Lucene search
K

138 matches found

CNNVD
CNNVD
added 2025/08/15 12:0 a.m.3 views

WordPress plugin Quttera Web Malware Scanner 代码问题漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A code issue vulnerability...

3.8CVSS7.1AI score0.00253EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2025/08/15 12:0 a.m.9 views

PT-2025-33447 · WordPress · Quttera Web Malware Scanner

Name of the Vulnerable Software and Affected Versions: Quttera Web Malware Scanner for WordPress versions up to and including 3.5.1.41 Description: The Quttera Web Malware Scanner plugin for WordPress is susceptible to Server-Side Request Forgery via the RunExternalScan function. Authenticated...

3.8CVSS6.4AI score0.00253EPSS
Exploits0References9
RedhatCVE
RedhatCVE
added 2025/07/20 6:50 a.m.11 views

CVE-2025-7772

The Malcure Malware Scanner — 1 Toolset for WordPress Malware Removal plugin for WordPress is vulnerable to Arbitrary File Read in all versions up to, and including, 16.8 via the wpmrinspectfile function due to a missing capability check. This makes it possible for authenticated attackers, with...

6.5CVSS6AI score0.00309EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/07/18 10:13 a.m.18 views

WordPress Malcure Malware Scanner plugin <= 16.8 - Missing Authorization to Authenticated (Subscriber+) Arbitrary File Read vulnerability

Missing Authorization to Authenticated Subscriber+ Arbitrary File Read vulnerability discovered by Arkadiusz Hydzik in WordPress Plugin Malcure Malware Scanner versions = 16.8...

6.5CVSS6.7AI score0.00309EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2025/07/18 7:15 a.m.5 views

CVE-2025-7772

The Malcure Malware Scanner — 1 Toolset for WordPress Malware Removal plugin for WordPress is vulnerable to Arbitrary File Read in all versions up to, and including, 16.8 via the wpmrinspectfile function due to a missing capability check. This makes it possible for authenticated attackers, with...

6.5CVSS0.00309EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/07/18 7:3 a.m.10 views

CVE-2025-6043

The Malcure Malware Scanner — 1 Toolset for WordPress Malware Removal plugin for WordPress is vulnerable to Arbitrary File Deletion due to a missing capability check on the wpmrdeletefile function in all versions up to, and including, 17.0. This makes it possible for authenticated attackers, with...

8.1CVSS6.6AI score0.00537EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/07/18 6:45 a.m.9 views

CVE-2025-7772 Malcure Malware Scanner — #1 Toolset for WordPress Malware Removal <= 16.8 - Missing Authorization to Authenticated (Subscriber+) Arbitrary File Read

The Malcure Malware Scanner — 1 Toolset for WordPress Malware Removal plugin for WordPress is vulnerable to Arbitrary File Read in all versions up to, and including, 16.8 via the wpmrinspectfile function due to a missing capability check. This makes it possible for authenticated attackers, with...

6.5CVSS0.00309EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/07/18 6:45 a.m.21 views

CVE-2025-7772 Malcure Malware Scanner — #1 Toolset for WordPress Malware Removal <= 16.8 - Missing Authorization to Authenticated (Subscriber+) Arbitrary File Read

The Malcure Malware Scanner — 1 Toolset for WordPress Malware Removal plugin for WordPress is vulnerable to Arbitrary File Read in all versions up to, and including, 16.8 via the wpmrinspectfile function due to a missing capability check. This makes it possible for authenticated attackers, with...

6.5CVSS6.6AI score0.00309EPSS
Exploits0References2
CVE
CVE
added 2025/07/18 6:45 a.m.26 views

CVE-2025-7772

CVE-2025-7772 affects the WordPress plugin Malcure Malware Scanner — #1 Toolset for WordPress Malware Removal (

6.5CVSS6.1AI score0.00309EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/07/18 12:0 a.m.4 views

WordPress plugin Malcure Malware Scanner — #1 Toolset for WordPress Malware Removal 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. WordPress plugin Malcure...

6.5CVSS6.4AI score0.00309EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/07/18 12:0 a.m.3 views

PT-2025-30009 · WordPress · Malcure Malware Scanner

Name of the Vulnerable Software and Affected Versions: Malcure Malware Scanner — 1 Toolset for WordPress Malware Removal plugin for WordPress versions prior to 16.9 Description: The Malcure Malware Scanner — 1 Toolset for WordPress Malware Removal plugin for WordPress is vulnerable to Arbitrary...

6.5CVSS6AI score0.00309EPSS
Exploits0References7
NVD
NVD
added 2025/07/16 7:15 a.m.6 views

CVE-2025-6043

The Malcure Malware Scanner — 1 Toolset for WordPress Malware Removal plugin for WordPress is vulnerable to Arbitrary File Deletion due to a missing capability check on the wpmrdeletefile function in all versions up to, and including, 17.0. This makes it possible for authenticated attackers, with...

8.1CVSS0.00537EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/07/16 6:40 a.m.4 views

CVE-2025-6043 Malcure Malware Scanner — #1 Toolset for WordPress Malware Removal <= 17.0 - Authenticated (Subscriber+) Arbitrary File Deletion

The Malcure Malware Scanner — 1 Toolset for WordPress Malware Removal plugin for WordPress is vulnerable to Arbitrary File Deletion due to a missing capability check on the wpmrdeletefile function in all versions up to, and including, 17.0. This makes it possible for authenticated attackers, with...

8.1CVSS6.6AI score0.00537EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/07/16 6:40 a.m.10 views

CVE-2025-6043 Malcure Malware Scanner — #1 Toolset for WordPress Malware Removal <= 17.0 - Authenticated (Subscriber+) Arbitrary File Deletion

The Malcure Malware Scanner — 1 Toolset for WordPress Malware Removal plugin for WordPress is vulnerable to Arbitrary File Deletion due to a missing capability check on the wpmrdeletefile function in all versions up to, and including, 17.0. This makes it possible for authenticated attackers, with...

8.1CVSS0.00537EPSS
Exploits0References4
CVE
CVE
added 2025/07/16 6:40 a.m.40 views

CVE-2025-6043

CVE-2025-6043 affects the Malcure Malware Scanner — #1 Toolset for WordPress Malware Removal plugin up to version 16.8. The vulnerability is an authenticated Arbitrary File Deletion due to a missing capability check in wpmr_delete_file(), exploitable by subscribers and above, but only when advanc...

8.1CVSS6.6AI score0.00537EPSS
Exploits0References4
Patchstack
Patchstack
added 2025/07/16 4:10 a.m.7 views

WordPress Malcure Malware Scanner plugin <= 17.0 - Authenticated (Subscriber+) Arbitrary File Deletion vulnerability

Authenticated Subscriber+ Arbitrary File Deletion vulnerability discovered by Arkadiusz Hydzik in WordPress Plugin Malcure Malware Scanner versions = 17.0...

8.1CVSS6.8AI score0.00537EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2025/07/16 12:0 a.m.5 views

WordPress plugin Malcure Malware Scanner 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plug-in. A security vulnerability...

8.1CVSS6.4AI score0.00537EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/07/16 12:0 a.m.4 views

PT-2025-29708 · WordPress · Malcure Malware Scanner — #1 Toolset For Wordpress Malware Removal

Name of the Vulnerable Software and Affected Versions: Malcure Malware Scanner — 1 Toolset for WordPress Malware Removal plugin for WordPress versions through 16.8 Description: The Malcure Malware Scanner — 1 Toolset for WordPress Malware Removal plugin for WordPress is vulnerable to Arbitrary Fi...

8.1CVSS7.1AI score0.00537EPSS
Exploits0References12
Patchstack
Patchstack
added 2025/06/13 12:0 a.m.7 views

WordPress Malcure Malware Scanner — #1 Toolset for WordPress Malware Removal Plugin <= 16.8 is vulnerable to Broken Access Control

Software Malcure Malware Scanner — 1 Toolset for WordPress Malware Removal Type Plugin Vulnerable versions = 16.8 Fixed in 16.9 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE N/A Patch priority Medium CVSS severity Medium 6.5 Developer Claim ownership PSID...

6.9AI score
Exploits0References1Affected Software1
RedhatCVE
RedhatCVE
added 2025/05/23 4:35 a.m.8 views

CVE-2023-6222

IThe Quttera Web Malware Scanner WordPress plugin before 3.4.2.1 does not validate user input used in a path, which could allow users with an admin role to perform path traversal attacks...

7.2CVSS6.7AI score0.01061EPSS
Exploits2References1
Rows per page
Query Builder