6279 matches found
CVE-2025-12635
creationtimestamp| type| source ---|---|--- 2025-12-08 15:55:05+00:00| seen| https://bsky.app/profile/knaepp.bsky.social/post/3m7ifcshmal2d 2025-12-08 16:05:04+00:00| seen| https://bsky.app/profile/knaepp.bsky.social/post/3m7ifunn7pm2j 2025-12-08 20:25:05+00:00| seen|...
CVE-2023-53761
creationtimestamp| type| source ---|---|--- 2025-12-08 02:38:58+00:00| seen| https://bsky.app/profile/potato.software/post/3m7gytauf6o2r 2025-12-08 03:18:30+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3m7h2zx2dgj2q...
CVE-2025-40282
creationtimestamp| type| source ---|---|--- 2025-12-06 22:43:58+00:00| seen| https://bsky.app/profile/potato.software/post/3m7e3a4mnbu2t 2025-12-06 23:34:13+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3m7e5zxqvzb2n 2026-03-19 00:00:00+00:00| seen|...
CVE-2025-13684
The ARK Related Posts plugin for WordPress is vulnerable to Cross-Site Request Forgery in version 2.19. This is due to missing or incorrect nonce validation on the arkrpoptionspage function. This makes it possible for unauthenticated attackers to modify the plugin's configuration settings via a...
CVE-2025-12574 Listar – Directory Listing & Classifieds WordPress Plugin <= 3.0.0 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Post Deletion
The Listar – Directory Listing & Classifieds WordPress Plugin plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the '/wp-json/listar/v1/place/delete' REST API endpoint in all versions up to, and including, 3.0.0. This makes it possible for...
CVE-2025-12574
CVE-2025-12574 concerns Listar – Directory Listing & Classifieds WordPress Plugin (
PT-2025-49331
The Listar – Directory Listing & Classifieds WordPress Plugin plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the '/wp-json/listar/v1/place/delete' REST API endpoint in all versions up to, and including, 3.0.0. This makes it possible for...
CVE-2025-14108
creationtimestamp| type| source ---|---|--- 2025-12-05 22:25:40+00:00| seen| https://infosec.exchange/users/cR0w/statuses/115669305914538839 2025-12-05 23:00:35+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3m7blovwhli2u 2025-12-06 00:10:04+00:00| seen|...
CVE-2025-66471
creationtimestamp| type| source ---|---|--- 2025-12-05 17:54:47+00:00| seen| https://seclists.org/oss-sec/2025/q4/250 2025-12-05 19:12:43+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3m7b6xhddwo2s 2025-12-05 19:13:24+00:00| seen|...
CVE-2025-55183
creationtimestamp| type| source ---|---|--- 2025-12-05 13:54:28+00:00| seen| https://vulnerability.circl.lu/bundle/6739b288-995a-4f1a-9f03-5d1ced3a8fbd 2025-12-11 20:51:04+00:00| seen| https://bsky.app/profile/react.dev/post/3m7qhaqdtxc2v 2025-12-11 20:51:05+00:00| seen|...
CVE-2025-55184
creationtimestamp| type| source ---|---|--- 2025-12-05 13:54:28+00:00| seen| https://vulnerability.circl.lu/bundle/6739b288-995a-4f1a-9f03-5d1ced3a8fbd 2025-12-11 20:51:04+00:00| seen| https://bsky.app/profile/react.dev/post/3m7qhaqdxuc2v 2025-12-11 20:51:04+00:00| seen|...
CVE-2025-13684
The ARK Related Posts plugin for WordPress is vulnerable to Cross-Site Request Forgery in version 2.19. This is due to missing or incorrect nonce validation on the arkrpoptionspage function. This makes it possible for unauthenticated attackers to modify the plugin's configuration settings via a...
CVE-2025-12782
The Beaver Builder – WordPress Page Builder plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 2.9.4. This is due to the plugin not properly verifying a user's authorization in the disable function. This makes it possible for authenticated attackers,...
CVE-2025-13684 ARK Related Posts <= 2.19 - Cross-Site Request Forgery to Settings Update
The ARK Related Posts plugin for WordPress is vulnerable to Cross-Site Request Forgery in version 2.19. This is due to missing or incorrect nonce validation on the arkrpoptionspage function. This makes it possible for unauthenticated attackers to modify the plugin's configuration settings via a...
CVE-2025-13684 ARK Related Posts <= 2.19 - Cross-Site Request Forgery to Settings Update
The ARK Related Posts plugin for WordPress is vulnerable to Cross-Site Request Forgery in version 2.19. This is due to missing or incorrect nonce validation on the arkrpoptionspage function. This makes it possible for unauthenticated attackers to modify the plugin's configuration settings via a...
CVE-2025-13684
CVE-2025-13684 concerns the ARK Related Posts WordPress plugin (version
EUVD-2025-201393
The ARK Related Posts plugin for WordPress is vulnerable to Cross-Site Request Forgery in version 2.19. This is due to missing or incorrect nonce validation on the arkrpoptionspage function. This makes it possible for unauthenticated attackers to modify the plugin's configuration settings via a...
WordPress plugin ARK Related Posts 跨站请求伪造漏洞
...
PT-2025-49232
The ARK Related Posts plugin for WordPress is vulnerable to Cross-Site Request Forgery in version 2.19. This is due to missing or incorrect nonce validation on the ark rp options page function. This makes it possible for unauthenticated attackers to modify the plugin's configuration settings via ...
WordPress ARK Related Posts plugin <= 2.19 - Cross-Site Request Forgery to Settings Update vulnerability
Cross-Site Request Forgery to Settings Update vulnerability discovered by Muhammad Nur Ibnu Hubab Ibnu - Pondok Teknologi in WordPress Plugin ARK Related Posts versions = 2.19...