Lucene search
+L

13 matches found

cvelist
cvelist
added 2026/04/08 8:30 a.m.28 views

CVE-2026-39617 WordPress Bluestreet theme <= 1.7.3 - Cross Site Request Forgery (CSRF) to Arbitrary Plugin Installation vulnerability

Cross-Site Request Forgery CSRF vulnerability in priyanshumittal Bluestreet bluestreet allows Cross Site Request Forgery.This issue affects Bluestreet: from n/a through = 1.7.3...

9.6CVSS0.00143EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/03/26 3:4 p.m.6 views

CVE-2025-53222

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in tagDiv tagDiv Opt-In Builder td-subscription allows Reflected XSS.This issue affects tagDiv Opt-In Builder: from n/a through = 1.7.3...

7.1CVSS5.9AI score0.0019EPSS
Exploits0References1
attackerkb
attackerkb
added 2026/03/19 8:10 a.m.3 views

CVE-2025-53222

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in tagDiv tagDiv Opt-In Builder allows Reflected XSS.This issue affects tagDiv Opt-In Builder: from n/a through 1.7.3...

7.1CVSS5.8AI score0.0019EPSS
Exploits0References2
nvd
nvd
added 2026/01/23 3:16 p.m.5 views

CVE-2026-24625

Missing Authorization vulnerability in Imaginate Solutions File Uploads Addon for WooCommerce woo-addon-uploads allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects File Uploads Addon for WooCommerce: from n/a through = 1.7.3...

5.3CVSS0.00187EPSS
Exploits0References1
cvelist
cvelist
added 2026/01/23 2:29 p.m.29 views

CVE-2026-24625 WordPress File Uploads Addon for WooCommerce plugin <= 1.7.3 - Broken Access Control vulnerability

Missing Authorization vulnerability in Imaginate Solutions File Uploads Addon for WooCommerce woo-addon-uploads allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects File Uploads Addon for WooCommerce: from n/a through = 1.7.3...

5.3CVSS0.00187EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/12/31 11:6 a.m.6 views

CVE-2025-69033

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in A WP Life Blog Filter blog-filter allows DOM-Based XSS.This issue affects Blog Filter: from n/a through = 1.7.3...

6.5CVSS6.4AI score0.00127EPSS
Exploits0References1
patchstack
patchstack
added 2025/11/17 11:37 p.m.5 views

WordPress WP Twitter Auto Publish plugin <= 1.7.4 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Nicolai Hellesnes nico in WordPress Plugin WP Twitter Auto Publish versions = 1.7.4...

6.1CVSS5.4AI score0.00217EPSS
Exploits0References1Affected Software1
redhatcve
redhatcve
added 2025/05/09 3:25 p.m.5 views

CVE-2025-47459

Cross-Site Request Forgery CSRF vulnerability in Roxnor FundEngine wp-fundraising-donation allows Cross Site Request Forgery.This issue affects FundEngine: from n/a through = 1.7.3...

4.3CVSS7.2AI score0.0014EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/02/05 4:0 a.m.6 views

CVE-2024-54331

Cross-Site Request Forgery CSRF vulnerability in Micha I Plant A Tree i-plant-a-tree allows Stored XSS.This issue affects I Plant A Tree: from n/a through = 1.7.3...

7.1CVSS7.2AI score0.00206EPSS
Exploits0References1
patchstack
patchstack
added 2025/01/20 12:0 a.m.5 views

WordPress Uix Page Builder Plugin <= 1.7.3 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Plugin Uix Page Builder versions = 1.7.3...

7.1CVSS5.8AI score0.00241EPSS
Exploits0Affected Software1
nvd
nvd
added 2024/12/16 3:15 p.m.8 views

CVE-2024-54331

Cross-Site Request Forgery CSRF vulnerability in Micha I Plant A Tree i-plant-a-tree allows Stored XSS.This issue affects I Plant A Tree: from n/a through = 1.7.3...

7.1CVSS0.00206EPSS
Exploits0References1
osv
osv
added 2024/11/04 2:15 p.m.3 views

CVE-2024-50523

Unrestricted Upload of File with Dangerous Type vulnerability in RainbowLink Inc. All Post Contact Form allows Upload a Web Shell to a Web Server.This issue affects All Post Contact Form: from n/a through 1.7.3...

9.8CVSS5.8AI score0.00501EPSS
Exploits0References1
patchstack
patchstack
added 2024/04/17 2:29 p.m.4 views

WordPress WP Social Comments plugin <= 1.7.3 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Friday Patchstack Alliance in WordPress Plugin WP Social Comments versions = 1.7.3...

4.3CVSS7AI score0.00337EPSS
Exploits0Affected Software1
Rows per page
Query Builder