Lucene search
K

32 matches found

Cvelist
Cvelist
added 2026/06/15 8:18 p.m.26 views

CVE-2026-40779 WordPress Link Library plugin <= 7.8.8 - Arbitrary File Deletion vulnerability

Contributor Arbitrary File Deletion in Link Library = 7.8.8 versions...

7.7CVSS0.00327EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/04/07 11:25 p.m.25 views

CVE-2026-2263 Hustle – Email Marketing, Lead Generation, Optins, Popups <= 7.8.10.2 - Missing Authorization to Unauthenticated Conversion Tracking Data Manipulation

The Hustle – Email Marketing, Lead Generation, Optins, Popups plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'hustlemoduleconverted' AJAX action in all versions up to, and including, 7.8.10.2. This makes it possible for...

5.3CVSS0.00375EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2026/03/11 12:0 a.m.2 views

openSUSE Security Advisory (SUSE-SU-2026:0858-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.7CVSS5.8AI score0.00487EPSS
Exploits0References10
EUVD
EUVD
added 2026/02/04 8:52 p.m.4 views

EUVD-2024-55395

IBM Db2 Big SQL on Cloud Pak for Data versions 7.6 on CP4D 4.8, 7.7 on CP4D 5.0, and 7.8 on CP4D 5.1 do not properly limit the allocation of system resources. An authenticated user with internal knowledge of the environment could exploit this weakness to cause a denial of service...

5.3CVSS5.7AI score0.00293EPSS
Exploits0References1
CVE
CVE
added 2026/01/13 10:51 p.m.13 views

CVE-2021-47749

YouPHPTube

8.7CVSS6.5AI score0.0163EPSS
Exploits1References3Affected Software1
Positive Technologies
Positive Technologies
added 2026/01/13 12:0 a.m.5 views

PT-2026-2358

Name of the Vulnerable Software and Affected Versions YouPHPTube versions prior to 7.9 Description The software contains a local file inclusion issue that allows unauthenticated attackers to access arbitrary files. This is possible by manipulating the lang parameter in GET requests. The path...

8.7CVSS6.6AI score0.0163EPSS
Exploits1References5
Patchstack
Patchstack
added 2025/11/20 1:25 a.m.6 views

WordPress Gallery with thumbnail slider plugin <= 7.8 - Authenticated (Contributor+) DOM-Based Stored Cross-Site Scripting vulnerability

Authenticated Contributor+ DOM-Based Stored Cross-Site Scripting vulnerability discovered by Webbernaut in WordPress Plugin Gallery with thumbnail slider versions = 7.8...

6.4CVSS5.7AI score0.00213EPSS
Exploits0References1Affected Software1
OpenVAS
OpenVAS
added 2025/11/10 12:0 a.m.3 views

openSUSE Security Advisory (SUSE-SU-2025:3965-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.8AI score0.00633EPSS
Exploits0References7
OpenVAS
OpenVAS
added 2025/10/31 12:0 a.m.3 views

openSUSE Security Advisory (SUSE-SU-2025:3859-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.8AI score0.00633EPSS
Exploits0References7
OpenVAS
OpenVAS
added 2025/10/30 12:0 a.m.5 views

Fedora: Security Advisory (FEDORA-2025-92566203fd)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.6CVSS6.8AI score0.1096EPSS
Exploits1References8
OpenVAS
OpenVAS
added 2025/10/28 12:0 a.m.5 views

Fedora: Security Advisory (FEDORA-2025-4f95f160be)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.8AI score0.00685EPSS
Exploits2References7
CVE
CVE
added 2025/10/22 2:32 p.m.11 views

CVE-2025-62005

CVE-2025-62005 is a CSRF vulnerability in WordPress plugin SUMO Memberships for WooCommerce (FantasticPlugins) affecting all versions before 7.8.0. Exploitation could enable a CSRF attack against authenticated users, with the NVD/Wordfence data listing a CVSS v3.1 base score of 7.1 (High) and an ...

7.1CVSS6.5AI score0.00123EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/21 9:42 p.m.7 views

CVE-2005-3281

Directory traversal vulnerability in NukeFixes 3.1 for PHP-Nuke 7.8 allows remote attackers to include arbitrary files via the file parameter...

5CVSS7.2AI score0.01109EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/01/02 12:0 a.m.4 views

WordPress plugin WP Travel 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

7.5CVSS8.7AI score0.00412EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/09/13 12:0 a.m.3 views

Eaton Foreseer EPMS 安全漏洞

Eaton Foreseer EPMS is a highly customizable web-based software platform from Eaton Corporation. A security vulnerability exists in Eaton Foreseer EPMS prior to version 7.8.600, which arises from an input field that does not check the length and bounds of an input value, which could result in...

6.5CVSS6.7AI score0.00268EPSS
Exploits0References3
Patchstack
Patchstack
added 2024/06/24 10:46 a.m.7 views

WordPress SEOPress plugin < 7.8 - Contributor+ Stored XSS vulnerability

Contributor+ Stored XSS vulnerability discovered by Dmirtii Ignatyev in WordPress Plugin SEOPress versions 7.8...

5CVSS6.1AI score0.00337EPSS
Exploits2References1Affected Software1
Positive Technologies
Positive Technologies
added 2024/06/24 12:0 a.m.4 views

PT-2024-33319 · WordPress · Seopress

Name of the Vulnerable Software and Affected Versions: SEOPress WordPress plugin versions prior to 7.8 Description: The issue concerns a lack of validation and escaping in one of the Post settings of the SEOPress WordPress plugin. This could allow users with a contributor or higher role to perfor...

6.1CVSS6.7AI score0.00329EPSS
Exploits2References4
CNNVD
CNNVD
added 2024/06/24 12:0 a.m.5 views

WordPress plugin SEOPress security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

6.1CVSS6.7AI score0.00329EPSS
Exploits2References3
Positive Technologies
Positive Technologies
added 2024/06/24 12:0 a.m.6 views

PT-2024-33318 · WordPress · Seopress

Name of the Vulnerable Software and Affected Versions: SEOPress WordPress plugin versions prior to 7.8 Description: The issue concerns the SEOPress WordPress plugin, where certain Post settings are not properly sanitized and escaped, potentially allowing high-privilege users, such as contributors...

5CVSS6AI score0.00337EPSS
Exploits2References4
CNNVD
CNNVD
added 2024/06/24 12:0 a.m.5 views

WordPress plugin SEOPress security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

5CVSS6.7AI score0.00337EPSS
Exploits2References3
Rows per page
Query Builder