Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

RedhatCVE
RedhatCVEadded 2026/01/09 10:45 a.m.6 views

CVE-2022-0164

The Coming soon and Maintenance mode WordPress plugin before 3.5.3 does not have authorisation and CSRF checks in its comingsoonsendmail AJAX action, allowing any authenticated users, with a role as low as subscriber to send arbitrary emails to all subscribed users...

4.3CVSS6.7AI score0.00087EPSS
Exploits2References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2023-1638

Malicious code in bioql PyPI...

4.3CVSS4.9AI score0.00306EPSS
Exploits0References2
CVE
CVEadded 2025/06/26 2:6 a.m.17 views

CVE-2025-3863

CVE-2025-3863 affects the WordPress plugin Post Carousel Slider for Elementor . The vulnerability is due to a missing capability check in the function process_wbelps_promo_form() across versions up to 1.6.0. This enables authenticated attackers with Subscriber-level access and above to trigger th...

4.3CVSS6.3AI score0.00205EPSS
Exploits0References4Affected Software1
RedhatCVE
RedhatCVEadded 2025/05/23 10:15 a.m.5 views

CVE-2024-3243

The Customer Reviews for WooCommerce plugin for WordPress is vulnerable to unauthorized email sending due to a missing capability check on the sendtestemail function in all versions up to, and including, 5.46.0. This makes it possible for authenticated attackers, with subscriber-level access and...

4.3CVSS6.6AI score0.00132EPSS
Exploits0References1
CVE
CVEadded 2025/02/01 7:21 a.m.51 views

CVE-2024-13371

CVE-2024-13371 affects the WordPress plugin WP Job Portal (versions up to and including 2.2.6). The root cause is a missing capability check in the function sendEmailToJobSeeker() , allowing unauthenticated attackers to send arbitrary emails with arbitrary content from the site’s mail server. The...

5.3CVSS5.2AI score0.00194EPSS
Exploits0References3Affected Software1
NVD
NVDadded 2024/07/27 8:15 a.m.14 views

CVE-2024-5969

The AIomatic - Automatic AI Content Writer for WordPress is vulnerable to arbitrary email sending vulnerability in versions up to, and including, 2.0.5. This is due to insufficient limitations on the email recipient and the content in the 'aiomaticsendemail' function which are reachable via AJAX...

5.8CVSS0.00483EPSS
Exploits0References2
CVE
CVEadded 2024/07/27 7:33 a.m.43 views

CVE-2024-5969

The CVE-2024-5969 entry concerns the WordPress plugin AIomatic - Automatic AI Content Writer, affected versions up to and including 2.0.5. Multiple connected sources describe an unauthenticated arbitrary email-sending vulnerability in the aiomatic_send_email function, reachable via AJAX, allowing...

5.8CVSS5.7AI score0.00483EPSS
Exploits0References2Affected Software1
Patchstack
Patchstackadded 2024/05/07 12:32 p.m.1 views

WordPress Shared Counts <= 1.4.1 - Missing Authorization to Arbitrary Email Sending vulnerability

Missing Authorization to Arbitrary Email Sending vulnerability discovered by ? in WordPress Plugin Shared Counts versions = 1.4.1...

7AI score
Exploits0References2Affected Software1
Patchstack
Patchstackadded 2024/04/05 5:25 a.m.3 views

WordPress Bricksforge plugin <= 2.0.17 - Unauthenticated Arbitrary Email Sending vulnerability

Unauthenticated Arbitrary Email Sending vulnerability discovered by Dave Jong Patchstack in WordPress Plugin Bricksforge versions = 2.0.17...

5.3CVSS7AI score0.00166EPSS
Exploits0Affected Software1
securityvulns
securityvulnsadded 2003/10/28 12:0 a.m.29 views

Yahoo! Messenger buffer overflow

Buffer overflow in YMSGR:sendfile? URL on large number of ''...

2.9AI score
Exploits0References1
Rows per page
Query Builder