12 matches found
CVE-2026-0626 WPFunnels <= 3.7.9 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'wpf_optin_form' Shortcode
The WPFunnels – Easy Funnel Builder To Optimize Buyer Journeys And Get More Leads & Sales plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'wpfoptinform' shortcode in all versions up to, and including, 3.7.9 due to insufficient input sanitization and output escaping of th...
EUVD-2026-15851
Missing Authorization vulnerability in wp-configurator WP Configurator Pro wp-configurator-pro allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Configurator Pro: from n/a through = 3.7.9...
PT-2026-28015
Missing Authorization vulnerability in wp-configurator WP Configurator Pro wp-configurator-pro allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Configurator Pro: from n/a through = 3.7.9...
WordPress WP Configurator Pro plugin <= 3.7.9 - Broken Access Control vulnerability
Broken Access Control vulnerability discovered by Phat RiO in WordPress Plugin WP Configurator Pro versions = 3.7.9...
CVE-2025-37902
CVE-2025-37902 entry is rejected/not used and does not represent an active vulnerability.
CVE-2022-37906
creationtimestamp| type| source ---|---|--- 2025-05-02 19:16:24+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/14575...
CVE-2024-6590
The Spreadsheet Integration – Automate Google Sheets With WordPress, WooCommerce & Most Popular Form Plugins. Also, Display Google sheet as a Table. plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on several functions in all versions up to...
CVE-2022-37936
Unauthenticated Java deserialization vulnerability in Serviceguard Manager...
Yokogawa Electric 信任管理问题漏洞
Yokogawa Electric is a server of Yokogawa Electric Yokogawa, a Japanese company. A security vulnerability exists in Yokogawa Electric. The following products and versions are affected: CENTUM VP versions R5.01.00 through R5.04.20 and R6.01.00 through R6.08.00, Exaopc versions R3.72.00 through...
Saibo Cyber Game Accelerator Security Vulnerability
Saibo Cyber Game Accelerator is a software program from China-based Saibo that provides users with secure and fast connections to online game servers. A security vulnerability exists in Saibo Cyber Game Accelerator version 3.7.9, which stems from a local privilege escalation vulnerability. The...
Synology DiskStation Manager Command Injection Vulnerability (CNVD-2018-11370)
Synology DiskStation Manager DSM is a set of operating systems for use on networked storage servers NAS from Synology Inc. The operating system can manage information such as data, files, photos, music, etc. EZ-Internet is one of the network configuration tools. A command injection vulnerability...
UBUNTU-CVE-2013-0228
The xeniret function in arch/x86/xen/xen-asm32.S in the Linux kernel before 3.7.9 on 32-bit Xen paravirtops platforms does not properly handle an invalid value in the DS segment register, which allows guest OS users to gain guest OS privileges via a crafted application...