Lucene search
+L

7 matches found

RedhatCVE
RedhatCVE
added 2026/06/05 7:38 p.m.11 views

CVE-2026-3369

The Better Find and Replace – AI-Powered Suggestions plugin for WordPress is vulnerable to Stored Cross-Site Scripting via uploaded image title in versions up to, and including, 1.7.9 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers,...

5.4CVSS5.7AI score0.00258EPSS
Exploits0References1
NVD
NVD
added 2026/04/16 12:16 p.m.8 views

CVE-2026-3369

The Better Find and Replace – AI-Powered Suggestions plugin for WordPress is vulnerable to Stored Cross-Site Scripting via uploaded image title in versions up to, and including, 1.7.9 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers,...

5.4CVSS0.00258EPSS
Exploits0References2
NVD
NVD
added 2026/03/05 6:16 a.m.6 views

CVE-2026-27411

Guessable CAPTCHA vulnerability in jp-secure SiteGuard WP Plugin siteguard allows Functionality Bypass.This issue affects SiteGuard WP Plugin: from n/a through = 1.7.9...

5.4CVSS0.00187EPSS
Exploits0References1
CVE
CVE
added 2026/03/05 5:54 a.m.8 views

CVE-2026-27411

CVE-2026-27411: Guessable CAPTCHA in SiteGuard WP Plugin (

5.4CVSS5.9AI score0.00187EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/03/05 12:0 a.m.6 views

PT-2026-23266

Guessable CAPTCHA vulnerability in jp-secure SiteGuard WP Plugin siteguard allows Functionality Bypass.This issue affects SiteGuard WP Plugin: from n/a through = 1.7.9...

5.9AI score0.00187EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/03/04 1:21 a.m.3 views

CVE-2026-2292 Morkva UA Shipping <= 1.7.9 - Authenticated (Administrator+) Stored Cross-Site Scripting via 'Weight, kg' Field

The Morkva UA Shipping plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 1.7.9 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level...

4.4CVSS5.9AI score0.00249EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/01/08 9:17 a.m.32 views

CVE-2025-22726 WordPress nK Themes Helper plugin <= 1.7.9 - Server Side Request Forgery (SSRF) vulnerability

Server-Side Request Forgery SSRF vulnerability in nK nK Themes Helper nk-themes-helper allows Server Side Request Forgery.This issue affects nK Themes Helper: from n/a through = 1.7.9...

6.4CVSS0.00217EPSS
Exploits0References1
Rows per page
Query Builder