Lucene search
K

262 matches found

Positive Technologies
Positive Technologies
added 2026/03/06 12:0 a.m.8 views

PT-2026-23651

Name of the Vulnerable Software and Affected Versions PowerPack for LearnDash WordPress plugin versions prior to 1.3.0 Description The PowerPack for LearnDash WordPress plugin lacks authorization and Cross-Site Request Forgery CSRF checks in an AJAX action. This allows unauthenticated users to...

9.8CVSS7.4AI score0.00303EPSS
Exploits0References8
CNNVD
CNNVD
added 2026/03/06 12:0 a.m.6 views

WordPress plugin PowerPack for LearnDash 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows users to create personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be installed t...

9.8CVSS7.4AI score0.00303EPSS
Exploits0References2
Patchstack
Patchstack
added 2026/03/01 3:18 p.m.4 views

WordPress PowerPack Addons for Elementor plugin <= 2.9.9 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Abu Hurayra in WordPress Plugin PowerPack Addons for Elementor versions = 2.9.9...

6.5CVSS5.8AI score0.00161EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVE
added 2026/01/09 10:44 a.m.8 views

CVE-2022-0176

The PowerPack Lite for Beaver Builder WordPress plugin before 1.2.9.3 does not sanitise and escape the tab parameter before outputting it back in an admin page, leading to a Reflected Cross-Site Scripting...

6.1CVSS6.5AI score0.00876EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2026/01/09 8:33 a.m.9 views

CVE-2024-39634

Improper Privilege Management vulnerability in IdeaBox PowerPack Pro for Elementor allows Privilege Escalation.This issue affects PowerPack Pro for Elementor: from n/a through 2.10.14...

8.8CVSS7AI score0.00444EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:16 a.m.7 views

CVE-2025-1512

The PowerPack Elementor Addons Free Widgets, Extensions and Templates plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Custom Cursor Extension in all versions up to, and including, 2.9.0 due to insufficient input sanitization and output escaping. This makes it possible fo...

6.4CVSS6AI score0.00232EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:14 a.m.6 views

CVE-2024-2289

The PowerPack Lite for Beaver Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the link in multiple elements in all versions up to, and including, 1.3.0 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...

6.4CVSS5.8AI score0.0034EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:14 a.m.9 views

CVE-2024-2492

The PowerPack Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Twitter Tweet widget in all versions up to, and including, 2.7.18 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...

6.4CVSS5.8AI score0.0036EPSS
Exploits0References1
CNVD
CNVD
added 2025/12/30 12:0 a.m.7 views

WordPress PowerPack Pro for Elementor plugin missing license vulnerability

WordPress PowerPack Pro for Elementor plugin is an Elementor page builder extension plugin designed for the WordPress platform. A lack of authorization vulnerability exists in WordPress PowerPack Pro for Elementor plugin, which can be exploited by an attacker to leverage a misconfigured access...

7.5CVSS6.8AI score0.00241EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/12/24 12:32 p.m.5 views

CVE-2024-24844

Missing Authorization vulnerability in IdeaBox Creations PowerPack Pro for Elementor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects PowerPack Pro for Elementor: from n/a through 2.10.6...

7.5CVSS7AI score0.00241EPSS
Exploits0References1
NVD
NVD
added 2025/12/23 12:15 p.m.5 views

CVE-2024-24844

Missing Authorization vulnerability in IdeaBox Creations PowerPack Pro for Elementor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects PowerPack Pro for Elementor: from n/a through 2.10.6...

7.5CVSS0.00241EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/12/23 12:6 p.m.27 views

CVE-2024-24844 WordPress PowerPack Pro for Elementor plugin <= 2.10.6 - Unauthenticated Plugin Settings Reset vulnerability

Missing Authorization vulnerability in IdeaBox Creations PowerPack Pro for Elementor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects PowerPack Pro for Elementor: from n/a through 2.10.6...

7.5CVSS0.00241EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/23 12:6 p.m.5 views

EUVD-2024-22207

Missing Authorization vulnerability in IdeaBox Creations PowerPack Pro for Elementor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects PowerPack Pro for Elementor: from n/a through 2.10.6...

7.5CVSS6.5AI score0.00241EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/12/23 12:6 p.m.2 views

CVE-2024-24844 WordPress PowerPack Pro for Elementor plugin <= 2.10.6 - Unauthenticated Plugin Settings Reset vulnerability

Missing Authorization vulnerability in IdeaBox Creations PowerPack Pro for Elementor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects PowerPack Pro for Elementor: from n/a through 2.10.6...

7.5CVSS6.6AI score0.00241EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/12/23 12:0 a.m.8 views

WordPress plugin PowerPack Pro for Elementor 安全漏洞

WordPress PowerPack Pro for Elementor plugin is an Elementor page builder extension plugin designed for the WordPress platform. A lack of authorization vulnerability exists in WordPress PowerPack Pro for Elementor plugin, which can be exploited by an attacker to leverage a misconfigured access...

7.5CVSS8.8AI score0.00241EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/12/23 12:0 a.m.4 views

PT-2025-52745

Name of the Vulnerable Software and Affected Versions IdeaBox Creations PowerPack Pro for Elementor versions through 2.10.6 Description A missing authorization issue exists in PowerPack Pro for Elementor, allowing exploitation of incorrectly configured access control security levels. This can lea...

7.5CVSS6.5AI score0.00241EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2021-11939

Malware in sbrugna...

6.1CVSS6.2AI score0.00876EPSS
Exploits2References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-27536

Malicious code in bioql PyPI...

6.4CVSS6.4AI score0.00216EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-27441

Malicious code in bioql PyPI...

6.4CVSS8.6AI score0.0036EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-46553

Malicious code in bioql PyPI...

6.4CVSS6.5AI score0.00322EPSS
Exploits0References3
Rows per page
Query Builder