Lucene search
K

226 matches found

Patchstack
Patchstack
added 2026/01/05 9:52 p.m.7 views

WordPress ilGhera Support System for WooCommerce plugin <= 1.2.6 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Ticket Deletion vulnerability

Missing Authorization to Authenticated Subscriber+ Arbitrary Ticket Deletion vulnerability discovered by Md. Moniruzzaman Prodhan NomanProdhan - Knight Squad in WordPress Plugin Woocommerce Support System versions = 1.2.6...

5.3CVSS6.9AI score0.00236EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/01/02 8:15 a.m.10 views

WordPress VidMov theme <= 2.3.8 - Path Traversal vulnerability

Software : VidMov Type : Theme Vulnerable versions : = 2.3.8 Fixed in : 2.3.9 OWASP Top 10 : A1: Broken Access Control Classification : Path Traversal CVE ID : CVE-2025-67914 Patchstack priority : High CVSS severity : 7.7 Required privilege : Subscriber Developer : Claim ownership PSID :...

7.2AI score0.00289EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/31 5:18 p.m.14 views

WordPress Worker for Elementor plugin <= 1.0.10 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Phat RiO - BlueRock in WordPress Plugin Worker for Elementor versions = 1.0.10...

5.4CVSS6.8AI score0.00173EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/31 5:17 p.m.16 views

WordPress Worker for WPBakery plugin <= 1.1.1 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Phat RiO - BlueRock in WordPress Plugin Worker for WPBakery versions = 1.1.1...

5.4CVSS6.8AI score0.00173EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/31 5:15 p.m.13 views

WordPress Criptopayer for Elementor plugin <= 1.0.1 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Phat RiO - BlueRock in WordPress Plugin Criptopayer for Elementor versions = 1.0.1...

5.4CVSS6.8AI score0.00173EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/31 5:15 p.m.16 views

WordPress Countdowner for Elementor plugin <= 1.0.4 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Phat RiO - BlueRock in WordPress Plugin Countdowner for Elementor versions = 1.0.4...

5.4CVSS6.8AI score0.00173EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/31 4:47 p.m.8 views

WordPress Questionar for Elementor plugin <= 1.1.7 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Phat RiO - BlueRock in WordPress Plugin Questionar for Elementor versions = 1.1.7...

5.4CVSS6.8AI score0.00221EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/31 4:21 p.m.6 views

WordPress WP Custom Admin Interface plugin <= 7.40 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Jitlada in WordPress Plugin WP Custom Admin Interface versions = 7.40...

4.3CVSS6.8AI score0.00215EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/31 4:19 p.m.8 views

WordPress Order Cancellation & Returns for WooCommerce plugin <= 1.1.10 - Insecure Direct Object References (IDOR) vulnerability

Insecure Direct Object References IDOR vulnerability discovered by powpy in WordPress Plugin Order Cancellation & Returns for WooCommerce versions = 1.1.11...

4.3CVSS5.5AI score0.00221EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/31 4:19 p.m.7 views

WordPress Hide Plugins plugin <= 1.0.4 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Nabil Irawan in WordPress Plugin Hide Plugins versions = 1.0.4...

4.3CVSS6.8AI score0.00198EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/31 3:56 p.m.7 views

WordPress Vireo theme <= 1.0.24 - Broken Access Control vulnerability

Software : Vireo Type : Theme Vulnerable versions : = 1.0.24 OWASP Top 10 : A1: Broken Access Control Classification : Broken Access Control CVE ID : CVE-2025-62751 Patchstack priority : Low CVSS severity : 4.3 Required privilege : Subscriber Developer : Claim ownership PSID : 110abd56a0bb Credit...

4.3CVSS6.4AI score0.00181EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/31 3:30 p.m.6 views

WordPress History Timeline plugin <= 1.0.6 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Legion Hunter in WordPress Plugin History Timeline versions = 1.0.6...

4.3CVSS6.7AI score0.00155EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/31 2:14 p.m.6 views

WordPress Add Custom Codes plugin <= 4.80 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Nabil Irawan in WordPress Plugin Add Custom Codes versions = 4.80...

5.4CVSS6.8AI score0.0017EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/31 2:14 p.m.11 views

WordPress Serial Codes Generator and Validator with WooCommerce Support plugin <= 2.8.2 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Jitlada in WordPress Plugin Serial Codes Generator and Validator with WooCommerce Support versions = 2.8.2...

5.4CVSS6.8AI score0.0017EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/29 12:46 p.m.8 views

WordPress Plugin Organizer plugin < 10.2.4 - Subscriber+ SQLi vulnerability

Subscriber+ SQLi vulnerability discovered by Alex Tselevich nos3curity in WordPress Plugin Plugin Organizer versions 10.2.4...

8.6CVSS6.7AI score0.00239EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2025/12/28 5:29 p.m.5 views

WordPress HR Management Lite plugin <= 3.6 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by benzdeus in WordPress Plugin HR Management Lite versions = 3.6...

5.4CVSS5.2AI score0.00175EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/27 3:22 p.m.4 views

WordPress Shortcodes and extra features for Phlox theme plugin <= 2.17.15 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Legion Hunter in WordPress Plugin Shortcodes and extra features for Phlox theme versions = 2.17.15...

4.3CVSS5.9AI score0.002EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/27 9:57 a.m.7 views

WordPress Event Organiser plugin <= 3.12.8 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Doan Dinh Van in WordPress Plugin Event Organiser versions = 3.12.8...

4.3CVSS6.7AI score0.00206EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/25 11:38 a.m.5 views

WordPress Plugin Optimizer plugin <= 1.3.7 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Legion Hunter in WordPress Plugin Plugin Optimizer versions = 1.3.7...

7.1CVSS6.7AI score0.00187EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/23 12:12 a.m.9 views

WordPress Beaver Builder – WordPress Page Builder plugin <= 2.9.4.1 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Post Update vulnerability

Missing Authorization to Authenticated Subscriber+ Arbitrary Post Update vulnerability discovered by Athiwat Tiprasaharn Jitlada in WordPress Plugin Beaver Builder versions = 2.9.4.1...

8.1CVSS6.7AI score0.00351EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder