6242 matches found
EUVD-2026-11802
Missing Authorization vulnerability in Ays Pro Advanced Related Posts advanced-related-posts allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Advanced Related Posts: from n/a through = 1.9.1...
CVE-2026-32419
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Fernando Briano List category posts list-category-posts allows DOM-Based XSS.This issue affects List category posts: from n/a through = 0.93.1...
CVE-2026-32329
Missing Authorization vulnerability in Ays Pro Advanced Related Posts advanced-related-posts allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Advanced Related Posts: from n/a through = 1.9.1...
CVE-2026-32419
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Fernando Briano List category posts list-category-posts allows DOM-Based XSS.This issue affects List category posts: from n/a through = 0.93.1...
CVE-2026-32419 WordPress List category posts plugin <= 0.93.1 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Fernando Briano List category posts list-category-posts allows DOM-Based XSS.This issue affects List category posts: from n/a through = 0.93.1...
CVE-2026-32419
The CVE relates to a DOM-Based XSS in the WordPress plugin List category posts (list-category-posts) up to version 0.93.1, caused by improper neutralization during web page generation. Affected: List category posts; vulnerability type: Cross-Site Scripting (XSS). Impact details are limited to the...
CVE-2026-32419 WordPress List category posts plugin <= 0.93.1 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Fernando Briano List category posts list-category-posts allows DOM-Based XSS.This issue affects List category posts: from n/a through = 0.93.1...
CVE-2026-32329
The CVE-2026-32329 entry concerns WordPress plugin Advanced Related Posts (Ays Pro) in the component advanced-related-posts, affected up to version 1.9.1. The root cause is a Missing Authorization/Incorrectly Configured Access Control vulnerability, i.e., Broken Access Control that could enable u...
CVE-2026-32329
Missing Authorization vulnerability in Ays Pro Advanced Related Posts advanced-related-posts allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Advanced Related Posts: from n/a through = 1.9.1...
CVE-2026-32329 WordPress Advanced Related Posts plugin <= 1.9.1 - Broken Access Control vulnerability
Missing Authorization vulnerability in Ays Pro Advanced Related Posts advanced-related-posts allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Advanced Related Posts: from n/a through = 1.9.1...
CVE-2026-32329 WordPress Advanced Related Posts plugin <= 1.9.1 - Broken Access Control vulnerability
Missing Authorization vulnerability in Ays Pro Advanced Related Posts advanced-related-posts allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Advanced Related Posts: from n/a through = 1.9.1...
CVE-2026-2879
The CVE-2026-2879 entry concerns GetGenie (WordPress) plugin
WordPress GetGenie plugin <= 4.3.2 - Insecure Direct Object Reference to Authenticated (Author+) Arbitrary Post Overwrite/Deletion vulnerability
Insecure Direct Object Reference to Authenticated Author+ Arbitrary Post Overwrite/Deletion vulnerability discovered by Kazuma Matsumoto - GMO Cybersecurity by IERAE, Inc. in WordPress Plugin GetGenie versions = 4.3.2...
CVE-2026-22193
creationtimestamp| type| source ---|---|--- 2026-03-13 03:00:40+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3mgvwdhmewg2r 2026-03-13 03:00:42+00:00| seen| https://infosec.exchange/users/offseq/statuses/116219631142137867 2026-03-18 03:20:09+00:00| seen|...
PT-2026-25265
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Fernando Briano List category posts list-category-posts allows DOM-Based XSS.This issue affects List category posts: from n/a through = 0.93.1...
PT-2026-25177
Missing Authorization vulnerability in Ays Pro Advanced Related Posts advanced-related-posts allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Advanced Related Posts: from n/a through = 1.9.1...
WordPress plugin List category posts 跨站脚本漏洞
WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. Versions...
WordPress plugin Advanced Related Posts 安全漏洞
WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...
CVE-2026-32319
creationtimestamp| type| source ---|---|--- 2026-03-12 22:40:05+00:00| seen| https://gist.github.com/alon710/513d69d6cc7cbaf7bac9c0b1746fd288 2026-03-12 22:43:41+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mgvhxyict32z 2026-03-12 23:04:32+00:00| seen|...
CVE-2026-1526
creationtimestamp| type| source ---|---|--- 2026-03-12 20:16:23+00:00| seen| https://www.incibe.es/incibe-cert/alerta-temprana/vulnerabilidades/cve-2026-1526 2026-03-12 20:37:13+00:00| seen| https://bsky.app/profile/ulisesgascon.com/post/3mgvavqinos2f 2026-03-12 21:38:34+00:00| seen|...