Lucene search
K

311 matches found

Cvelist
Cvelist
added 2025/12/05 7:26 a.m.26 views

CVE-2025-13684 ARK Related Posts <= 2.19 - Cross-Site Request Forgery to Settings Update

The ARK Related Posts plugin for WordPress is vulnerable to Cross-Site Request Forgery in version 2.19. This is due to missing or incorrect nonce validation on the arkrpoptionspage function. This makes it possible for unauthenticated attackers to modify the plugin's configuration settings via a...

4.3CVSS0.00133EPSS
Exploits0References4
EUVD
EUVD
added 2025/12/05 7:26 a.m.5 views

EUVD-2025-201393

The ARK Related Posts plugin for WordPress is vulnerable to Cross-Site Request Forgery in version 2.19. This is due to missing or incorrect nonce validation on the arkrpoptionspage function. This makes it possible for unauthenticated attackers to modify the plugin's configuration settings via a...

4.3CVSS5.2AI score0.00133EPSS
Exploits0References4
CVE
CVE
added 2025/12/05 7:26 a.m.11 views

CVE-2025-13684

CVE-2025-13684 concerns the ARK Related Posts WordPress plugin (version

4.3CVSS5.3AI score0.00133EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/12/05 12:0 a.m.6 views

PT-2025-49232

The ARK Related Posts plugin for WordPress is vulnerable to Cross-Site Request Forgery in version 2.19. This is due to missing or incorrect nonce validation on the ark rp options page function. This makes it possible for unauthenticated attackers to modify the plugin's configuration settings via ...

4.3CVSS5.6AI score0.00133EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/12/05 12:0 a.m.6 views

WordPress plugin ARK Related Posts 跨站请求伪造漏洞

...

4.3CVSS5.8AI score0.00133EPSS
Exploits0References3
Patchstack
Patchstack
added 2025/12/04 11:26 p.m.7 views

WordPress ARK Related Posts plugin <= 2.19 - Cross-Site Request Forgery to Settings Update vulnerability

Cross-Site Request Forgery to Settings Update vulnerability discovered by Muhammad Nur Ibnu Hubab Ibnu - Pondok Teknologi in WordPress Plugin ARK Related Posts versions = 2.19...

4.3CVSS6.8AI score0.00133EPSS
Exploits0References1Affected Software1
RedhatCVE
RedhatCVE
added 2025/10/19 10:19 a.m.10 views

CVE-2025-11926

The Related Posts Lite plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 1.12 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level permissio...

4.4CVSS5AI score0.00279EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/18 12:30 p.m.8 views

EUVD-2025-34990

The Related Posts Lite plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 1.12 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level permissio...

4.4CVSS4.6AI score0.00279EPSS
Exploits1References5
NVD
NVD
added 2025/10/18 10:15 a.m.11 views

CVE-2025-11926

The Related Posts Lite plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 1.12 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level permissio...

4.4CVSS0.00279EPSS
Exploits1References4
Cvelist
Cvelist
added 2025/10/18 9:25 a.m.20 views

CVE-2025-11926 Related Posts Lite <= 1.12 - Authenticated (Admin+) Stored Cross-Site Scripting

The Related Posts Lite plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 1.12 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level permissio...

4.4CVSS0.00279EPSS
Exploits1References4
CVE
CVE
added 2025/10/18 9:25 a.m.24 views

CVE-2025-11926

CVE-2025-11926 concerns the WordPress plugin Related Posts Lite (versions

4.4CVSS4.7AI score0.00279EPSS
Exploits1References4
Patchstack
Patchstack
added 2025/10/18 1:26 a.m.10 views

WordPress Related Posts Lite plugin <= 1.12 - Authenticated (Admin+) Stored Cross-Site Scripting vulnerability

Authenticated Admin+ Stored Cross-Site Scripting vulnerability discovered by Tst23@1 in WordPress Plugin Related Posts Lite versions = 1.12...

4.4CVSS5.7AI score0.00279EPSS
Exploits1References1Affected Software1
CNNVD
CNNVD
added 2025/10/18 12:0 a.m.11 views

WordPress plugin Related Posts Lite Cross-Site Scripting Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed using the PHP language, with the ability to host personal blog sites on PHP and MySQL based servers.WordPress...

4.4CVSS5.7AI score0.00279EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2014-3874

Malware in sbrugna...

7.5CVSS6.4AI score0.02031EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2019-3529

Malware in sbrugna...

6.1CVSS6.2AI score0.05331EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2015-9201

Malware in sbrugna...

6.1CVSS6.3AI score0.00995EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2013-2649

Malware in sbrugna...

6.8CVSS6.4AI score0.01052EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2013-3194

Malware in sbrugna...

6.8CVSS6.4AI score0.0107EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-3202

Malicious code in bioql PyPI...

7.1CVSS8.7AI score0.00197EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-28058

Malicious code in bioql PyPI...

6.5CVSS7.3AI score0.00209EPSS
Exploits0References1
Rows per page
Query Builder