Lucene search
K

5 matches found

Cvelist
Cvelist
added 10 hours ago7 views

CVE-2026-11387 SMS Alert <= 3.9.5 - Unauthenticated Privilege Escalation via Arbitrary Password Reset

The SMS Alert – SMS & OTP for WooCommerce, Order Notifications & Abandoned Cart Recovery plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 3.9.5. This is due to the plugin not properly validating a user's identity prior to updati...

9.8CVSS
Exploits0References8
Patchstack
Patchstack
added 2025/12/05 4:42 p.m.6 views

WordPress SMS Alert Order Notifications plugin <= 3.8.8 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by benzdeus in WordPress Plugin SMS Alert Order Notifications versions = 3.8.8...

5.3CVSS6.9AI score0.00183EPSS
Exploits0Affected Software1
Cvelist
Cvelist
added 2024/11/19 4:32 p.m.36 views

CVE-2024-51637 WordPress Admin SMS Alert plugin <= 1.1.0 - CSRF to Stored Cross Site Scripting (XSS) vulnerability

Cross-Site Request Forgery CSRF vulnerability in sroyalty Admin SMS Alert admin-sms-alert allows Stored XSS.This issue affects Admin SMS Alert: from n/a through = 1.1.0...

7.1CVSS0.00194EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/11/19 4:32 p.m.8 views

CVE-2024-51637 WordPress Admin SMS Alert plugin <= 1.1.0 - CSRF to Stored Cross Site Scripting (XSS) vulnerability

Cross-Site Request Forgery CSRF vulnerability in sroyalty Admin SMS Alert admin-sms-alert allows Stored XSS.This issue affects Admin SMS Alert: from n/a through = 1.1.0...

7.1CVSS5.9AI score0.00194EPSS
Exploits0References1
CNVD
CNVD
added 2021/09/08 12:0 a.m.15 views

WordPress Cross-Site Scripting Vulnerability (CNVD-2021-70735)

WordPress is a set of blogging platforms developed by the WordPress Wordpress Foundation using the PHP language. A cross-site scripting vulnerability exists in the WordPress plugin, which stems from a cross-site scripting XSS vulnerability in the settings page of the SMS Alert Order Notifications...

6.1CVSS1.5AI score0.00827EPSS
Exploits2References1
Rows per page
Query Builder