Lucene search
K

31 matches found

EUVD
EUVD
added 2026/04/08 9:31 a.m.4 views

EUVD-2026-20294

Missing Authorization vulnerability in SpabRice Mogi mogi allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Mogi: from n/a through = 1.2.3...

5.9AI score0.00228EPSS
Exploits0References2
NVD
NVD
added 2026/04/08 9:16 a.m.4 views

CVE-2026-39637

Missing Authorization vulnerability in SpabRice Mogi mogi allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Mogi: from n/a through = 1.2.3...

5.3CVSS0.00228EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/03/21 11:32 p.m.4 views

CVE-2026-4530 apconw Aix-DB terminology_retriever.py sql injection

A security flaw has been discovered in apconw Aix-DB up to 1.2.3. This impacts an unknown function of the file agent/text2sql/rag/terminologyretriever.py. Performing a manipulation of the argument Description results in sql injection. The attack requires a local approach. The exploit has been...

5.3CVSS5.6AI score0.00136EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/03/13 11:42 a.m.2 views

CVE-2026-32359 WordPress Icon List Block plugin <= 1.2.3 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bPlugins Icon List Block icon-list-block allows Stored XSS.This issue affects Icon List Block: from n/a through = 1.2.3...

6.5CVSS5.8AI score0.00161EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/06 7:54 a.m.5 views

CVE-2026-27437

Deserialization of Untrusted Data vulnerability in ThemeREX Tennis Club tennis-sportclub allows Object Injection.This issue affects Tennis Club: from n/a through = 1.2.3...

9.8CVSS5.8AI score0.00375EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/05 5:54 a.m.4 views

CVE-2026-27437

Deserialization of Untrusted Data vulnerability in ThemeREX Tennis Club tennis-sportclub allows Object Injection.This issue affects Tennis Club: from n/a through = 1.2.3...

5.9AI score0.00375EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/03/05 12:0 a.m.4 views

PT-2026-23269

Deserialization of Untrusted Data vulnerability in ThemeREX Tennis Club tennis-sportclub allows Object Injection.This issue affects Tennis Club: from n/a through = 1.2.3...

5.9AI score0.00375EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/01/22 4:52 p.m.2 views

CVE-2025-69037

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in goalthemes Pippo pippo allows PHP Local File Inclusion.This issue affects Pippo: from n/a through = 1.2.3...

8.1CVSS5.3AI score0.00403EPSS
Exploits0References2
Patchstack
Patchstack
added 2026/01/22 9:53 a.m.4 views

WordPress JobBank plugin <= 1.2.3 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Phat RiO - BlueRock in WordPress Plugin JobBank versions = 1.2.3...

5.4AI score0.00178EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVE
added 2026/01/09 9:32 a.m.8 views

CVE-2023-25698

Cross-Site Request Forgery CSRF vulnerability in Studio Wombat Shoppable Images plugin = 1.2.3 versions...

8.8CVSS7AI score0.00248EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/12/31 1:43 p.m.6 views

WordPress Black Rider theme <= 1.2.3 - Sensitive Data Exposure vulnerability

Software : Black Rider Type : Theme Vulnerable versions : = 1.2.3 OWASP Top 10 : A3: Sensitive Data Exposure Classification : Sensitive Data Exposure CVE ID : CVE-2025-59003 Patchstack priority : Medium CVSS severity : 5.8 Required privilege : Unauthenticated Developer : Claim ownership PSID :...

5.8CVSS7.2AI score0.00192EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/30 10:44 a.m.4 views

WordPress Pippo theme <= 1.2.3 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Phat RiO - BlueRock in WordPress Theme Pippo versions = 1.2.3...

8.1CVSS7.1AI score0.00403EPSS
Exploits0Affected Software1
Cvelist
Cvelist
added 2025/12/18 7:21 a.m.27 views

CVE-2025-58892 WordPress Tourimo theme <= 1.2.3 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Tourimo tourimo allows PHP Local File Inclusion.This issue affects Tourimo: from n/a through = 1.2.3...

8.1CVSS0.00445EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/12/18 12:0 a.m.8 views

PT-2025-52124

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in axiomthemes Rosalinda rosalinda allows PHP Local File Inclusion.This issue affects Rosalinda: from n/a through = 1.2.3...

7.1AI score0.00424EPSS
Exploits0References2
Patchstack
Patchstack
added 2025/11/10 11:19 p.m.8 views

WordPress Magazine Companion plugin <= 1.2.3 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by zaim in WordPress Plugin Magazine Companion versions = 1.2.3...

6.4CVSS5.5AI score0.0022EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2025/09/08 3:4 p.m.3 views

WordPress Alanzo Theme <= 1.2.3 - Local File Inclusion Vulnerability

Local File Inclusion Vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Alanzo versions = 1.2.3...

8.1CVSS7AI score0.00519EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/09/08 8:25 a.m.5 views

WordPress Callie Britt Theme <= 1.2.3 - Local File Inclusion Vulnerability

Local File Inclusion Vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Callie Britt versions = 1.2.3...

8.1CVSS7AI score0.00519EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/09/08 12:0 a.m.7 views

WordPress Callie Britt Theme <= 1.2.3 is vulnerable to Local File Inclusion

Software Callie Britt Type Theme Vulnerable versions = 1.2.3 Fixed in N/A OWASP Top 10 A3: Injection Classification Local File Inclusion CVE CVE-2025-26592 Patch priority High CVSS severity High 8.1 Developer Claim ownership PSID 14891aeee80a Credits Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunit...

8.1CVSS7.7AI score0.00519EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2025/08/23 2:0 p.m.6 views

WordPress Tourimo theme <= 1.2.3 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Tourimo versions = 1.2.3...

8.2CVSS7.1AI score0.00445EPSS
Exploits0Affected Software1
Cvelist
Cvelist
added 2025/08/14 10:34 a.m.11 views

CVE-2025-49058 WordPress SoundSt SEO Search plugin <= 1.2.3 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Sound Strategies SoundSt SEO Search soundst-seo-search allows Reflected XSS.This issue affects SoundSt SEO Search: from n/a through = 1.2.3...

7.1CVSS0.00219EPSS
Exploits0References1
Rows per page
Query Builder