Lucene search
K

6 matches found

Positive Technologies
Positive Technologies
added 2026/02/19 12:0 a.m.6 views

PT-2026-20670

Missing Authorization vulnerability in WP Swings Ultimate Gift Cards For WooCommerce woo-gift-cards-lite allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Ultimate Gift Cards For WooCommerce: from n/a through = 3.2.4...

5.5AI score0.00214EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/02/14 6:42 a.m.31 views

CVE-2026-1303 MailChimp Campaigns <= 3.2.4 - Missing Authorization to Authenticated (Subscriber+) MailChimp App Disconnection

The MailChimp Campaigns plugin for WordPress is vulnerable to Missing Authorization in all versions up to, and including, 3.2.4. This is due to missing capability checks on the mailchimpcampaignsmanagerdisconnectapp function that is hooked to the AJAX action of the same name. This makes it possib...

5.3CVSS0.00287EPSS
Exploits0References3
Patchstack
Patchstack
added 2025/01/24 11:47 a.m.4 views

WordPress Popup Box Plugin <= 3.2.4 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Khang Duong in WordPress Plugin Popup Box versions = 3.2.4...

5.4CVSS7AI score0.00199EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/11/16 3:6 p.m.5 views

WordPress MooWoodle plugin <= 3.2.4 - Sensitive Data Exposure vulnerability

Sensitive Data Exposure vulnerability discovered by Joshua Chan in WordPress Plugin MooWoodle versions = 3.2.4...

7.5CVSS7AI score0.00517EPSS
Exploits0Affected Software1
ATTACKERKB
ATTACKERKB
added 2024/08/17 10:15 a.m.1 views

CVE-2023-0714

The Metform Elementor Contact Form Builder for WordPress is vulnerable to Arbitrary File Upload due to insufficient file type validation in versions up to, and including, 3.2.4. This allows unauthenticated visitors to perform a "double extension" attack and upload files containing a malicious...

9.8CVSS6.4AI score0.00958EPSS
Exploits0References4
OSV
OSV
added 2024/03/29 4:15 p.m.1 views

CVE-2024-30477

Missing Authorization vulnerability in Klarna Klarna Payments for WooCommerce.This issue affects Klarna Payments for WooCommerce: from n/a through 3.2.4...

9.8CVSS5.8AI score0.00478EPSS
Exploits0References1
Rows per page
Query Builder