Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

RedhatCVE
RedhatCVEadded 2025/05/23 12:31 a.m.10 views

CVE-2022-4932

The Total Upkeep plugin for WordPress is vulnerable to information disclosure in versions up to, and including 1.14.13. This is due to missing authorization on the heartbeatreceived function that triggers on WordPress heartbeat. This makes it possible for authenticated attackers, with...

4.3CVSS6.2AI score0.0018EPSS
Exploits0References1
OSV
OSVadded 2025/05/07 3:16 p.m.0 views

CVE-2025-47540

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in weDevs weMail allows Retrieve Embedded Sensitive Data. This issue affects weMail: from n/a through 1.14.13...

7.5CVSS5.8AI score
Exploits0References1
SUSE CVE
SUSE CVEadded 2025/02/06 3:47 a.m.1 views

SUSE CVE-2025-24883

go-ethereum geth is a golang execution layer implementation of the Ethereum protocol. A vulnerable node can be forced to shutdown/crash using a specially crafted message. This vulnerability is fixed in 1.14.13...

8.7CVSS7AI score0.00037EPSS
Exploits0References3
Github Security Blog
Github Security Blogadded 2025/01/30 5:51 p.m.26 views

Go Ethereum vulnerable to DoS via malicious p2p message

Impact A vulnerable node can be forced to shutdown/crash using a specially crafted message. During the peer-to-peer connection handshake, a shared secret key is computed. The implementation did not verify whether the EC public key provided by the remote party is a valid point on the secp256k1...

8.7CVSS9.3AI score0.00037EPSS
Exploits0References6Affected Software1
OSV
OSVadded 2025/01/30 3:58 p.m.8 views

CVE-2025-24883 go-ethereum has a DoS via malicious p2p message

go-ethereum geth is a golang execution layer implementation of the Ethereum protocol. A vulnerable node can be forced to shutdown/crash using a specially crafted message. This vulnerability is fixed in 1.14.13...

8.7CVSS6.7AI score0.00037EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2024/02/10 12:0 a.m.1 views

PT-2024-14144 · Woocommerce · Pay With Vipps/Mobilepay For Woocommerce

Name of the Vulnerable Software and Affected Versions: Pay with Vipps and MobilePay for WooCommerce versions 1.14.13 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, which allows Stored XSS. This mean...

6.5CVSS6.1AI score0.00077EPSS
Exploits0References6
Positive Technologies
Positive Technologiesadded 2023/03/07 12:0 a.m.3 views

PT-2023-15919 · WordPress · Total Upkeep

Name of the Vulnerable Software and Affected Versions: Total Upkeep plugin for WordPress versions up to, and including 1.14.13 Description: The issue is related to information disclosure due to missing authorization on the heartbeat received function, which triggers on WordPress heartbeat. This...

4.3CVSS4.2AI score0.0018EPSS
Exploits0References6
CNNVD
CNNVDadded 2023/03/07 12:0 a.m.4 views

WordPress plugin Total Upkeep 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exists in...

4.3CVSS5.2AI score0.0018EPSS
Exploits0References3
Rows per page
Query Builder