Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

81 matches found

Nuclei
Nucleiadded yesterday4 views

RestroPress 3.0.0-3.2.1 - Authentication Bypass

RestroPress Online Food Ordering System WordPress plugin 3.0.0 to 3.1.9.2 contains an authentication bypass caused by exposure of user private tokens and API data via /wp-json/wp/v2/users endpoint, letting unauthenticated attackers forge JWT tokens and authenticate as other users including...

9.8CVSS7.3AI score0.09621EPSS
Exploits5References2
GithubExploit
GithubExploitadded 5 days ago176 views

RestroPress-WordPress-Plugin-Sensitive-API-Key-amp-Token-Exposure-Vulnerability-Exploitation

📌 Overview CVE-2025-9209 is a critical information disclo...

9.8CVSS7.2AI score0.09621EPSS
Exploits5
GithubExploit
GithubExploitadded 5 days ago43 views

Exploit for Improper Input Validation in Microsoft

CVE-2025-9209 – RestroPress Unauthenticated API Key & Token Ex...

9.8CVSS7.3AI score0.92962EPSS
Exploits26
Packet Storm
Packet Stormadded 2026/02/27 12:0 a.m.114 views

📄 WordPress RestroPress Online Food Ordering System 3.1.9.2 Disclosure Scanner

WordPress RestroPress Online Food Ordering System plugin version 3.1.9.2 user metadata exposure scanner. ============================================================================================================================================= | Title : WordPress RestroPress Online Food Orderi...

9.8CVSS5.9AI score0.09621EPSS
Exploits5
RedhatCVE
RedhatCVEadded 2026/01/01 3:32 p.m.3 views

CVE-2025-62129

Missing Authorization vulnerability in Magnigenie RestroPress restropress allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects RestroPress: from n/a through = 3.2.7...

5.3CVSS5.9AI score0.00035EPSS
Exploits0References1
NVD
NVDadded 2025/12/31 4:15 p.m.3 views

CVE-2025-62129

Missing Authorization vulnerability in Magnigenie RestroPress restropress allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects RestroPress: from n/a through = 3.2.7...

5.3CVSS0.00035EPSS
Exploits0References1
CVE
CVEadded 2025/12/31 3:23 p.m.3 views

CVE-2025-62129

CVE-2025-62129 is listed as a Missing Authorization vulnerability affecting RestroPress (WordPress plugin), with affected versions up to 3.2.4.2. The connected Wordfence vulnerability details describe it as an Authenticated Missing Authorization issue tied to RestroPress and indicate that this CV...

5.3CVSS5.9AI score0.00035EPSS
Exploits0References1
EUVD
EUVDadded 2025/12/31 3:23 p.m.2 views

EUVD-2025-206001

Missing Authorization vulnerability in Magnigenie RestroPress allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects RestroPress: from n/a through 3.2.4.2...

5.3CVSS6.5AI score0.00035EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2025/12/31 3:23 p.m.2 views

CVE-2025-62129 WordPress RestroPress plugin <= 3.2.4.2 - Broken Access Control vulnerability

Missing Authorization vulnerability in Magnigenie RestroPress allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects RestroPress: from n/a through 3.2.4.2...

5.3CVSS6.6AI score0.00035EPSS
Exploits0References1
Cvelist
Cvelistadded 2025/12/31 3:23 p.m.25 views

CVE-2025-62129 WordPress RestroPress plugin <= 3.2.7 - Broken Access Control vulnerability

Missing Authorization vulnerability in Magnigenie RestroPress restropress allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects RestroPress: from n/a through = 3.2.7...

5.3CVSS0.00035EPSS
Exploits0References1
Patchstack
Patchstackadded 2025/12/31 3:20 p.m.2 views

WordPress RestroPress plugin <= 3.2.4.2 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by daroo in WordPress Plugin RestroPress versions = 3.2.4.2...

5.3CVSS6.8AI score0.00035EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVEadded 2025/12/31 11:6 a.m.2 views

CVE-2025-69017

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Magnigenie RestroPress restropress allows Stored XSS.This issue affects RestroPress: from n/a through = 3.2.8.6...

6.5CVSS5.7AI score0.00024EPSS
Exploits0References1
CNNVD
CNNVDadded 2025/12/31 12:0 a.m.2 views

WordPress plugin RestroPress 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security...

5.3CVSS6.6AI score0.00035EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2025/12/31 12:0 a.m.3 views

PT-2025-54366

Name of the Vulnerable Software and Affected Versions RestroPress versions through 3.2.4.2 Description An authorization issue exists in Magnigenie RestroPress due to incorrectly configured access control security levels. This allows unauthorized access. Recommendations Update RestroPress to a...

5.3CVSS6.5AI score0.00035EPSS
Exploits0References4
EUVD
EUVDadded 2025/12/30 12:30 p.m.2 views

EUVD-2025-205727

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Magnigenie RestroPress restropress allows Stored XSS.This issue affects RestroPress: from n/a through = 3.2.4.2...

6.5CVSS5.5AI score0.00024EPSS
Exploits0References2
NVD
NVDadded 2025/12/30 11:16 a.m.4 views

CVE-2025-69017

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Magnigenie RestroPress restropress allows Stored XSS.This issue affects RestroPress: from n/a through = 3.2.8.6...

6.5CVSS0.00024EPSS
Exploits0References1
CVE
CVEadded 2025/12/30 10:47 a.m.4 views

CVE-2025-69017

CVE-2025-69017 is a stored XSS vulnerability in RestroPress (WordPress plugin). The Wordfence entry notes RestroPress

6.5CVSS5.7AI score0.00024EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/12/30 10:47 a.m.2 views

CVE-2025-69017 WordPress RestroPress plugin <= 3.2.8.6 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Magnigenie RestroPress restropress allows Stored XSS.This issue affects RestroPress: from n/a through = 3.2.8.6...

6.5CVSS5.7AI score0.00024EPSS
Exploits0References1
Cvelist
Cvelistadded 2025/12/30 10:47 a.m.21 views

CVE-2025-69017 WordPress RestroPress plugin <= 3.2.8.6 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Magnigenie RestroPress restropress allows Stored XSS.This issue affects RestroPress: from n/a through = 3.2.8.6...

6.5CVSS0.00024EPSS
Exploits0References1
CNNVD
CNNVDadded 2025/12/30 12:0 a.m.2 views

WordPress plugin RestroPress 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security...

6.5CVSS5.4AI score0.00024EPSS
Exploits0References1
Rows per page
Query Builder