Lucene search
K

13 matches found

CNVD
CNVD
added 2025/12/12 12:0 a.m.2 views

WordPress Plugin Portfolio and Projects Information Disclosure Vulnerability

WordPress is a blogging platform developed using the PHP language. The platform has the ability to set up a personal blog site on a PHP and MySQL based server.WordPress plugin is an application plugin. An information disclosure vulnerability exists in the WordPress plugin Portfolio and Projects,...

4.3CVSS6AI score0.00215EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/12/10 2:23 p.m.4 views

CVE-2025-67470

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Essential Plugin Portfolio and Projects portfolio-and-projects allows Retrieve Embedded Sensitive Data.This issue affects Portfolio and Projects: from n/a through = 1.5.5...

4.3CVSS6.9AI score0.00215EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/09 6:30 p.m.6 views

EUVD-2025-202134

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Essential Plugin Portfolio and Projects portfolio-and-projects allows Retrieve Embedded Sensitive Data.This issue affects Portfolio and Projects: from n/a through = 1.5.5...

6.4AI score0.00215EPSS
Exploits0References2
CVE
CVE
added 2025/12/09 2:13 p.m.12 views

CVE-2025-67470

CVE-2025-67470 is a WordPress plugin vulnerability in the Portfolio and Projects (portfolio-and-projects) plugin, affecting versions

4.3CVSS6.5AI score0.00215EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/12/09 2:13 p.m.2 views

CVE-2025-67470 WordPress Portfolio and Projects plugin <= 1.5.5 - Sensitive Data Exposure vulnerability

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Essential Plugin Portfolio and Projects portfolio-and-projects allows Retrieve Embedded Sensitive Data.This issue affects Portfolio and Projects: from n/a through = 1.5.5...

4.3CVSS6.5AI score0.00215EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/12/09 12:0 a.m.3 views

WordPress plugin Portfolio and Projects 安全漏洞

WordPress is a blogging platform developed using the PHP language. The platform has the ability to set up a personal blog site on a PHP and MySQL based server.WordPress plugin is an application plugin. An information disclosure vulnerability exists in the WordPress plugin Portfolio and Projects,...

4.3CVSS5.9AI score0.00215EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-43688

Malicious code in bioql PyPI...

4.3CVSS9.1AI score0.00369EPSS
Exploits0References1
CVE
CVE
added 2025/03/15 3:23 a.m.48 views

CVE-2024-13847

CVE-2024-13847 (Red Hat RH advisory) concerns a stored XSS vulnerability in the WordPress Portfolio and Projects plugin, affecting all versions up to 1.5.3. It requires authenticated administrators (Administrator-level) and affects multisite installs or sites with unfiltered_html disabled. The pu...

5.8AI score
Exploits0
Vulnrichment
Vulnrichment
added 2025/03/15 3:23 a.m.5 views

CVE-2024-13847

...

5.5AI score
Exploits0
ATTACKERKB
ATTACKERKB
added 2024/12/13 3:15 p.m.4 views

CVE-2023-39995

Missing Authorization vulnerability in WP OnlineSupport, Essential Plugin Portfolio and Projects portfolio-and-projects allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Portfolio and Projects: from n/a through = 1.3.7...

4.3CVSS5.8AI score0.00369EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/12/13 12:0 a.m.2 views

WordPress plugin Portfolio and Projects 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

4.3CVSS8.6AI score0.00369EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/12/13 12:0 a.m.4 views

PT-2024-12828 · Unknown +1 · Essential Plugin Portfolio/Projects +2

Name of the Vulnerable Software and Affected Versions: WP OnlineSupport, Essential Plugin Portfolio and Projects versions 1.3.7 and earlier Description: The issue affects the Portfolio and Projects plugin for WordPress, involving broken access control due to missing authorization. This allows for...

4.3CVSS9.7AI score0.00369EPSS
Exploits0References7
Patchstack
Patchstack
added 2023/08/16 12:0 a.m.11 views

WordPress Portfolio and Projects Plugin <= 1.3.7 is vulnerable to Broken Access Control

Software Portfolio and Projects Type Plugin Vulnerable versions = 1.3.7 Fixed in 1.3.8 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2023-40200 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 4fd5786d3c57 Credits Abdi Pranata Required...

5.8AI score0.00188EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder