Lucene search
K

8074 matches found

CNNVD
CNNVD
added 2025/10/22 12:0 a.m.4 views

WordPress plugin Solar Energy 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security vulnerabili...

8.8CVSS6.8AI score0.00556EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/10/22 12:0 a.m.4 views

WordPress plugin Connector for Gravity Forms and Google Sheets 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plugin that provides the ability to host a personal blog site on a PHP and MySQL based server. A security vulnerabilit...

9.8CVSS6.6AI score0.00529EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/10/22 12:0 a.m.6 views

WordPress Plugin KBx Pro Ultimate 代码问题漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A code issue...

9.8CVSS7AI score0.00529EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/10/22 12:0 a.m.3 views

WordPress plugin Single Property 代码问题漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A code issue...

8.8CVSS7AI score0.00486EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/10/22 12:0 a.m.4 views

WordPress plugin White Rabbit 代码问题漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A code issue...

9.8CVSS7AI score0.00529EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/10/22 12:0 a.m.4 views

WordPress plugin Goldenblatt 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security vulnerabili...

9.8CVSS6.8AI score0.00541EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/10/22 12:0 a.m.3 views

WordPress plugin Insurance 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security vulnerabili...

8.8CVSS6.7AI score0.00573EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/10/22 12:0 a.m.5 views

PT-2025-43170

Name of the Vulnerable Software and Affected Versions WooCommerce Vehicle Parts Finder versions through 3.7 Description The WooCommerce Vehicle Parts Finder plugin contains a flaw related to the deserialization of untrusted data, which allows for object injection. This issue impacts the...

5.3CVSS6.7AI score0.00459EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/10/22 12:0 a.m.3 views

WordPress plugin Whitebox-Studio Scape 代码问题漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A code issue...

9.8CVSS6.9AI score0.00529EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/10/22 12:0 a.m.5 views

PT-2025-43149

Name of the Vulnerable Software and Affected Versions designthemes Insurance versions through 3.5 Description The software contains a flaw due to deserialization of untrusted data, which can lead to object injection. This impacts the Insurance application. Recommendations Update to a version newe...

8.8CVSS6.8AI score0.00573EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/10/22 12:0 a.m.4 views

PT-2025-43231

Name of the Vulnerable Software and Affected Versions Boldermail versions through 2.4.0 Description A flaw exists in Boldermail that allows for Object Injection due to deserialization of untrusted data. This issue impacts Boldermail and could potentially allow an attacker to execute arbitrary cod...

8.8CVSS7.3AI score0.00486EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/10/22 12:0 a.m.4 views

WordPress plugin UNIVERSAM 代码问题漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A code issue...

9.8CVSS6.9AI score0.00529EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/10/22 12:0 a.m.6 views

PT-2025-43229

Name of the Vulnerable Software and Affected Versions WP Store Locator versions through 2.2.260 Description The software contains a flaw due to deserialization of untrusted data, which allows for object injection. This issue impacts the wp-store-locator plugin. Recommendations Update WP Store...

8.8CVSS6.8AI score0.00421EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/10/22 12:0 a.m.5 views

WordPress plugin Everest Forms - Frontend Listing Security Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security vulnerabili...

9.8CVSS5.8AI score0.00459EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/10/22 12:0 a.m.4 views

WordPress plugin TF Woo Product Grid Addon For Elementor Security Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security vulnerabili...

9.8CVSS5.8AI score0.00449EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/10/21 12:55 p.m.8 views

WordPress Ajax Search Lite plugin <= 4.13.3 - PHP Object Injection vulnerability

PHP Object Injection vulnerability discovered by Valentinos Chouris in WordPress Plugin Ajax Search Lite versions = 4.13.3...

9.8CVSS7.3AI score0.00206EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/10/21 11:4 a.m.8 views

WordPress Codiqa theme < 1.2.8 - PHP Object Injection vulnerability

PHP Object Injection vulnerability discovered by Bonds in WordPress Theme Codiqa versions 1.2.8...

9.8CVSS7.3AI score0.0032EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVE
added 2025/10/19 3:44 a.m.8 views

CVE-2017-20207

The Flickr Gallery plugin for WordPress is vulnerable to PHP Object Injection in versions up to, and including, 1.5.2 via deserialization of untrusted input from the pager parameter. This allows unauthenticated attackers to inject a PHP Object. Attackers were actively exploiting this vulnerabilit...

9.8CVSS6.9AI score0.0067EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/10/19 3:44 a.m.5 views

CVE-2017-20206

The Appointments plugin for WordPress is vulnerable to PHP Object Injection in versions up to, and including, 2.2.1 via deserialization of untrusted input from the wpmudevappointments cookie. This allows unauthenticated attackers to inject a PHP Object. Attackers were actively exploiting this...

9.8CVSS6.9AI score0.0067EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/10/19 3:44 a.m.8 views

CVE-2017-20208

The RegistrationMagic – Custom Registration Forms, User Registration, Payment, and User Login plugin for WordPress is vulnerable to PHP Object Injection in all versions up to 3.7.9.3 exclusive via deserialization of untrusted input from the isexpiredbydate function. This makes it possible for...

9.8CVSS6.5AI score0.00644EPSS
Exploits0References1
Rows per page
Query Builder