CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

2 matches found

Cvelist•added 2026/02/20 3:47 p.m.•20 views

CVE-2026-24944 WordPress Subscribe2 plugin <= 10.44 - Broken Access Control vulnerability

Missing Authorization vulnerability in weDevs Subscribe2 subscribe2 allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Subscribe2: from n/a through = 10.44...

6.5CVSS0.00045EPSS

Exploits0References1

OSV•added 2023/06/28 3:15 a.m.•2 views

CVE-2023-3407

The Subscribe2 plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 10.40. This is due to missing or incorrect nonce validation when sending test emails. This makes it possible for unauthenticated attackers to send test emails with custom content to...

4.3CVSS5.7AI score0.00147EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by