Lucene search
K

6 matches found

Patchstack
Patchstack
added 2025/12/31 12:0 a.m.6 views

WordPress Search Exclude plugin <= 2.4.9 - Missing Authorization to Unauthenticated Plugin Settings Modification vulnerability

Missing Authorization to Unauthenticated Plugin Settings Modification vulnerability discovered by Noah Stead TurtleBurg in WordPress Plugin Search Exclude versions = 2.4.9...

5.3CVSS5.9AI score0.00301EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/12/12 5:48 p.m.5 views

WordPress Hash Form plugin <= 1.2.1 - Missing Authorization to Authenticated (Contributor+) Form Style Creation vulnerability

Missing Authorization to Authenticated Contributor+ Form Style Creation vulnerability discovered by Noah Stead TurtleBurg in WordPress Plugin Hash Form versions = 1.2.1...

4.3CVSS7AI score0.00369EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/11/22 9:35 p.m.6 views

WordPress WP Travel Engine plugin <= 6.2.1 - Missing Authorization to Authenticated (Contributor+) Plugin Settings Update vulnerability

Missing Authorization to Authenticated Contributor+ Plugin Settings Update vulnerability discovered by Noah Stead TurtleBurg in WordPress Plugin WP Travel Engine versions = 6.2.1...

4.3CVSS7AI score0.00297EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/10/23 9:2 p.m.5 views

WordPress DearFlip plugin <= 2.3.32 - Reflected Cross-Site Scripting vulnerability

Reflected Cross-Site Scripting vulnerability discovered by Noah Stead TurtleBurg in WordPress Plugin DearFlip versions = 2.3.32...

6.1CVSS6.3AI score0.00421EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/10/16 8:55 p.m.5 views

WordPress Wordpress Photo Album Plus plugin <= 8.8.05.003 - Reflected Cross-Site Scripting vulnerability

Reflected Cross-Site Scripting vulnerability discovered by Noah Stead TurtleBurg in WordPress Plugin WP Photo Album Plus versions = 8.8.05.003...

6.1CVSS6.3AI score0.00291EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/10/16 12:0 a.m.9 views

WordPress WP Photo Album Plus Plugin <= 8.8.05.003 is vulnerable to Cross Site Scripting (XSS)

Software WP Photo Album Plus Type Plugin Vulnerable versions = 8.8.05.003 Fixed in 8.8.07.004 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-9951 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 361cb23fe9c7 Credits Noah...

6.1CVSS5.9AI score0.00291EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder