Lucene search
K

14 matches found

GithubExploit
GithubExploit
added 2026/05/31 9:45 a.m.99 views

Exploit for CVE-2026-3891

███████╗██████╗ ██╗███████╗███╗ ██╗██████╗ ███████╗ ██╔═...

9.8CVSS6.1AI score0.00845EPSS
Exploits5
GithubExploit
GithubExploit
added 2026/03/27 6:0 a.m.133 views

Exploit for CVE-2026-3891

CVE-2026-3891 Pix for WooCommerce = 1.5.0 - Unauthenticate...

9.8CVSS5.8AI score0.00845EPSS
Exploits5
RedhatCVE
RedhatCVE
added 2026/03/26 3:4 p.m.9 views

CVE-2026-3891

The Pix for WooCommerce plugin for WordPress is vulnerable to arbitrary file uploads due to missing capability check and missing file type validation in the 'lknpixforwoocommercec6savesettings' function in all versions up to, and including, 1.5.0. This makes it possible for unauthenticated...

9.8CVSS6.6AI score0.00845EPSS
Exploits5References1
EUVD
EUVD
added 2026/03/13 9:31 p.m.10 views

EUVD-2026-11760

The Pix for WooCommerce plugin for WordPress is vulnerable to arbitrary file uploads due to missing capability check and missing file type validation in the 'lknpixforwoocommercec6savesettings' function in all versions up to, and including, 1.5.0. This makes it possible for unauthenticated...

9.8CVSS6.5AI score0.00845EPSS
Exploits5References4
GithubExploit
GithubExploit
added 2026/03/13 8:33 p.m.219 views

Exploit for CVE-2026-3891

Pix for WooCommerce 📜 Description...

9.8CVSS5.8AI score0.00845EPSS
Exploits5
NVD
NVD
added 2026/03/13 7:55 p.m.7 views

CVE-2026-3891

The Pix for WooCommerce plugin for WordPress is vulnerable to arbitrary file uploads due to missing capability check and missing file type validation in the 'lknpixforwoocommercec6savesettings' function in all versions up to, and including, 1.5.0. This makes it possible for unauthenticated...

9.8CVSS0.00845EPSS
Exploits5References3
Cvelist
Cvelist
added 2026/03/13 7:23 a.m.31 views

CVE-2026-3891 Pix for WooCommerce <= 1.5.0 - Unauthenticated Arbitrary File Upload

The Pix for WooCommerce plugin for WordPress is vulnerable to arbitrary file uploads due to missing capability check and missing file type validation in the 'lknpixforwoocommercec6savesettings' function in all versions up to, and including, 1.5.0. This makes it possible for unauthenticated...

9.8CVSS0.00845EPSS
Exploits5References3
Vulnrichment
Vulnrichment
added 2026/03/13 7:23 a.m.6 views

CVE-2026-3891 Pix for WooCommerce <= 1.5.0 - Unauthenticated Arbitrary File Upload

The Pix for WooCommerce plugin for WordPress is vulnerable to arbitrary file uploads due to missing capability check and missing file type validation in the 'lknpixforwoocommercec6savesettings' function in all versions up to, and including, 1.5.0. This makes it possible for unauthenticated...

9.8CVSS6.5AI score0.00845EPSS
Exploits5References3
ATTACKERKB
ATTACKERKB
added 2026/03/13 7:23 a.m.7 views

CVE-2026-3891

The Pix for WooCommerce plugin for WordPress is vulnerable to arbitrary file uploads due to missing capability check and missing file type validation in the 'lknpixforwoocommercec6savesettings' function in all versions up to, and including, 1.5.0. This makes it possible for unauthenticated...

9.8CVSS6.5AI score0.00845EPSS
Exploits5References4
CVE
CVE
added 2026/03/13 7:23 a.m.50 views

CVE-2026-3891

CVE-2026-3891 affects the Pix for WooCommerce WordPress plugin. The issue is an unauthenticated arbitrary file upload in the lkn_pix_for_woocommerce_c6_save_settings endpoint (and related nonce generation flow), caused by missing capability checks and file-type validation in all versions up to 1....

9.8CVSS6.5AI score0.00845EPSS
Exploits5References3
Patchstack
Patchstack
added 2026/03/13 6:56 a.m.8 views

WordPress Pix for WooCommerce plugin <= 1.5.0 - Unauthenticated Arbitrary File Upload vulnerability

Unauthenticated Arbitrary File Upload vulnerability discovered by Alexis Lafontaine in WordPress Plugin Pix for WooCommerce versions = 1.5.0...

9.8CVSS5.8AI score0.00845EPSS
Exploits5References1Affected Software1
Positive Technologies
Positive Technologies
added 2026/03/13 12:0 a.m.6 views

PT-2026-25155

Name of the Vulnerable Software and Affected Versions Pix for WooCommerce versions up to and including 1.5.0 Description The Pix for WooCommerce plugin for WordPress is susceptible to arbitrary file uploads. This is due to a missing capability check and a lack of file type validation within the l...

9.8CVSS6.1AI score0.00845EPSS
Exploits5References12
CNNVD
CNNVD
added 2026/03/13 12:0 a.m.10 views

WordPress plugin Pix for WooCommerce 代码问题漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows users to create personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be installed t...

9.8CVSS6.3AI score0.00845EPSS
Exploits5References3
Vulnrichment
Vulnrichment
added 2025/11/06 3:54 p.m.2 views

CVE-2025-60189 WordPress PoloPag – Pix Automático para Woocommerce plugin <= 2.0.9 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in PoloPag PoloPag – Pix Automático para Woocommerce wc-polo-payments allows PHP Local File Inclusion.This issue affects PoloPag – Pix Automático para Woocommerce: from n/a through ...

7.5CVSS5.3AI score0.0042EPSS
Exploits0References1
Rows per page
Query Builder