Lucene search
+L

44 matches found

CVE
CVE
added 2026/05/27 8:35 a.m.25 views

CVE-2025-22741

CVE-2025-22741 concerns a Reflected Cross-Site Scripting in RiceTheme Felan Framework and the WordPress Felan Framework plugin (

7.1CVSS5.8AI score0.0018EPSS
Exploits0References1
Patchstack
Patchstack
added 2026/05/01 9:33 a.m.7 views

WordPress Advanced Scrollbar – Custom Scrollbar Styling and Behavior plugin <= 1.1.3 - Unauthenticated Reflected Cross-Site Scripting vulnerability

Unauthenticated Reflected Cross-Site Scripting vulnerability discovered by Asaf Mozes in WordPress Plugin Advanced scrollbar versions = 1.1.3...

6.1CVSS5.8AI score0.00276EPSS
Exploits0References1Affected Software1
EUVD
EUVD
added 2026/03/05 6:30 a.m.3 views

EUVD-2026-9658

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeREX Equadio equadio allows PHP Local File Inclusion.This issue affects Equadio: from n/a through = 1.1.3...

5.9AI score0.00403EPSS
Exploits0References2
Patchstack
Patchstack
added 2026/03/02 11:41 a.m.6 views

WordPress Equadio theme <= 1.1.3 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Bonds in WordPress Theme Equadio versions = 1.1.3...

8.1CVSS5.9AI score0.00403EPSS
Exploits0Affected Software1
NVD
NVD
added 2026/02/20 4:22 p.m.5 views

CVE-2025-68834

Missing Authorization vulnerability in Saiful Islam Sync Master Sheet – Product Sync with Google Sheet for WooCommerce product-sync-master-sheet allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Sync Master Sheet – Product Sync with Google Sheet for...

7.5CVSS0.00256EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/02/20 3:46 p.m.25 views

CVE-2025-68050 WordPress Leadpages plugin <= 1.1.3 - Broken Access Control vulnerability

Missing Authorization vulnerability in Leadpages Leadpages leadpages allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Leadpages: from n/a through = 1.1.3...

6.5CVSS0.00235EPSS
Exploits0References1
Patchstack
Patchstack
added 2026/02/03 10:13 a.m.5 views

WordPress Optimize More! – Images plugin <= 1.1.3 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Muhammad Nur Ibnu Hubab in WordPress Plugin Optimize More! Images versions = 1.1.3...

6.5CVSS5.3AI score0.00261EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/01/27 11:33 a.m.5 views

WordPress Leadpages plugin <= 1.1.3 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by NumeX in WordPress Plugin Leadpages versions = 1.1.3...

6.5CVSS5.9AI score0.00235EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVE
added 2026/01/23 9:16 p.m.7 views

CVE-2025-68882

Missing Authorization vulnerability in Scalenut Scalenut scalenut allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Scalenut: from n/a through = 1.1.5...

7.5CVSS5.9AI score0.00246EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/01/23 2:28 p.m.3 views

CVE-2026-24551 WordPress Monetag Official Plugin plugin <= 1.1.3 - Broken Access Control vulnerability

Missing Authorization vulnerability in monetagwp Monetag Official Plugin monetag-official allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Monetag Official Plugin: from n/a through = 1.1.3...

5.4CVSS5.9AI score0.00209EPSS
Exploits0References1
CVE
CVE
added 2026/01/23 2:28 p.m.17 views

CVE-2026-24551

CVE-2026-24551 is a Missing Authorization (Broken Access Control) vulnerability in the Monetag Official Plugin (monetag-official) for WordPress, affecting versions up to and including 1.1.3. Reported issue: access control misconfiguration may allow unauthorized actions, per the vulnerability desc...

5.4CVSS5.4AI score0.00209EPSS
Exploits0References1
Patchstack
Patchstack
added 2026/01/23 9:15 a.m.9 views

WordPress Monetag Official Plugin plugin <= 1.1.3 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Nabil Irawan in WordPress Plugin Monetag Official Plugin versions = 1.1.3...

5.4CVSS5.3AI score0.00209EPSS
Exploits0Affected Software1
NVD
NVD
added 2026/01/22 5:16 p.m.6 views

CVE-2025-68882

Missing Authorization vulnerability in Scalenut Scalenut scalenut allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Scalenut: from n/a through = 1.1.5...

7.5CVSS0.00246EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/01/22 4:52 p.m.4 views

CVE-2025-69043 WordPress Rashy theme <= 1.1.3 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in goalthemes Rashy rashy allows PHP Local File Inclusion.This issue affects Rashy: from n/a through = 1.1.3...

8.1CVSS5.9AI score0.00403EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/01/22 4:52 p.m.2 views

CVE-2025-68882 WordPress Scalenut plugin <= 1.1.5 - Broken Access Control vulnerability

Missing Authorization vulnerability in Scalenut Scalenut scalenut allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Scalenut: from n/a through = 1.1.5...

7.5CVSS5.8AI score0.00246EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/10 5:41 a.m.6 views

CVE-2025-23993

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in RiceTheme Felan Framework felan-framework allows SQL Injection.This issue affects Felan Framework: from n/a through = 1.1.3...

9.3CVSS5.9AI score0.00359EPSS
Exploits0References1
NVD
NVD
added 2026/01/08 10:15 a.m.7 views

CVE-2025-23993

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in RiceTheme Felan Framework felan-framework allows SQL Injection.This issue affects Felan Framework: from n/a through = 1.1.3...

9.3CVSS0.00359EPSS
Exploits0References1
CVE
CVE
added 2026/01/08 9:17 a.m.13 views

CVE-2025-23993

CVE-2025-23993 describes an SQL Injection in Felan Framework (RiceTheme Felan) affecting Felan Framework versions from n/a through

9.3CVSS7.3AI score0.00359EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/10/22 2:32 p.m.2 views

CVE-2025-62021 WordPress Acknowledgify plugin <= 1.1.3 - Broken Access Control vulnerability

Missing Authorization vulnerability in Made Neat Acknowledgify acknowledgify.This issue affects Acknowledgify: from n/a through = 1.1.3...

4.3CVSS6.6AI score0.00223EPSS
Exploits0References1
CVE
CVE
added 2025/10/22 2:32 p.m.13 views

CVE-2025-62021

CVE-2025-62021 describes a Missing Authorization (Broken Access Control) flaw in the WordPress plugin Acknowledgify, affecting versions

4.3CVSS6.6AI score0.00223EPSS
Exploits0References1
Rows per page
Query Builder