CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Circl•added 2025/01/11 1:5 p.m.•6 views

CVE-2024-57799

creationtimestamp| type| source ---|---|--- 2025-01-11 13:05:54+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/1298 2025-01-11 13:17:37+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lfhs6iulxz22 2025-01-11 13:44:27+00:00| seen|...

5.5CVSS6.2AI score0.0017EPSS

Circl•added 2025/01/11 1:5 p.m.•7 views

CVE-2024-57804

creationtimestamp| type| source ---|---|--- 2025-01-11 13:05:34+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/1296 2025-01-11 13:17:43+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lfhs6ohgar2l 2025-01-11 13:44:24+00:00| seen|...

5.5CVSS6.7AI score0.00176EPSS

Circl•added 2025/01/11 8:3 a.m.•6 views

CVE-2025-0390

creationtimestamp| type| source ---|---|--- 2025-01-11 08:03:47+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/1277 2025-01-11 08:16:21+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lfhbdrigop2e 2025-01-11 08:49:06+00:00| seen|...

7.5CVSS6AI score0.00812EPSS

Exploits1References4

Vulnrichment•added 2025/01/11 7:21 a.m.•5 views

CVE-2024-12407 Push Notification for Post and BuddyPress <= 2.07 - Reflected Cross-Site Scripting

The Push Notification for Post and BuddyPress plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'pushnotificationid' parameter in all versions up to, and including, 2.07 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticat...

6.1CVSS7.4AI score0.00342EPSS

CVE•added 2025/01/11 7:21 a.m.•37 views

CVE-2024-12407

CVE-2024-12407 affects the Push Notification for Post and BuddyPress WordPress plugin. It enables a reflected XSS via the pushnotificationid parameter in versions up to and including 2.06, exploitable by unauthenticated attackers who lure a user to perform an action. Impact is described as client...

6.1CVSS7.4AI score0.00342EPSS

Circl•added 2025/01/11 3:43 a.m.•17 views

CVE-2025-23109

creationtimestamp| type| source ---|---|--- 2025-01-11 03:43:12+00:00| seen| https://infosec.exchange/users/cve/statuses/113807654396857326 2025-01-11 04:15:28+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lfgtv3mhqx2d 2025-01-11 04:43:46+00:00| seen|...

6.5CVSS4.8AI score0.00175EPSS

Circl•added 2025/01/11 3:16 a.m.•4 views

CVE-2025-0104

creationtimestamp| type| source ---|---|--- 2025-01-11 03:16:13+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lfgql43hlo2m 2025-01-11 04:04:10+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/1269 2025-01-11 04:53:13+00:00| seen| https://t.me/cvedetector/15021...

7CVSS8.9AI score0.00344EPSS

Circl•added 2025/01/11 3:16 a.m.•6 views

CVE-2025-0103

creationtimestamp| type| source ---|---|--- 2025-01-11 03:16:09+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lfgqkz4ywv2i 2025-01-11 04:04:12+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/1270 2025-01-11 04:53:12+00:00| seen| https://t.me/cvedetector/15020...

9.2CVSS9.1AI score0.00596EPSS

Circl•added 2025/01/11 2:43 a.m.•3 views

CVE-2024-12204

creationtimestamp| type| source ---|---|--- 2025-01-11 02:43:23+00:00| seen| https://infosec.exchange/users/cve/statuses/113807419152458754 2025-01-11 03:04:06+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/1259 2025-01-11 03:15:54+00:00| seen|...

5.4CVSS7.3AI score0.00238EPSS

Positive Technologies•added 2025/01/11 12:0 a.m.•3 views

PT-2025-1834 · WordPress · Push Notification For Post/Buddypress

Name of the Vulnerable Software and Affected Versions: Push Notification for Post and BuddyPress plugin for WordPress versions up to, and including, 2.06 Description: The issue is related to Reflected Cross-Site Scripting due to insufficient input sanitization and output escaping. This allows...

6.1CVSS6.8AI score0.00342EPSS

CNNVD•added 2025/01/11 12:0 a.m.•2 views

WordPress plugin Push Notification for Post and BuddyPress 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...

6.1CVSS7.6AI score0.00342EPSS

Exploits0References2

Circl•added 2025/01/10 6:13 p.m.•5 views

CVE-2024-54687

creationtimestamp| type| source ---|---|--- 2025-01-10 18:13:39+00:00| seen| https://infosec.exchange/users/cve/statuses/113805414806517646 2025-01-10 18:15:41+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lffselgng72i 2025-01-10 18:54:16+00:00| seen|...

6.1CVSS4.8AI score0.00349EPSS

Exploits1References4

Circl•added 2025/01/10 5:57 p.m.•9 views

CVE-2024-6880

creationtimestamp| type| source ---|---|--- 2025-01-10 17:57:03+00:00| seen| https://infosec.exchange/users/cve/statuses/113805349530967419 2025-01-10 18:16:05+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lffsfcjcd62k 2025-01-10 18:54:17+00:00| seen|...

6.9CVSS6.3AI score0.00479EPSS

Circl•added 2025/01/10 5:32 p.m.•10 views

CVE-2024-57225

creationtimestamp| type| source ---|---|--- 2025-01-10 17:32:01+00:00| seen| https://infosec.exchange/users/cve/statuses/113805251009888703 2025-01-10 18:04:10+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/1205 2025-01-10 18:15:52+00:00| seen|...

9.8CVSS5.8AI score0.01645EPSS

Exploits1References6

Circl•added 2025/01/10 5:13 p.m.•17 views

CVE-2024-57212

creationtimestamp| type| source ---|---|--- 2025-01-10 17:13:24+00:00| seen| https://infosec.exchange/users/cve/statuses/113805177892013482 2025-01-10 17:16:07+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lffp22pajf2m 2025-01-10 17:54:07+00:00| seen|...

5.1CVSS4.8AI score0.0074EPSS

Exploits1References4

Malwarebytes•added 2025/01/10 4:27 p.m.•11 views

BayMark Health Services sends breach notifications after ransomware attack

BayMark Health Services, Inc. BayMark notified an unknown number of patients that attackers stole their personal and health information. BayMark profiles itself as North America’s largest provider of medication-assisted treatment MAT for substance use disorders helping tens of thousands of...

7AI score

Exploits0

Circl•added 2025/01/10 4:4 p.m.•6 views

CVE-2024-50807

creationtimestamp| type| source ---|---|--- 2025-01-10 16:04:06+00:00| seen| https://infosec.exchange/users/cve/statuses/113804905401091069 2025-01-10 16:16:03+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lfflonwihj22 2025-01-10 18:00:56+00:00| seen|...

6.1CVSS5.8AI score0.00285EPSS

Circl•added 2025/01/10 4:3 p.m.•8 views

CVE-2024-29970

creationtimestamp| type| source ---|---|--- 2025-01-10 16:03:36+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/1160 2025-01-10 16:15:56+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lfflogpxmx2m 2025-01-10 18:00:51+00:00| seen|...

9.8CVSS5.8AI score0.00439EPSS