Lucene search
K

12 matches found

vulnrichment
vulnrichment
added 2026/04/04 11:16 a.m.4 views

CVE-2026-0626 WPFunnels <= 3.7.9 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'wpf_optin_form' Shortcode

The WPFunnels – Easy Funnel Builder To Optimize Buyer Journeys And Get More Leads & Sales plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'wpfoptinform' shortcode in all versions up to, and including, 3.7.9 due to insufficient input sanitization and output escaping of th...

6.4CVSS6.1AI score0.00199EPSS
Exploits0References2
euvd
euvd
added 2026/03/25 6:31 p.m.5 views

EUVD-2026-15851

Missing Authorization vulnerability in wp-configurator WP Configurator Pro wp-configurator-pro allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Configurator Pro: from n/a through = 3.7.9...

5.8AI score0.00219EPSS
Exploits0References2
ptsecurity
ptsecurity
added 2026/03/25 12:0 a.m.5 views

PT-2026-28015

Missing Authorization vulnerability in wp-configurator WP Configurator Pro wp-configurator-pro allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Configurator Pro: from n/a through = 3.7.9...

5.8AI score0.00219EPSS
Exploits0References2
patchstack
patchstack
added 2026/03/23 1:13 p.m.4 views

WordPress WP Configurator Pro plugin <= 3.7.9 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Phat RiO in WordPress Plugin WP Configurator Pro versions = 3.7.9...

7.1CVSS5.8AI score0.00219EPSS
Exploits0Affected Software1
cve
cve
added 2025/05/20 3:21 p.m.57 views

CVE-2025-37902

CVE-2025-37902 entry is rejected/not used and does not represent an active vulnerability.

6.5AI score
Exploits0
circl
circl
added 2025/05/02 7:16 p.m.5 views

CVE-2022-37906

creationtimestamp| type| source ---|---|--- 2025-05-02 19:16:24+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/14575...

8.1CVSS7.9AI score0.00778EPSS
Exploits0References1
osv
osv
added 2024/09/25 3:15 a.m.5 views

CVE-2024-6590

The Spreadsheet Integration – Automate Google Sheets With WordPress, WooCommerce & Most Popular Form Plugins. Also, Display Google sheet as a Table. plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on several functions in all versions up to...

4.3CVSS5.8AI score0.0032EPSS
Exploits0References5
vulnrichment
vulnrichment
added 2023/02/22 9:2 p.m.11 views

CVE-2022-37936

Unauthenticated Java deserialization vulnerability in Serviceguard Manager...

9.5AI score0.00787EPSS
Exploits0References1
cnnvd
cnnvd
added 2022/03/11 12:0 a.m.25 views

Yokogawa Electric 信任管理问题漏洞

Yokogawa Electric is a server of Yokogawa Electric Yokogawa, a Japanese company. A security vulnerability exists in Yokogawa Electric. The following products and versions are affected: CENTUM VP versions R5.01.00 through R5.04.20 and R6.01.00 through R6.08.00, Exaopc versions R3.72.00 through...

9.8CVSS8.3AI score0.00981EPSS
Exploits0References5
cnnvd
cnnvd
added 2020/12/03 12:0 a.m.8 views

Saibo Cyber Game Accelerator Security Vulnerability

Saibo Cyber Game Accelerator is a software program from China-based Saibo that provides users with secure and fast connections to online game servers. A security vulnerability exists in Saibo Cyber Game Accelerator version 3.7.9, which stems from a local privilege escalation vulnerability. The...

7.8CVSS7.1AI score0.00307EPSS
Exploits0References3
cnvd
cnvd
added 2018/06/11 12:0 a.m.5 views

Synology DiskStation Manager Command Injection Vulnerability (CNVD-2018-11370)

Synology DiskStation Manager DSM is a set of operating systems for use on networked storage servers NAS from Synology Inc. The operating system can manage information such as data, files, photos, music, etc. EZ-Internet is one of the network configuration tools. A command injection vulnerability...

7.2CVSS8.1AI score0.01937EPSS
Exploits0References1
osv
osv
added 2013/03/01 12:0 a.m.4 views

UBUNTU-CVE-2013-0228

The xeniret function in arch/x86/xen/xen-asm32.S in the Linux kernel before 3.7.9 on 32-bit Xen paravirtops platforms does not properly handle an invalid value in the DS segment register, which allows guest OS users to gain guest OS privileges via a crafted application...

6.2CVSS7AI score0.00394EPSS
Exploits1References17
Rows per page
Query Builder