CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

11 matches found

NVD•added 2025/12/13 4:16 p.m.•3 views

CVE-2025-14540

The Userback plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the userbackgetjson function in all versions up to, and including, 1.0.15. This makes it possible for authenticated attackers, with Subscriber-level access and above, to extract...

4.3CVSS0.0004EPSS

Exploits0References2

Vulnrichment•added 2025/12/13 4:31 a.m.•2 views

CVE-2025-14540 Userback <= 1.0.15 - Missing Authorization to Authenticated (Subscriber+) Plugin's Configuration Exposure

The Userback plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the userbackgetjson function in all versions up to, and including, 1.0.15. This makes it possible for authenticated attackers, with Subscriber-level access and above, to extract...

4.3CVSS4.8AI score0.0004EPSS

Exploits0References2

Patchstack•added 2025/12/13 12:15 a.m.•6 views

WordPress Userback plugin <= 1.0.15 - Missing Authorization to Authenticated (Subscriber+) plugin's Configuration Exposure vulnerability

Missing Authorization to Authenticated Subscriber+ plugin's Configuration Exposure vulnerability discovered by jsonc in WordPress Plugin Userback versions = 1.0.15...

4.3CVSS6.8AI score0.0004EPSS

Exploits0References1Affected Software1

EUVD•added 2025/10/03 8:7 p.m.•0 views

EUVD-2023-50350

Malicious code in bioql PyPI...

8.8CVSS9AI score0.0007EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 4:48 a.m.•4 views

CVE-2023-46089

Cross-Site Request Forgery CSRF vulnerability in Lee Le @ Userback Userback plugin = 1.0.13 versions...

8.8CVSS7.1AI score0.0007EPSS

NVD•added 2023/10/22 10:15 p.m.•7 views

CVE-2023-46089

Cross-Site Request Forgery CSRF vulnerability in Lee Le @ Userback Userback plugin = 1.0.13 versions...

8.8CVSS5.8AI score0.0007EPSS

Exploits0References1

OSV•added 2023/10/22 10:15 p.m.•0 views

CVE-2023-46089

Cross-Site Request Forgery CSRF vulnerability in Lee Le @ Userback Userback plugin = 1.0.13 versions...

8.8CVSS7.3AI score0.0007EPSS

Exploits0References1

Prion•added 2023/10/22 10:15 p.m.•11 views

Cross site request forgery (csrf)

Cross-Site Request Forgery CSRF vulnerability in Lee Le @ Userback Userback plugin = 1.0.13 versions...

6.8CVSS8.8AI score0.0007EPSS

Exploits0References1Affected Software1

Cvelist•added 2023/10/22 9:14 p.m.•11 views

CVE-2023-46089 WordPress Userback Plugin <= 1.0.13 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in Lee Le @ Userback Userback plugin = 1.0.13 versions...

4.3CVSS9AI score0.0007EPSS

Exploits0References1

CVE•added 2023/10/22 9:14 p.m.•33 views

CVE-2023-46089

CVE-2023-46089 denotes a CSRF vulnerability in the WordPress Userback plugin, affected versions

8.8CVSS6.4AI score0.0007EPSS

Exploits0References1Affected Software1

Positive Technologies•added 2023/10/22 12:0 a.m.•1 views

PT-2023-29838 · Userback · Userback

Name of the Vulnerable Software and Affected Versions: Userback plugin versions 1.0.13 and earlier Description: The issue is a Cross-Site Request Forgery CSRF vulnerability. This means an attacker can trick a user into performing unintended actions on a web application that the user is...

8.8CVSS8.8AI score0.0007EPSS

Exploits0References5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by