Lucene search
+L

18 matches found

redhatcve
redhatcve
added 2026/04/29 2:48 p.m.10 views

CVE-2026-39688

Missing Authorization vulnerability in Glowlogix WP Frontend Profile wp-front-end-profile allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Frontend Profile: from n/a through = 1.3.9...

5.3CVSS5.1AI score0.00218EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/03/26 3:17 p.m.5 views

CVE-2026-32486

Missing Authorization vulnerability in wptravelengine Travel Booking travel-booking allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Travel Booking: from n/a through = 1.3.9...

5.3CVSS5.8AI score0.00188EPSS
Exploits0References1
attackerkb
attackerkb
added 2026/03/13 11:41 a.m.0 views

CVE-2026-32341

Missing Authorization vulnerability in raratheme Benevolent benevolent allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Benevolent: from n/a through = 1.3.9...

5.8AI score0.00214EPSS
Exploits0References2
euvd
euvd
added 2026/03/09 12:30 a.m.3 views

EUVD-2026-10278

A security vulnerability has been detected in Bytedesk up to 1.3.9. This impacts the function getModels of the file source-code/src/main/java/com/bytedesk/ai/springai/providers/openrouter/SpringAIOpenrouterRestService.java of the component SpringAIOpenrouterRestController. Such manipulation of th...

6.5CVSS5.4AI score0.0042EPSS
Exploits1References10
osv
osv
added 2026/03/08 4:2 p.m.8 views

CVE-2026-3748 Bytedesk SVG File UploadRestController.java uploadFile unrestricted upload

A security flaw has been discovered in Bytedesk up to 1.3.9. This affects the function uploadFile of the file source-code/src/main/java/com/bytedesk/core/upload/UploadRestController.java of the component SVG File Handler. Performing a manipulation results in unrestricted upload. Remote exploitati...

5.3CVSS6.1AI score0.00482EPSS
Exploits1References11
nvd
nvd
added 2026/03/05 6:16 a.m.18 views

CVE-2026-28104

Missing Authorization vulnerability in Aryan Shirani Bid Abadi Site Suggest site-suggest allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Site Suggest: from n/a through = 1.3.9...

6.5CVSS0.00242EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/01/23 9:17 p.m.20 views

CVE-2025-69186

Missing Authorization vulnerability in e-plugins Hospital Doctor Directory hospital-doctor-directory allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Hospital Doctor Directory: from n/a through = 1.3.9...

7.3CVSS5.4AI score0.00219EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/01/23 9:16 p.m.8 views

CVE-2025-68057

Missing Authorization vulnerability in e-plugins Hospital Doctor Directory hospital-doctor-directory allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Hospital Doctor Directory: from n/a through = 1.3.9...

7.6CVSS5.4AI score0.00325EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/01/22 4:52 p.m.3 views

CVE-2025-69186 WordPress Hospital Doctor Directory plugin <= 1.3.9 - Broken Access Control vulnerability

Missing Authorization vulnerability in e-plugins Hospital Doctor Directory hospital-doctor-directory allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Hospital Doctor Directory: from n/a through = 1.3.9...

7.3CVSS5.9AI score0.00219EPSS
Exploits0References1
patchstack
patchstack
added 2026/01/22 6:53 a.m.5 views

WordPress Hospital Doctor Directory plugin <= 1.3.9 - Privilege Escalation vulnerability

Privilege Escalation vulnerability discovered by Phat RiO - BlueRock in WordPress Plugin Hospital Doctor Directory versions = 1.3.9...

8.8CVSS5.4AI score0.00378EPSS
Exploits0Affected Software1
euvd
euvd
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-26491

Malicious code in bioql PyPI...

6.4CVSS6.4AI score0.00216EPSS
Exploits0References3
patchstack
patchstack
added 2025/01/16 6:43 p.m.7 views

WordPress ApplicantPro Plugin <= 1.3.9 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by 0xd4rk5id3 in WordPress Plugin ApplicantPro versions = 1.3.9...

7.1CVSS6.1AI score0.00297EPSS
Exploits0Affected Software1
patchstack
patchstack
added 2024/11/28 11:52 a.m.5 views

WordPress Elementor Button Plus plugin <= 1.3.9 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Plugin Elementor Button Plus versions = 1.3.9...

6.5CVSS6.1AI score0.00229EPSS
Exploits0Affected Software1
patchstack
patchstack
added 2024/06/06 1:22 p.m.5 views

WordPress Kenta Gutenberg Blocks plugin <= 1.3.9 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by 4rCanJ0x! Patchstack Alliance in WordPress Plugin Kenta Gutenberg Blocks Responsive Blocks and block templates library for Gutenberg Editor versions = 1.3.9...

6.5CVSS6.1AI score0.0027EPSS
Exploits0Affected Software1
patchstack
patchstack
added 2024/06/06 11:37 a.m.7 views

WordPress Media Slider plugin <= 1.3.9 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Steven Julian Patchstack Alliance in WordPress Plugin Media Slider – Photo Sleder, Video Slider, Link Slider, Carousal Slideshow versions = 1.3.9...

8.8CVSS7AI score0.00356EPSS
Exploits0Affected Software1
patchstack
patchstack
added 2024/04/22 2:57 p.m.3 views

WordPress Integrate Google Drive plugin <= 1.3.9 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Steven Julian Patchstack Alliance in WordPress Plugin Integrate Google Drive versions = 1.3.9...

5.3CVSS7AI score0.00326EPSS
Exploits0Affected Software1
patchstack
patchstack
added 2024/04/16 3:33 p.m.5 views

WordPress Attesa Extra plugin <= 1.3.9 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Abu Hurayra Patchstack Alliance in WordPress Plugin Attesa Extra versions = 1.3.9...

6.5CVSS6.1AI score0.0032EPSS
Exploits0Affected Software1
osv
osv
added 2023/08/30 4:15 p.m.5 views

CVE-2023-25453

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Ian Sadovy WordPress Tables plugin = 1.3.9 versions...

6.1CVSS7.3AI score0.00458EPSS
Exploits1References1
Rows per page
Query Builder