Lucene search
K

54 matches found

NVD
NVD
added 2026/06/17 2:17 p.m.12 views

CVE-2025-69111

Unauthenticated PHP Object Injection in Reisen = 1.4.1 versions...

9.8CVSS0.00386EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/17 12:47 p.m.28 views

CVE-2026-40738 WordPress Eldon theme <= 1.4.1 - PHP Object Injection vulnerability

Unauthenticated PHP Object Injection in Eldon = 1.4.1 versions...

8.1CVSS0.00308EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/16 8:57 p.m.18 views

CVE-2026-27429 WordPress Nifty theme <= 1.4.1 - PHP Object Injection vulnerability

Unauthenticated PHP Object Injection in Nifty = 1.4.1 versions...

9.8CVSS0.00556EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/06/16 12:0 a.m.8 views

PT-2026-50106

Unauthenticated PHP Object Injection in Playroom = 1.4.1 versions...

5.5CVSS5.4AI score0.00205EPSS
Exploits0References2
NVD
NVD
added 2026/06/02 3:16 a.m.15 views

CVE-2026-10567

A security vulnerability has been detected in 1Panel-dev CordysCRM up to 1.4.1. This impacts the function Save of the file src/main/java/cn/cordys/crm/system/service/ModuleFormService.java of the component ModuleFormController. The manipulation of the argument Description leads to cross site...

5.1CVSS0.00237EPSS
Exploits0References9
RedhatCVE
RedhatCVE
added 2026/03/26 3:17 p.m.4 views

CVE-2026-32338

Missing Authorization vulnerability in raratheme Construction Landing Page construction-landing-page allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Construction Landing Page: from n/a through = 1.4.1...

5.3CVSS5.8AI score0.00224EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/25 6:31 p.m.5 views

EUVD-2026-15596

Deserialization of Untrusted Data vulnerability in NooTheme Jobica Core jobica-core allows Object Injection.This issue affects Jobica Core: from n/a through = 1.4.1...

5.8AI score0.00344EPSS
Exploits0References2
EUVD
EUVD
added 2026/03/21 6:30 a.m.5 views

EUVD-2026-13992

Cross-Site Request Forgery CSRF vulnerability in Copyscape Copyscape Premium copyscape-premium allows Cross Site Request Forgery.This issue affects Copyscape Premium: from n/a through = 1.4.1...

6.4CVSS5.8AI score0.00243EPSS
Exploits0References14
Vulnrichment
Vulnrichment
added 2026/03/13 11:42 a.m.4 views

CVE-2026-32429 WordPress Magical Addons For Elementor plugin <= 1.4.1 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Noor Alam Magical Addons For Elementor magical-addons-for-elementor allows Stored XSS.This issue affects Magical Addons For Elementor: from n/a through = 1.4.1...

6.5CVSS5.8AI score0.00161EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/03/13 12:0 a.m.6 views

PT-2026-25185

Missing Authorization vulnerability in raratheme Construction Landing Page construction-landing-page allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Construction Landing Page: from n/a through = 1.4.1...

5.3CVSS5.8AI score0.00224EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/02/25 4:6 a.m.10 views

CVE-2026-27643

free5GC UDR is the user data repository UDR for free5GC, an an open-source project for 5th generation 5G mobile core networks. In versions up to and including 1.4.1, the NEF component reliably leaks internal parsing error details e.g., invalid character 'n' after top-level value to remote clients...

8.7CVSS5.4AI score0.00275EPSS
Exploits1References1
CVE
CVE
added 2026/02/23 11:56 p.m.14 views

CVE-2025-69252

The issue (CVE-2025-69252) affects the free5GC UDM component and its UDM service. It is a NULL pointer dereference in versions up to and including 1.4.1, allowing remote unauthenticated attackers to trigger a service panic (Denial of Service) by sending a crafted PUT request with an unexpected ue...

8.7CVSS5.4AI score0.0051EPSS
Exploits1References4Affected Software1
Patchstack
Patchstack
added 2026/02/05 7:48 a.m.7 views

WordPress ElementInvader Addons for Elementor plugin <= 1.4.1 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Legion Hunter in WordPress Plugin ElementInvader Addons for Elementor versions = 1.4.1...

5.4CVSS5.3AI score0.00193EPSS
Exploits0Affected Software1
NVD
NVD
added 2026/02/03 3:16 p.m.14 views

CVE-2026-24966

Cross-Site Request Forgery CSRF vulnerability in Copyscape Copyscape Premium copyscape-premium allows Cross Site Request Forgery.This issue affects Copyscape Premium: from n/a through = 1.4.1...

4.3CVSS0.00107EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/01 4:26 p.m.8 views

CVE-2025-62133

Cross-Site Request Forgery CSRF vulnerability in manidoraisamy FormFacade formfacade allows Cross Site Request Forgery.This issue affects FormFacade: from n/a through = 1.4.1...

4.3CVSS5.9AI score0.00098EPSS
Exploits0References1
NVD
NVD
added 2025/12/31 4:15 p.m.3 views

CVE-2025-62133

Cross-Site Request Forgery CSRF vulnerability in manidoraisamy FormFacade formfacade allows Cross Site Request Forgery.This issue affects FormFacade: from n/a through = 1.4.1...

4.3CVSS0.00098EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/10/23 3:14 p.m.4 views

CVE-2025-52742

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Igor Benic Pets pets allows Reflected XSS.This issue affects Pets: from n/a through = 1.4.1...

7.1CVSS6.4AI score0.00228EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/10/17 1:51 p.m.6 views

WordPress Memberlite Shortcodes plugin <= 1.4.1 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by zaim in WordPress Plugin Memberlite Shortcodes versions = 1.4.1...

6.5CVSS6AI score0.00244EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/10/16 1:32 p.m.6 views

WordPress WPCasa plugin <= 1.4.1 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by muhammad yudha in WordPress Plugin WPCasa versions = 1.4.1...

6.1AI score0.00129EPSS
Exploits0Affected Software1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-28359

Malicious code in bioql PyPI...

6.5CVSS6.4AI score0.00263EPSS
Exploits0References1
Rows per page
Query Builder