CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

49 matches found

EUVD-2026-38672

The ClearSale Total plugin for WordPress is vulnerable to SQL Injection via the pagsegurometodo POST parameter of the clearsaletotalpush AJAX action in all versions up to, and including, 3.4.2. The handler is registered for unauthenticated users wpajaxnoprivclearsaletotalpush, and although a...

7.5CVSS6.1AI score0.00505EPSS

Exploits0References6

CVE•added yesterday•6 views

CVE-2026-8705

The CVE describes a SQL injection in the ClearSale Total WordPress plugin (versions <= 3.4.2). The vulnerability occurs via the pagseguro[metodo] POST parameter of the clearsale_total_push AJAX action, which is accessible to unauthenticated users (wp_ajax_nopriv_clearsale_total_push). Although...

7.5CVSS6.1AI score0.00505EPSS

Exploits0References6

Cvelist•added yesterday•18 views

CVE-2026-8705 ClearSale Total <= 3.4.2 - Unauthenticated SQL Injection

7.5CVSS0.00505EPSS

Exploits0References6

RedhatCVE•added 2025/12/10 3:13 p.m.•2 views

CVE-2025-62151

Missing Authorization vulnerability in Virtuaria Virtuaria PagBank / PagSeguro para Woocommerce virtuaria-pagseguro allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Virtuaria PagBank / PagSeguro para Woocommerce: from n/a through = 3.6.3...

5.3CVSS7AI score0.00282EPSS

Exploits0References1

EUVD•added 2025/12/09 6:30 p.m.•2 views

EUVD-2025-202030

6.5AI score0.00282EPSS

Exploits0References2

NVD•added 2025/12/09 4:18 p.m.•2 views

CVE-2025-62151

5.3CVSS0.00282EPSS

Exploits0References1

CVE•added 2025/12/09 2:52 p.m.•6 views

CVE-2025-62151

CVE-2025-62151 is a Missing Authorization/Broken Access Control vulnerability in the WordPress plugin Virtuaria PagBank / PagSeguro para Woocommerce . The issue affects versions from no details yet up to and including 3.6.3 , caused by incorrectly configured access control, enabling unauthorized ...

5.3CVSS6.6AI score0.00282EPSS

Exploits0References1

Cvelist•added 2025/12/09 2:52 p.m.•19 views

CVE-2025-62151 WordPress Virtuaria PagBank / PagSeguro para Woocommerce plugin <= 3.6.3 - Broken Access Control vulnerability

5.3CVSS0.00282EPSS

Exploits0References1

Vulnrichment•added 2025/12/09 2:52 p.m.•1 views

CVE-2025-62151 WordPress Virtuaria PagBank / PagSeguro para Woocommerce plugin <= 3.6.3 - Broken Access Control vulnerability

6.6AI score0.00282EPSS

Exploits0References1

CNNVD•added 2025/12/09 12:0 a.m.•1 views

WordPress plugin Virtuaria PagBank / PagSeguro para Woocommerce 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security vulnerabili...

5.3CVSS6.4AI score0.00282EPSS

Exploits0References1

Positive Technologies•added 2025/12/09 12:0 a.m.•2 views

PT-2025-49999

7AI score0.00282EPSS

Exploits0References2

Patchstack•added 2025/11/28 5:40 a.m.•3 views

WordPress Virtuaria PagBank / PagSeguro para Woocommerce plugin <= 3.6.3 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Legion Hunter in WordPress Plugin Virtuaria PagBank / PagSeguro para Woocommerce versions = 3.6.3...

8.8CVSS7AI score0.00282EPSS

Exploits0Affected Software1

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2024-45644

Malicious code in bioql PyPI...

6.5CVSS8.6AI score0.00374EPSS

Exploits0References1

RedhatCVE•added 2025/09/12 7:11 a.m.•4 views

CVE-2025-10142

The PagBank / PagSeguro Connect para WooCommerce plugin for WordPress is vulnerable to SQL Injection via the 'status' parameter in all versions up to, and including, 4.44.3 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. Th...

4.9CVSS6.6AI score0.00384EPSS

Exploits0References1

NVD•added 2025/09/10 7:15 a.m.•5 views

CVE-2025-10142

4.9CVSS0.00384EPSS

Exploits0References4

OSV•added 2025/09/10 7:15 a.m.•3 views

CVE-2025-10142

4.9CVSS6.6AI score

Exploits0References4

CVE•added 2025/09/10 6:38 a.m.•22 views

CVE-2025-10142

The CVE-2025-10142 vulnerability affects the PagBank / PagSeguro Connect para WooCommerce plugin for WordPress. It is a SQL Injection via the status parameter in all versions up to 4.44.3, caused by insufficient escaping and inadequate query preparation. Authenticated attackers with Shop Manager-...

4.9CVSS6AI score0.00384EPSS

Exploits0References4

Cvelist•added 2025/09/10 6:38 a.m.•8 views

CVE-2025-10142 PagBank / PagSeguro Connect para WooCommerce <= 4.44.3 - Authenticated (Shop Manager+) SQL Injection

4.9CVSS0.00384EPSS

Exploits0References4

Vulnrichment•added 2025/09/10 6:38 a.m.•1 views

CVE-2025-10142 PagBank / PagSeguro Connect para WooCommerce <= 4.44.3 - Authenticated (Shop Manager+) SQL Injection

4.9CVSS6AI score0.00384EPSS

Exploits0References4

Positive Technologies•added 2025/09/10 12:0 a.m.•4 views

PT-2025-37009

Name of the Vulnerable Software and Affected Versions: PagBank / PagSeguro Connect para WooCommerce plugin for WordPress versions through 4.44.3 Description: The plugin is susceptible to SQL Injection via the status parameter due to insufficient input validation and inadequate SQL query...

4.9CVSS7.1AI score0.00384EPSS

Exploits0References7

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by