Lucene search
K

8 matches found

Vulnrichment
Vulnrichment
added 2026/01/14 6:40 a.m.2 views

CVE-2025-15475 PayHere Payment Gateway Plugin for WooCommerce <= 2.3.9 - Missing Authorization to Unauthenticated Order Status Modification

The PayHere Payment Gateway Plugin for WooCommerce plugin for WordPress is vulnerable to unauthorized modification of data due to an improper validation logic in the checkpayhereresponse function in all versions up to, and including, 2.3.9. This makes it possible for unauthenticated attackers to...

5.3CVSS5.6AI score0.00225EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/01/03 10:4 p.m.5 views

CVE-2025-64119

A vulnerability in Nuvation Battery Management System allows Authentication Bypass.This issue affects Battery Management System: through 2.3.9...

9.3CVSS6.6AI score0.0036EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/18 9:30 a.m.6 views

EUVD-2025-204069

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in wpweb Follow My Blog Post follow-my-blog-post allows Retrieve Embedded Sensitive Data.This issue affects Follow My Blog Post: from n/a through = 2.3.9...

7.5CVSS6.4AI score0.00303EPSS
Exploits0References2
CVE
CVE
added 2025/12/18 7:22 a.m.18 views

CVE-2025-64258

CVE-2025-64258 concerns the WordPress plugin Follow My Blog Post (versions

7.5CVSS6.5AI score0.00303EPSS
Exploits0References1Affected Software1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-30558

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.00196EPSS
Exploits0References2
CVE
CVE
added 2025/09/26 8:31 a.m.15 views

CVE-2025-60161

CVE-2025-60161: ZoloBlocks (ZoloBlocks plugin)

5.4CVSS5.9AI score0.00197EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/09/22 6:23 p.m.10 views

CVE-2025-58230 WordPress ZoloBlocks plugin <= 2.3.12 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bdthemes ZoloBlocks zoloblocks allows DOM-Based XSS.This issue affects ZoloBlocks: from n/a through = 2.3.12...

6.5CVSS0.00196EPSS
Exploits0References1
CNVD
CNVD
added 2019/02/12 12:0 a.m.5 views

Cisco Meeting Server Denial of Service Vulnerability (CNVD-2019-16513)

Cisco Meeting Server formerly known as Acano Conferencing Server, CMS is the United States Cisco Cisco company's set of audio and video conferencing server software. A denial of service vulnerability exists in Session Initiation Protocol SIP call processing in Cisco Meeting Server CMS versions...

7.5CVSS6.8AI score0.0182EPSS
Exploits0References1
Rows per page
Query Builder