Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

CVE
CVEadded 2026/03/13 11:42 a.m.9 views

CVE-2026-32458

The CVE details an SQL Injection vulnerability in the WordPress WOLF plugin (RealMag777 WOLF bulk-editor) affecting versions up to 1.0.8.7. The issue is described as an improper neutralization of special elements used in an SQL command, enabling Blind SQL Injection. No exploit specifics or affect...

7.6CVSS5.8AI score0.00041EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2026/03/13 12:0 a.m.2 views

PT-2026-25302

CVE-2026-32458 Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in RealMag777 WOLF bulk-editor allows Blind SQL Injection.This issue affects WOLF https://t.co/TCap5cW2sZ...

7.6CVSS5.8AI score0.00041EPSS
Exploits0References3
Patchstack
Patchstackadded 2026/03/12 10:39 a.m.3 views

WordPress WOLF plugin <= 1.0.8.7 - SQL Injection vulnerability

SQL Injection vulnerability discovered by Nguyen Ba Khanh in WordPress Plugin WOLF versions = 1.0.8.7...

7.6CVSS5.9AI score0.00041EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVEadded 2026/01/09 9:26 a.m.1 views

CVE-2023-4017

The Goya theme for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘attra-color’, 'attra-size', and 'product-cata' parameters in versions up to, and including, 1.0.8.7 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attacker...

6.1CVSS5.6AI score0.01684EPSS
Exploits0References1
CNNVD
CNNVDadded 2025/04/01 12:0 a.m.1 views

WordPress plugin ElementsCSS Addons for Elementor 代码问题漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A code issue...

5.4CVSS6.6AI score0.00586EPSS
Exploits0References2
NVD
NVDadded 2025/01/07 11:15 a.m.8 views

CVE-2025-22321

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in TheInnovs ElementsCSS Addons for Elementor css-for-elementor allows Stored XSS.This issue affects ElementsCSS Addons for Elementor: from n/a through = 1.0.8.9...

6.5CVSS0.00254EPSS
Exploits0References1
CVE
CVEadded 2025/01/07 10:48 a.m.48 views

CVE-2025-22321

CVE-2025-22321 is a stored XSS in the WordPress plugin ElementsCSS Addons for Elementor (component: ElementsCSS Addons for Elementor) affecting versions up to 1.0.8.7. Description and related records confirm improper neutralization of input during web page generation leading to stored cross-site ...

6.5CVSS7.2AI score0.00254EPSS
Exploits0References1
CNNVD
CNNVDadded 2025/01/07 12:0 a.m.2 views

WordPress plugin ElementsCSS Addons for Elementor 跨站脚本漏洞

WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. Cross-site scripting vulnerability exists in WordPress plugin ElementsCSS Addons for Elementor version...

6.5CVSS6.2AI score0.00254EPSS
Exploits0References1
Rows per page
Query Builder