Lucene search
+L

1352 matches found

osv
osv
added 2023/10/28 12:15 p.m.5 views

CVE-2023-5425

The Post Meta Data Manager plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the pmdmwpchangeusermeta and pmdmwpchangepostmeta functions in versions up to, and including, 1.2.0. This makes it possible for authenticated attackers, with...

8.8CVSS5.8AI score0.00536EPSS
Exploits0References2
osv
osv
added 2023/10/20 8:15 a.m.6 views

CVE-2023-4796

The Booster for WooCommerce for WordPress is vulnerable to Information Disclosure via the 'wcjwpoption' shortcode in versions up to, and including, 7.1.0 due to insufficient controls on the information retrievable via the shortcode. This makes it possible for authenticated attackers, with...

4.3CVSS7.3AI score0.00585EPSS
Exploits1References3
osv
osv
added 2023/10/20 8:15 a.m.6 views

CVE-2021-4334

The Fancy Product Designer plugin for WordPress is vulnerable to unauthorized modification of site options due to a missing capability check on the fpdupdateoptions function in versions up to, and including, 4.6.9. This makes it possible for authenticated attackers with subscriber-level permissio...

8.8CVSS5.6AI score0.00673EPSS
Exploits0References2
nvd
nvd
added 2023/10/20 8:15 a.m.20 views

CVE-2022-3622

The Blog2Social plugin for WordPress is vulnerable to authorization bypass due to missing capability checks in versions up to, and including, 6.9.11. This makes it possible for authenticated attackers, with subscriber-level permissions and above, to change some plugin settings intended to be...

4.3CVSS4.5AI score0.00595EPSS
Exploits2References4
prion
prion
added 2023/10/20 8:15 a.m.32 views

Sql injection

The Horizontal scrolling announcement plugin for WordPress is vulnerable to SQL Injection via the plugin's horizontal-scrolling shortcode in versions up to, and including, 9.2 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query...

6.5CVSS8.6AI score0.00725EPSS
Exploits1References2Affected Software1
cvelist
cvelist
added 2023/10/20 7:29 a.m.27 views

CVE-2022-3622 Blog2Social <= 6.9.11 - Missing Authorization to Authenticated (Subscriber+) Settings Update

The Blog2Social plugin for WordPress is vulnerable to authorization bypass due to missing capability checks in versions up to, and including, 6.9.11. This makes it possible for authenticated attackers, with subscriber-level permissions and above, to change some plugin settings intended to be...

4.1CVSS4.8AI score0.00595EPSS
Exploits2References4
nvd
nvd
added 2023/10/20 7:15 a.m.27 views

CVE-2021-4335

The Fancy Product Designer plugin for WordPress is vulnerable to unauthorized access to data and modification of plugin settings due to a missing capability check on multiple AJAX functions in versions up to, and including, 4.6.9. This makes it possible for authenticated attackers with...

6.3CVSS6AI score0.00401EPSS
Exploits0References2
prion
prion
added 2023/10/20 7:15 a.m.19 views

Information disclosure

The Fancy Product Designer plugin for WordPress is vulnerable to unauthorized access to data and modification of plugin settings due to a missing capability check on multiple AJAX functions in versions up to, and including, 4.6.9. This makes it possible for authenticated attackers with...

6.5CVSS6AI score0.00401EPSS
Exploits0References2Affected Software1
cvelist
cvelist
added 2023/10/20 6:35 a.m.40 views

CVE-2021-4335 Fancy Product Designer <= 4.6.9 - Insufficient Authorization on Mulitple AJAX Actions

The Fancy Product Designer plugin for WordPress is vulnerable to unauthorized access to data and modification of plugin settings due to a missing capability check on multiple AJAX functions in versions up to, and including, 4.6.9. This makes it possible for authenticated attackers with...

6.3CVSS6.2AI score0.00401EPSS
Exploits0References2
cvelist
cvelist
added 2023/10/20 6:35 a.m.26 views

CVE-2020-36698 Security & Malware scan by CleanTalk <= 2.50 - Missing Authorization

The Security & Malware scan by CleanTalk plugin for WordPress is vulnerable to unauthorized user interaction in versions up to, and including, 2.50. This is due to missing capability checks on several AJAX actions and nonce disclosure in the source page of the administrative dashboard. This makes...

8.8CVSS8.4AI score0.00964EPSS
Exploits1References3
osv
osv
added 2023/10/19 6:15 a.m.4 views

CVE-2023-5241

The AI ChatBot for WordPress is vulnerable to Directory Traversal in versions up to, and including, 4.8.9 as well as 4.9.2 via the qcldopenaiuploadpagetrainingfile function. This allows subscriber-level attackers to append "?php" to any existing file on the server resulting in potential DoS when...

8.1CVSS7.3AI score0.02066EPSS
Exploits2References4
ptsecurity
ptsecurity
added 2023/09/29 12:0 a.m.6 views

PT-2023-31908 · WordPress · Openhook

Name of the Vulnerable Software and Affected Versions: OpenHook plugin for WordPress versions up to, and including, 4.3.0 Description: The issue allows authenticated attackers with subscriber-level permissions or above to execute code on the server via the php shortcode. This requires the php...

9.9CVSS8.7AI score0.01429EPSS
Exploits0References9
vulnrichment
vulnrichment
added 2023/09/16 1:52 a.m.8 views

CVE-2023-4994 Allow PHP in Posts and Pages <= 3.0.4 - Authenticated (Subscriber+) Remote Code Execution via Shortcode

The Allow PHP in Posts and Pages plugin for WordPress is vulnerable to Remote Code Execution in versions up to, and including, 3.0.4 via the 'php' shortcode. This allows authenticated attackers with subscriber-level permissions or above, to execute code on the server...

9.9CVSS7.1AI score0.00748EPSS
Exploits0References2
cvelist
cvelist
added 2023/09/16 1:52 a.m.40 views

CVE-2023-4994 Allow PHP in Posts and Pages <= 3.0.4 - Authenticated (Subscriber+) Remote Code Execution via Shortcode

The Allow PHP in Posts and Pages plugin for WordPress is vulnerable to Remote Code Execution in versions up to, and including, 3.0.4 via the 'php' shortcode. This allows authenticated attackers with subscriber-level permissions or above, to execute code on the server...

9.9CVSS9.9AI score0.00748EPSS
Exploits0References2
wpvulndb
wpvulndb
added 2023/09/14 12:0 a.m.11 views

Simplr Registration Form Plus+ <= 2.4.5 - Subscriber+ Arbitrary User Password Change via IDOR

Description The plugin is vulnerable to Insecure Direct Object References in versions up to, and including, 2.4.5. This is due to the plugin providing user-controlled access to objects, letting a user bypass authorization and access system resources. This makes it possible for authenticated...

8.8CVSS6.2AI score0.00615EPSS
Exploits0
prion
prion
added 2023/09/13 3:15 a.m.20 views

Design/Logic Flaw

The Leyka plugin for WordPress is vulnerable to Sensitive Information Exposure in versions up to, and including, 3.30.3 via the 'leykaajaxgetenvandoptions' function. This can allow authenticated attackers with subscriber-level permissions or above to extract sensitive data including Sberbank API...

4CVSS6.5AI score0.0059EPSS
Exploits0References2Affected Software1
nvd
nvd
added 2023/08/31 6:15 a.m.13 views

CVE-2023-3999

The Waiting: One-click countdowns plugin for WordPress is vulnerable to authorization bypass due to missing capability checks on its AJAX calls in versions up to, and including, 0.6.2. This makes it possible for authenticated attackers, with subscriber-level permissions and above, to create and...

6.3CVSS6.1AI score0.00336EPSS
Exploits0References2
nvd
nvd
added 2023/08/31 6:15 a.m.20 views

CVE-2023-2354

The CHP Ads Block Detector plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings reachable though an AJAX action in versions up to, and including, 3.9.4 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers,...

5.4CVSS4.8AI score0.00476EPSS
Exploits0References4
osv
osv
added 2023/08/31 6:15 a.m.5 views

CVE-2023-0689

The Metform Elementor Contact Form Builder for WordPress is vulnerable to Information Disclosure via the 'mffirstname' shortcode in versions up to, and including, 3.3.1. This allows authenticated attackers, with subscriber-level capabilities or above to obtain sensitive information about arbitrar...

4.3CVSS7.4AI score0.0046EPSS
Exploits0References3
attackerkb
attackerkb
added 2023/08/31 6:15 a.m.5 views

CVE-2023-2174

The BadgeOS plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the deletebadgeoslogentries function in versions up to, and including, 3.7.1.6. This makes it possible for authenticated attackers, with subscriber-level permissions and above,...

4.3CVSS5.9AI score0.00389EPSS
Exploits0References3
Rows per page
Query Builder