CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedhatCVE•added 2026/03/26 3:18 p.m.•4 views

CVE-2026-32413

Missing Authorization vulnerability in Maciej Bis Permalink Manager Lite permalink-manager allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Permalink Manager Lite: from n/a through 2.5.3...

EUVD•added 2026/03/13 9:31 p.m.•2 views

EUVD-2026-11931

NVD•added 2026/03/13 7:54 p.m.•1 views

Exploits0References2

CVE-2026-32413

5.3CVSS0.00042EPSS

ATTACKERKB•added 2026/03/13 11:42 a.m.•1 views

CVE-2026-32413

5.8AI score0.00042EPSS

Exploits0References2

Positive Technologies•added 2026/03/13 12:0 a.m.•2 views

PT-2026-25259

CNNVD•added 2026/03/13 12:0 a.m.•2 views

Exploits0References3

WordPress plugin Permalink Manager Lite 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

Patchstack•added 2026/02/17 11:22 p.m.•2 views

WordPress Frontend Post Submission Manager Lite plugin <= 1.2.7 - Unauthenticated Open Redirect via 'requested_page' Parameter vulnerability

Unauthenticated Open Redirect via 'requestedpage' Parameter vulnerability discovered by kr0d in WordPress Plugin Frontend Post Submission Manager Lite versions 1.0.0-1.2.7...

6.1CVSS5.5AI score0.00387EPSS

RedhatCVE•added 2026/01/09 10:45 a.m.•3 views

CVE-2022-0201

The Permalink Manager Lite WordPress plugin before 2.2.15 and Permalink Manager Pro WordPress plugin before 2.2.15 do not sanitise and escape query parameters before outputting them back in the debug page, leading to a Reflected Cross-Site Scripting issue...

6.1CVSS6.2AI score0.17941EPSS

Exploits2References1

Patchstack•added 2025/12/31 12:0 a.m.•3 views

WordPress Frontend Post Submission Manager Lite plugin <= 1.2.5 - Missing Authorization to Unauthenticated Arbitrary Post Modification vulnerability

Missing Authorization to Unauthenticated Arbitrary Post Modification vulnerability discovered by Md. Moniruzzaman Prodhan NomanProdhan - Knight Squad in WordPress Plugin Frontend Post Submission Manager Lite versions = 1.2.5...

5.3CVSS5.9AI score0.00124EPSS

RedhatCVE•added 2025/12/27 12:5 a.m.•3 views

CVE-2025-14913

The Frontend Post Submission Manager Lite – Frontend Posting WordPress Plugin plugin for WordPress is vulnerable to unauthorized loss of data due to an incorrect authorization check on the 'mediadeleteaction' function in all versions up to, and including, 1.2.6. This makes it possible for...

5.3CVSS6.1AI score0.00031EPSS

Patchstack•added 2025/12/25 11:43 a.m.•3 views

WordPress Frontend Post Submission Manager Lite plugin <= 1.2.6 - Incorrect Authorization to Unauthenticated Arbitrary Attachment Deletion vulnerability

Incorrect Authorization to Unauthenticated Arbitrary Attachment Deletion vulnerability discovered by Md. Moniruzzaman Prodhan NomanProdhan - Knight Squad in WordPress Plugin Frontend Post Submission Manager Lite versions = 1.2.6...

5.3CVSS6.8AI score0.00031EPSS