Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 4:51 p.m.14 views

CVE-2020-8594

The Ninja Forms plugin 3.4.22 for WordPress has Multiple Stored XSS vulnerabilities via ninjaformsrecaptchasitekey, ninjaformsrecaptchasecretkey, ninjaformsrecaptchalang, or ninjaformsdateformat...

5.4CVSS6.2AI score0.01195EPSS
Exploits1References1
OSV
OSV
added 2025/02/25 10:15 a.m.4 views

CVE-2024-13693

The Enfold theme for WordPress is vulnerable to unauthorized access of data due to a missing capability check in avia-export-class.php in all versions up to, and including, 6.0.9. This makes it possible for unauthenticated attackers to export all avia settings which may included sensitive...

5.3CVSS5.8AI score0.00307EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/02/25 12:0 a.m.5 views

PT-2025-7820 · WordPress · Enfold

Name of the Vulnerable Software and Affected Versions: Enfold theme for WordPress versions up to, and including, 6.0.9 Description: The issue allows unauthorized access to data due to a missing capability check in the avia-export-class.php file. This enables unauthenticated attackers to export al...

5.3CVSS9.4AI score0.00307EPSS
Exploits0References9
OSV
OSV
added 2024/02/05 10:15 p.m.3 views

CVE-2023-6959

The Getwid – Gutenberg Blocks plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the recaptchaapikeymanage function in all versions up to, and including, 2.0.3. This makes it possible for authenticated attackers, with subscriber-level acce...

4.3CVSS5.8AI score0.00428EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/02/05 9:21 p.m.9 views

CVE-2023-6959 Getwid – Gutenberg Blocks <= 2.0.4 - Missing Authorization to Recaptcha API Key Modification

The Getwid – Gutenberg Blocks plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the recaptchaapikeymanage function in all versions up to, and including, 2.0.3. This makes it possible for authenticated attackers, with subscriber-level acce...

4.3CVSS6.6AI score0.00428EPSS
Exploits0References2
Rows per page
Query Builder