Lucene search
K

7 matches found

NVD
NVD
added 2026/04/08 9:16 a.m.3 views

CVE-2026-39649

Missing Authorization vulnerability in themebeez Royale News royale-news allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Royale News: from n/a through = 2.2.4...

5.3CVSS0.00214EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/09/03 12:0 a.m.5 views

WordPress Oblo Theme <= 2.2.4 is vulnerable to Local File Inclusion

Software Oblo Type Theme Vulnerable versions = 2.2.4 Fixed in N/A OWASP Top 10 A3: Injection Classification Local File Inclusion CVE CVE-2025-48290 Patch priority High CVSS severity High 8.1 Developer Claim ownership PSID 513d4a3a8bf3 Credits Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity Requir...

7AI score0.00488EPSS
Exploits0References1Affected Software1
RedhatCVE
RedhatCVE
added 2025/08/30 6:19 p.m.3 views

CVE-2025-48362

Cross-Site Request Forgery CSRF vulnerability in Saeed Sattar Beglou Hesabfa Accounting hesabfa-accounting allows Cross Site Request Forgery.This issue affects Hesabfa Accounting: from n/a through = 2.2.5...

5.4CVSS5.9AI score0.00127EPSS
Exploits0References1
NVD
NVD
added 2024/12/09 1:15 p.m.8 views

CVE-2023-47849

Missing Authorization vulnerability in Blossom Themes BlossomThemes Email Newsletter blossomthemes-email-newsletter allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects BlossomThemes Email Newsletter: from n/a through = 2.2.4...

4.3CVSS0.00362EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/09/10 1:17 a.m.8 views

WordPress Frontend Dashboard plugin <= 2.2.4 - Authenticated (Subscriber+) Arbitrary Function Call vulnerability

Authenticated Subscriber+ Arbitrary Function Call vulnerability discovered by Lucio Sá in WordPress Plugin Frontend Dashboard versions = 2.2.4...

8.8CVSS7AI score0.00706EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2024/06/12 12:0 a.m.5 views

WordPress plugin Simple Staff List security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exist...

4.3CVSS6.8AI score0.00324EPSS
Exploits0References2
OSV
OSV
added 2023/10/10 4:15 p.m.5 views

CVE-2023-44995

Cross-Site Request Forgery CSRF vulnerability in WP Doctor WooCommerce Login Redirect plugin = 2.2.4 versions...

8.8CVSS7.3AI score0.00208EPSS
Exploits0References1
Rows per page
Query Builder