Lucene search
K

11 matches found

EUVD
EUVD
added 12 hours ago5 views

EUVD-2026-42544

The Popup Maker – Boost Sales, Conversions, Optins, Subscribers with the Ultimate WP Popup Builder plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 1.22.0. This is due to the plugin not properly verifying that a user is authorized to perform an...

7.2CVSS6.2AI score
Exploits0References12
Cvelist
Cvelist
added 12 hours ago8 views

CVE-2026-8848 Popup Maker – Boost Sales, Conversions, Optins, Subscribers with the Ultimate WP Popup Builder <= 1.22.0 - Missing Authorization to Authenticated (Editor+) Arbitrary Plugin Installation

The Popup Maker – Boost Sales, Conversions, Optins, Subscribers with the Ultimate WP Popup Builder plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 1.22.0. This is due to the plugin not properly verifying that a user is authorized to perform an...

7.2CVSS
Exploits0References12
OSV
OSV
added 2024/06/08 6:15 a.m.3 views

CVE-2024-4661

The WP Reset plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the saveajax function in all versions up to, and including, 2.02. This makes it possible for authenticated attackers, with subscriber-level access and above, to modify the val...

4.3CVSS5.8AI score0.0028EPSS
Exploits0References2
NVD
NVD
added 2024/06/08 6:15 a.m.30 views

CVE-2024-4661

The WP Reset plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the saveajax function in all versions up to, and including, 2.02. This makes it possible for authenticated attackers, with subscriber-level access and above, to modify the val...

4.3CVSS0.0028EPSS
Exploits0References2
CVE
CVE
added 2024/06/08 5:44 a.m.64 views

CVE-2024-4661

CVE-2024-4661 (WP Reset) – WordPress Plugin . Vulnerability due to missing capability check in the save_ajax function across versions up to 2.02, enabling authenticated users with subscriber-level access and above to modify the value of the “License Key” field under the Activate Pro License setti...

4.3CVSS4.6AI score0.0028EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2023/02/11 1:23 a.m.5 views

CVE-2022-46754

Wyse Management Suite 3.8 and below contain an improper access control vulnerability. A authenticated malicious admin user might access certain pro license features for which this admin is not authorized in order to configure user controlled external entities...

6.5CVSS5.8AI score0.00512EPSS
Exploits0References1
NVD
NVD
added 2023/02/11 1:23 a.m.30 views

CVE-2022-46754

Wyse Management Suite 3.8 and below contain an improper access control vulnerability. A authenticated malicious admin user might access certain pro license features for which this admin is not authorized in order to configure user controlled external entities...

8.7CVSS8.6AI score0.00512EPSS
Exploits0References1
Prion
Prion
added 2023/02/11 1:23 a.m.18 views

Improper access control

Wyse Management Suite 3.8 and below contain an improper access control vulnerability. A authenticated malicious admin user might access certain pro license features for which this admin is not authorized in order to configure user controlled external entities...

4.7CVSS6.4AI score0.00512EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/02/10 9:25 p.m.35 views

CVE-2022-46754

Wyse Management Suite 3.8 and below contain an improper access control vulnerability. A authenticated malicious admin user might access certain pro license features for which this admin is not authorized in order to configure user controlled external entities...

8.7CVSS8.8AI score0.00512EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/02/10 9:25 p.m.7 views

CVE-2022-46754

Wyse Management Suite 3.8 and below contain an improper access control vulnerability. A authenticated malicious admin user might access certain pro license features for which this admin is not authorized in order to configure user controlled external entities...

8.7CVSS8.7AI score0.00512EPSS
Exploits0References1
The Hacker News
The Hacker News
added 2014/03/28 5:10 a.m.10 views

Hacker's Dome - Gamification the Information Security

When it comes to Information Security, there's a great way to learn, train and keep sharp your skills. This can be done using gamification mechanics to speed up the learning curve and improve retention rate. Capture The Flag competitions use gamification mechanics and represent one of the best wa...

6.6AI score
Exploits0
Rows per page
Query Builder