Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

Patchstack
Patchstackadded 2026/04/16 3:12 a.m.2 views

WordPress MyRewards plugin <= 5.7.3 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Muhan Luo in WordPress Plugin MyRewards versions = 5.7.3...

4.3CVSS5.8AI score0.00032EPSS
Exploits0Affected Software1
Packet Storm
Packet Stormadded 2026/04/10 12:0 a.m.91 views

📄 MyRewards 5.6.0 Missing Authorization

MyRewards – Loyalty Points and Rewards for WooCommerce versions 5.6.0 and below suffer from a missing authorization vulnerability that allows for privilege escalation. CVE-2025-15260: Missing Authorization / Broken Access Control in Plugin - MyRewards – Loyalty Points and Rewards for WooCommerce...

6.5CVSS5.8AI score0.00012EPSS
Exploits2
GithubExploit
GithubExploitadded 2026/04/09 4:42 p.m.75 views

Exploit for CVE-2025-15260

CVE-2025-15260: Missing Authorization / Broken Access Control...

6.5CVSS5.9AI score0.00012EPSS
Exploits2
EUVD
EUVDadded 2026/02/04 8:25 a.m.2 views

EUVD-2025-206797

The MyRewards – Loyalty Points and Rewards for WooCommerce plugin for WordPress is vulnerable to missing authorization in all versions up to, and including, 5.6.0. This is due to the plugin not properly verifying that a user is authorized to perform an action in the 'ajax' function. This makes it...

6.5CVSS5.5AI score0.00012EPSS
Exploits2References2
Positive Technologies
Positive Technologiesadded 2026/02/04 12:0 a.m.3 views

PT-2026-5883

Name of the Vulnerable Software and Affected Versions MyRewards – Loyalty Points and Rewards for WooCommerce plugin versions prior to 5.6.1 Description The MyRewards – Loyalty Points and Rewards for WooCommerce plugin for WordPress does not properly verify user authorization when performing actio...

6.5CVSS5.6AI score0.00012EPSS
Exploits2References6
CVE
CVEadded 2025/11/13 9:24 a.m.7 views

CVE-2025-64267

CVE-2025-64267 affects the WordPress plugin “WooCommerce Ultimate Points And Rewards” (versions

4.3CVSS6.5AI score0.00037EPSS
Exploits0References1
Cvelist
Cvelistadded 2025/11/13 9:24 a.m.8 views

CVE-2025-64267 WordPress WooCommerce Ultimate Points And Rewards plugin <= 2.10.2 - Sensitive Data Exposure vulnerability

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in WPSwings WooCommerce Ultimate Points And Rewards woocommerce-ultimate-points-and-rewards allows Retrieve Embedded Sensitive Data.This issue affects WooCommerce Ultimate Points And Rewards: from n/a through...

4.3CVSS0.00037EPSS
Exploits0References1
CNNVD
CNNVDadded 2025/11/13 12:0 a.m.1 views

WordPress plugin WooCommerce Ultimate Points And Rewards 安全漏洞

WordPress WooCommerce Ultimate Points And Rewards plugin is a points and rewards management tool designed for WooCommerce, which awards points through customer behavior e.g., purchases, registrations, comments, etc. and supports redemption of discounts, coupons or free products, aiming to increas...

4.3CVSS5.9AI score0.00037EPSS
Exploits0References1
Patchstack
Patchstackadded 2025/11/09 9:35 a.m.4 views

WordPress WooCommerce Ultimate Points And Rewards plugin <= 2.10.2 - Sensitive Data Exposure vulnerability

Sensitive Data Exposure vulnerability discovered by Denver Jackson in WordPress Plugin WooCommerce Ultimate Points And Rewards versions = 2.10.2...

4.3CVSS7AI score0.00037EPSS
Exploits0Affected Software1
Rows per page
Query Builder