Lucene search
K

7 matches found

Patchstack
Patchstack
added 2026/05/01 12:0 a.m.9 views

WordPress My Social Feeds – Social Feeds Embedder Plugin for WP plugin <= 1.0.4 - Missing Authorization to Unauthenticated Sensitive Information Exposure vulnerability

Missing Authorization to Unauthenticated Sensitive Information Exposure vulnerability discovered by Teerachai Somprasong in WordPress Plugin My Social Feeds – Social Feeds Embedder Plugin for WordPress versions = 1.0.4...

5.4CVSS5.8AI score0.00229EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/02/02 4:28 a.m.8 views

WordPress CubeWP plugin <= 1.1.27 - Unauthenticated Information Exposure vulnerability

Unauthenticated Information Exposure vulnerability discovered by Jonas Benjamin Friedli in WordPress Plugin CubeWP versions = 1.1.27...

5.3CVSS5.9AI score0.00219EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/12/06 5:49 a.m.19 views

CVE-2025-12721 g-FFL Cockpit <= 1.7.1 - Missing Authorization to Unauthenticated Information Exposure

The g-FFL Cockpit plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.7.1 via the /serverstatus REST API endpoint due to a lack of capability checks. This makes it possible for unauthenticated attackers to extract information about the serv...

5.3CVSS0.00248EPSS
Exploits0References5
CVE
CVE
added 2025/01/31 6:40 a.m.48 views

CVE-2024-13623

The CVE-2024-13623 issue affects the WordPress plugin Order Export for WooCommerce. It allows unauthenticated attackers to exfiltrate sensitive data stored in the uploads directory, applicable to all versions up to 3.24. The vulnerability is conditional: it exists when Order data storage is set t...

5.9CVSS5.6AI score0.00451EPSS
Exploits0References3
Patchstack
Patchstack
added 2024/09/04 4:3 a.m.7 views

WordPress PixelYourSite PRO plugin <= 10.4.2 - Unauthenticated Information Exposure and Log Deletion vulnerability

Unauthenticated Information Exposure and Log Deletion vulnerability discovered by Xetnus in WordPress Plugin PixelYourSite PRO versions = 10.4.2...

7.5CVSS7AI score0.0045EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/08/29 1:16 a.m.6 views

WordPress Premium SEO Pack plugin <= 1.6.002 - Unauthenticated Information Exposure vulnerability

Unauthenticated Information Exposure vulnerability discovered by Krzysztof Zając in WordPress Plugin Premium SEO Pack versions = 1.6.002...

7.5CVSS7AI score0.0041EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/08/16 1:31 a.m.6 views

WordPress Relevanssi plugin <= 4.22.2 - Unauthenticated Information Exposure vulnerability

Unauthenticated Information Exposure vulnerability discovered by stealthcopter in WordPress Plugin Relevanssi versions = 4.22.2...

7.5CVSS7AI score0.00478EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder