plugin < 2.6.4 - Subscriber+ License Data Deletion vulnerability

Subscriber+ License Data Deletion vulnerability discovered by Legion Hunter in WordPress Plugin Feeds for YouTube versions 2.6.4...

5.4CVSS5.4AI score0.00221EPSS

Exploits0References1Affected Software1

Patchstack•added 2026/05/25 9:58 p.m.•9 views

WordPress WP Search Analytics plugin < 1.5.0 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Legion Hunter in WordPress Plugin WP Search Analytics versions 1.5.0...

5.3CVSS5.8AI score0.00231EPSS

Exploits0Affected Software1

Patchstack•added 2026/05/21 8:25 a.m.•8 views

WordPress Zoho ZeptoMail plugin <= 3.2.9 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Legion Hunter in WordPress Plugin Zoho ZeptoMail versions = 3.2.9...

4.3CVSS5.8AI score0.00306EPSS

Exploits0Affected Software1

Patchstack•added 2026/05/14 6:52 p.m.•6 views

WordPress Notify Odoo plugin <= 1.0.1 - Cross-Site Request Forgery to Settings Update vulnerability

Cross-Site Request Forgery to Settings Update vulnerability discovered by Legion Hunter in WordPress Plugin Notify Odoo versions = 1.0.1...

4.3CVSS5.8AI score0.00135EPSS

Exploits0References1Affected Software1

Patchstack•added 2026/04/23 4:45 p.m.•2 views

WordPress WP Books Gallery – Build Stunning Book Showcases & Libraries in Minutes plugin <= 4.8.0 - Missing Authorization to Unauthenticated Settings Update vulnerability

Missing Authorization to Unauthenticated Settings Update vulnerability discovered by Legion Hunter in WordPress Plugin Books Gallery versions = 4.8.0...

5.3CVSS5.8AI score0.00323EPSS

Exploits0References1Affected Software1

Patchstack•added 2026/04/22 9:45 a.m.•3 views

WordPress Emailchef plugin <= 3.5.1 - Missing Authorization to Authenticated (Subscriber+) Arbitrary plugin Settings Deletion vulnerability

Missing Authorization to Authenticated Subscriber+ Arbitrary plugin Settings Deletion vulnerability discovered by Legion Hunter in WordPress Plugin Emailchef versions = 3.5.1...

4.3CVSS5.8AI score0.00261EPSS

Exploits0References1Affected Software1

Patchstack•added 2026/03/18 11:7 a.m.•4 views

WordPress GZSEO plugin <= 2.0.14 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Legion Hunter in WordPress Plugin GZSEO versions = 2.0.14...

6.5CVSS5.8AI score0.00242EPSS

Exploits0Affected Software1

Patchstack•added 2026/02/26 12:57 p.m.•4 views

WordPress Site Suggest plugin <= 1.3.9 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Legion Hunter in WordPress Plugin Site Suggest versions = 1.3.9...

6.5CVSS5.9AI score0.00242EPSS

Exploits0Affected Software1

Patchstack•added 2026/02/18 11:41 p.m.•4 views

WordPress News Element Elementor Blog Magazine plugin <= 1.0.8 - Missing Authorization to Authenticated (Subscriber+) Data Loss vulnerability

Missing Authorization to Authenticated Subscriber+ Data Loss vulnerability discovered by Legion Hunter in WordPress Plugin News Element Elementor Blog Magazine versions = 1.0.8...

5.4CVSS5.5AI score0.00211EPSS

Exploits0References1Affected Software1

Patchstack•added 2026/02/07 7:28 a.m.•3 views

WordPress Endless Posts Navigation plugin <= 2.2.9 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Legion Hunter in WordPress Plugin Endless Posts Navigation versions = 2.2.9...

5.3CVSS5.4AI score0.00272EPSS

Exploits0Affected Software1

Patchstack•added 2026/02/05 7:48 a.m.•5 views

WordPress ElementInvader Addons for Elementor plugin <= 1.4.1 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Legion Hunter in WordPress Plugin ElementInvader Addons for Elementor versions = 1.4.1...

5.4CVSS5.3AI score0.00193EPSS

Exploits0Affected Software1

Patchstack•added 2026/02/05 7:38 a.m.•4 views

WordPress LC Wizard plugin <= 2.1.1 - Settings Change vulnerability

Settings Change vulnerability discovered by Legion Hunter in WordPress Plugin LC Wizard versions = 2.1.1...

6.5CVSS5.3AI score0.00245EPSS

Exploits0Affected Software1

Patchstack•added 2026/02/05 7:37 a.m.•5 views

WordPress Advanced WC Analytics plugin <= 3.19.0 - Settings Change vulnerability

Settings Change vulnerability discovered by Legion Hunter in WordPress Plugin Advanced WC Analytics versions = 3.19.0...

6.5CVSS5.3AI score0.00253EPSS

Exploits0Affected Software1

Patchstack•added 2026/02/05 7:35 a.m.•5 views

WordPress Addonify Floating Cart For WooCommerce plugin <= 1.2.17 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Legion Hunter in WordPress Plugin Addonify Floating Cart For WooCommerce versions = 1.2.17...

5.3AI score0.00245EPSS

Exploits0Affected Software1

Patchstack•added 2026/02/04 1:6 p.m.•3 views

WordPress Addonify – WooCommerce Wishlist plugin <= 2.0.15 - Settings Change vulnerability

Settings Change vulnerability discovered by Legion Hunter in WordPress Plugin Addonify – WooCommerce Wishlist versions = 2.0.15...

6.5CVSS5.3AI score0.00245EPSS

Exploits0Affected Software1

Patchstack•added 2026/01/30 3:52 a.m.•4 views

WordPress Serious Slider plugin <= 1.2.7 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Legion Hunter in WordPress Plugin Serious Slider versions = 1.2.7...

4.3CVSS5.4AI score0.0024EPSS

Exploits0Affected Software1

Patchstack•added 2026/01/29 6:23 a.m.•3 views

WordPress Cookiebot plugin <= 4.6.4 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Legion Hunter in WordPress Plugin Cookiebot versions = 4.6.4...

4.3CVSS5.4AI score0.00197EPSS

Exploits0Affected Software1

Patchstack•added 2026/01/28 12:41 p.m.•3 views

WordPress Advanced iFrame plugin <= 2025.10 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Legion Hunter in WordPress Plugin Advanced iFrame versions = 2025.10...

5.3CVSS5.4AI score0.00028EPSS

Exploits0Affected Software1

Patchstack•added 2026/01/28 7:17 a.m.•3 views

WordPress Sendy plugin <= 3.4.2 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Legion Hunter in WordPress Plugin Sendy versions = 3.4.2...

5.4AI score0.00235EPSS

Exploits0Affected Software1

Patchstack•added 2026/01/27 7:19 a.m.•4 views

WordPress Sunshine Photo Cart plugin <= 3.5.6.2 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Legion Hunter in WordPress Plugin Sunshine Photo Cart versions = 3.5.6.2...

5.9AI score0.00235EPSS

Exploits0Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by