Lucene search
K

18 matches found

Patchstack
Patchstack
added 2026/05/01 9:32 a.m.7 views

WordPress Blog Designer Pack – Blog, Post Grid, Post Slider, Post Carousel, Category Post, News plugin <= 3.4.9 - Unauthenticated Reflected Cross-Site Scripting vulnerability

Unauthenticated Reflected Cross-Site Scripting vulnerability discovered by Asaf Mozes in WordPress Plugin News & Blog Designer Pack versions = 3.4.9...

6.1CVSS5.8AI score0.00276EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/01/14 12:42 p.m.5 views

WordPress News and Blog Designer Bundle plugin <= 1.1 - Unauthenticated Local File Inclusion vulnerability

Unauthenticated Local File Inclusion vulnerability discovered by Itthidej Aramsri Boeing777 in WordPress Plugin News and Blog Designer Bundle versions = 1.1...

9.8CVSS7AI score0.01336EPSS
Exploits1References1Affected Software1
NVD
NVD
added 2026/01/14 6:15 a.m.11 views

CVE-2025-14502

The News and Blog Designer Bundle plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 1.1 via the template parameter. This makes it possible for unauthenticated attackers to include and execute arbitrary .php files on the server, allowing the execution...

9.8CVSS0.01336EPSS
Exploits1References2
CNNVD
CNNVD
added 2026/01/14 12:0 a.m.7 views

WordPress plugin News and Blog Designer Bundle 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security vulnerabili...

9.8CVSS6.2AI score0.01336EPSS
Exploits1References3
HackRead
HackRead
added 2025/11/24 1:0 p.m.9 views

Elite Cyber Veterans Launch Blast Security with $10M to Turn Cloud Detection into Prevention

Tel Aviv, Israel, 24th November 2025, CyberNewsWire...

7AI score
Exploits0
HackRead
HackRead
added 2025/09/29 6:1 a.m.5 views

ThreatBook Launches Best-of-Breed Advanced Threat Intelligence Solution

Singapore, Singapore, 29th September 2025, CyberNewsWire...

7AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/04/03 9:39 p.m.10 views

CVE-2025-31082

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in InfornWeb News & Blog Designer Pack blog-designer-pack allows PHP Local File Inclusion.This issue affects News & Blog Designer Pack: from n/a through = 4.0...

8.1CVSS7.2AI score0.00795EPSS
Exploits0References1
NVD
NVD
added 2025/04/01 9:15 p.m.16 views

CVE-2025-31082

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in InfornWeb News & Blog Designer Pack blog-designer-pack allows PHP Local File Inclusion.This issue affects News & Blog Designer Pack: from n/a through = 4.0...

8.1CVSS0.00795EPSS
Exploits0References1
OSV
OSV
added 2023/11/22 4:15 p.m.7 views

CVE-2023-5815

The News & Blog Designer Pack – WordPress Blog Plugin — Blog Post Grid, Blog Post Slider, Blog Post Carousel, Blog Post Ticker, Blog Post Masonry plugin for WordPress is vulnerable to Remote Code Execution via Local File Inclusion in all versions up to, and including, 3.4.1 via the bdpgetmorepost...

9.8CVSS6.2AI score0.04262EPSS
Exploits0References4
CVE
CVE
added 2023/11/22 3:33 p.m.158 views

CVE-2023-5815

The News & Blog Designer Pack WordPress plugin (

9.8CVSS9.9AI score0.04262EPSS
In wildExploits0References4Affected Software1
Positive Technologies
Positive Technologies
added 2023/10/27 12:0 a.m.11 views

PT-2023-32349 · WordPress · The News & Blog Designer Pack

Name of the Vulnerable Software and Affected Versions: The News & Blog Designer Pack – WordPress Blog Plugin versions up to, and including, 3.4.1 Description: The issue is related to Remote Code Execution via Local File Inclusion. This is due to the bdp get more post function utilizing an unsafe...

9.8CVSS9.9AI score0.04262EPSS
Exploits0References11
Cvelist
Cvelist
added 2023/01/30 8:31 p.m.27 views

CVE-2022-4792 News & Blog Designer Pack < 3.3 - Contributor+ Stored XSS via Shortcode

The News & Blog Designer Pack WordPress plugin before 3.3 does not validate and escape one of its shortcode attributes, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attack...

5.5AI score0.00438EPSS
Exploits2References1
CVE
CVE
added 2023/01/30 8:31 p.m.64 views

CVE-2022-4792

CVE-2022-4792 affects the WordPress plugin “News & Blog Designer Pack” (pre-3.3). The flaw is improper validation/escaping of a shortcode attribute, enabling a user with at least contributor privileges to perform a Stored XSS attack. Impact is limited to data/JS execution via the vulnerable short...

5.4CVSS5.3AI score0.00438EPSS
Exploits2References1Affected Software1
Patchstack
Patchstack
added 2022/02/28 12:0 a.m.14 views

WordPress News & Blog Designer Pack – WordPress Blog Plugin plugin < 2.3.1 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress News & Blog Designer Pack – WordPress Blog Plugin plugin versions 2.3.1. Solution Update the WordPress News & Blog Designer Pack – WordPress Blog Plugin plugin to the latest available version at least 2.3.1...

2.3AI score
Exploits0References2Affected Software1
Packet Storm
Packet Storm
added 2009/12/30 12:0 a.m.31 views

ASP Makit News/Blog Poster 3.1 Database Disclosure

======================================================================================== | Title : Asp makit news/blog poster v3.1 DB Download Vulnerability | | Author : indoushka | | email : [email protected] | | Home : Souk Naamane - 04325 - Oum El Bouaghi - Algeria -00213771818860 | | Web...

7.4AI score
Exploits0
0day.today
0day.today
added 2009/12/29 12:0 a.m.22 views

makit news/blog poster v3.1 DB Download Vulnerability

Exploit for unknown platform in category web applications ===================================================== makit news/blog poster v3.1 DB Download Vulnerability =====================================================...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2009/12/29 12:0 a.m.32 views

makit news/blog poster v3.1 DB Download Vulnerability

No description provided by source. ======================================================================================== | Title : Asp makit news/blog poster v3.1 DB Download Vulnerability | | Author : indoushka | | email : [email protected] | | Home : Souk Naamane - 04325 - Oum El Bouaghi...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2007/01/27 12:0 a.m.25 views

makit-sql.txt

Title : makit news/blog poster =v3newspage.asp Remote SQL Injection Vulnerability Author : ajann Contact : : S.Page : http://www.makit.net $$ : Free SQL--------------------------------------------------------- http://target/path//newspage.asp?uid=SQL Example:...

7.4AI score
Exploits0
Rows per page
Query Builder