Lucene search
K

24 matches found

RedhatCVE
RedhatCVE
added 2025/12/13 6:57 a.m.7 views

CVE-2025-13660

The Guest Support plugin for WordPress is vulnerable to User Email Disclosure in versions up to, and including, 1.2.3. This is due to the plugin exposing a public AJAX endpoint that allows anyone to search for and retrieve user email addresses without any authentication or capability checks. This...

5.3CVSS6.1AI score0.00294EPSS
Exploits0References1
GithubExploit
GithubExploit
added 2025/07/01 7:2 a.m.582 views

Exploit for CVE-2023-5561

PoC CVE-2023-5561 - WordPress User Email Disclosure Descri...

5.3CVSS5.7AI score0.03862EPSS
Exploits4
Tenable Nessus
Tenable Nessus
added 2024/05/17 12:0 a.m.25 views

GitLab 13.4 < 13.4.7 / 13.5 < 13.5.5 / 13.6 < 13.6.2 (CVE-2020-26413)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.4 before 13.6.2. Information disclosure via GraphQL results in user email being unexpectedly visible. CVE-2020-2641...

5.3CVSS5.6AI score0.33772EPSS
Exploits1References4
OSV
OSV
added 2024/03/06 11:14 a.m.27 views

BIT-GITLAB-2022-3351

An issue has been discovered in GitLab EE affecting all versions starting from 13.7 before 15.2.5, all versions starting from 15.3 before 15.3.4, all versions starting from 15.4 before 15.4.1. A user's primary email may be disclosed to an attacker through group member events webhooks...

4.3CVSS4.5AI score0.00661EPSS
Exploits0References4
VulnCheck KEV
VulnCheck KEV
added 2024/01/22 12:0 a.m.4 views

VulnCheck KEV: CVE-2022-2376

The Directorist WordPress plugin before 7.3.1 discloses the email address of all users in an AJAX action available to both unauthenticated and any authenticated users...

5.3CVSS6AI score0.01408EPSS
Exploits2References1
Tenable Nessus
Tenable Nessus
added 2023/10/18 12:0 a.m.14 views

WordPress 5.0.x < 5.0.20 Multiple Vulnerabilities

According to its self-reported version number, the detected WordPress application is affected by multiple vulnerabilities : - A potential disclosure of user email addresses. - An RCE POP Chains vulnerability. - A Cross-Site Scripting XSS vulnerability in the post link navigation block. - An issue...

6.6AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/10/18 12:0 a.m.17 views

WordPress 4.1.x < 4.1.39 Multiple Vulnerabilities

According to its self-reported version number, the detected WordPress application is affected by multiple vulnerabilities : - A potential disclosure of user email addresses. - An RCE POP Chains vulnerability. - A Cross-Site Scripting XSS vulnerability in the post link navigation block. - An issue...

6.6AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/10/18 12:0 a.m.17 views

WordPress 5.4.x < 5.4.14 Multiple Vulnerabilities

According to its self-reported version number, the detected WordPress application is affected by multiple vulnerabilities : - A potential disclosure of user email addresses. - An RCE POP Chains vulnerability. - A Cross-Site Scripting XSS vulnerability in the post link navigation block. - An issue...

6.6AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/10/18 12:0 a.m.16 views

WordPress 4.2.x < 4.2.36 Multiple Vulnerabilities

According to its self-reported version number, the detected WordPress application is affected by multiple vulnerabilities : - A potential disclosure of user email addresses. - An RCE POP Chains vulnerability. - A Cross-Site Scripting XSS vulnerability in the post link navigation block. - An issue...

6.6AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/10/18 12:0 a.m.9 views

WordPress 4.7.x < 4.7.27 Multiple Vulnerabilities

According to its self-reported version number, the detected WordPress application is affected by multiple vulnerabilities : - A potential disclosure of user email addresses. - An RCE POP Chains vulnerability. - A Cross-Site Scripting XSS vulnerability in the post link navigation block. - An issue...

6.6AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/10/18 12:0 a.m.9 views

WordPress 5.5.x < 5.5.13 Multiple Vulnerabilities

According to its self-reported version number, the detected WordPress application is affected by multiple vulnerabilities : - A potential disclosure of user email addresses. - An RCE POP Chains vulnerability. - A Cross-Site Scripting XSS vulnerability in the post link navigation block. - An issue...

6.6AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/10/18 12:0 a.m.113 views

WordPress 6.1.x < 6.1.4 Multiple Vulnerabilities

According to its self-reported version number, the detected WordPress application is affected by multiple vulnerabilities : - A potential disclosure of user email addresses. - An RCE POP Chains vulnerability. - A Cross-Site Scripting XSS vulnerability in the post link navigation block. - An issue...

6.6AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2023/10/18 12:0 a.m.20 views

WordPress 5.9.x < 5.9.8 Multiple Vulnerabilities

According to its self-reported version number, the detected WordPress application is affected by multiple vulnerabilities : - A potential disclosure of user email addresses. - An RCE POP Chains vulnerability. - A Cross-Site Scripting XSS vulnerability in the post link navigation block. - An issue...

6.6AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/10/18 12:0 a.m.8 views

WordPress 4.5.x < 4.5.30 Multiple Vulnerabilities

According to its self-reported version number, the detected WordPress application is affected by multiple vulnerabilities : - A potential disclosure of user email addresses. - An RCE POP Chains vulnerability. - A Cross-Site Scripting XSS vulnerability in the post link navigation block. - An issue...

6.6AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/10/18 12:0 a.m.24 views

WordPress 5.6.x < 5.6.12 Multiple Vulnerabilities

According to its self-reported version number, the detected WordPress application is affected by multiple vulnerabilities : - A potential disclosure of user email addresses. - An RCE POP Chains vulnerability. - A Cross-Site Scripting XSS vulnerability in the post link navigation block. - An issue...

6.6AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/10/18 12:0 a.m.26 views

WordPress 6.2.x < 6.2.3 Multiple Vulnerabilities

According to its self-reported version number, the detected WordPress application is affected by multiple vulnerabilities : - A potential disclosure of user email addresses. - An RCE POP Chains vulnerability. - A Cross-Site Scripting XSS vulnerability in the post link navigation block. - An issue...

6.6AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/10/18 12:0 a.m.8 views

WordPress 4.3.x < 4.3.32 Multiple Vulnerabilities

According to its self-reported version number, the detected WordPress application is affected by multiple vulnerabilities : - A potential disclosure of user email addresses. - An RCE POP Chains vulnerability. - A Cross-Site Scripting XSS vulnerability in the post link navigation block. - An issue...

6.6AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/10/18 12:0 a.m.109 views

WordPress 5.2.x < 5.2.19 Multiple Vulnerabilities

According to its self-reported version number, the detected WordPress application is affected by multiple vulnerabilities : - A potential disclosure of user email addresses. - An RCE POP Chains vulnerability. - A Cross-Site Scripting XSS vulnerability in the post link navigation block. - An issue...

6.6AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/10/18 12:0 a.m.21 views

WordPress 6.3.x < 6.3.2 Multiple Vulnerabilities

According to its self-reported version number, the detected WordPress application is affected by multiple vulnerabilities : - A potential disclosure of user email addresses. - An RCE POP Chains vulnerability. - A Cross-Site Scripting XSS vulnerability in the post link navigation block. - An issue...

6.6AI score
Exploits0References2
OpenVAS
OpenVAS
added 2023/10/13 12:0 a.m.34 views

WordPress Multiple Vulnerabilities (Oct 2023) - Windows

WordPress is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:wordpress:wordpress"; ifdescripti...

6.5CVSS4.8AI score0.03862EPSS
Exploits6References7
Rows per page
Query Builder