Lucene search
K

6 matches found

Positive Technologies
Positive Technologies
added 2026/05/12 12:0 a.m.15 views

PT-2026-40268

WGDashboard is a dashboard for WireGuard VPN. Prior to 4.3.2, there are critical vulnerabilities affecting WGDashboard that, if exploited, could allow unauthorized parties to access the host file system without authentication. This vulnerability is fixed in 4.3.2...

9.3CVSS5.8AI score0.00434EPSS
Exploits0References3
CVE
CVE
added 2026/03/13 11:42 a.m.11 views

CVE-2026-32447

The CVE concerns the WordPress Atarim plugin (atarim-visual-collaboration) with versions up to and including 4.3.2. The issue is a Missing Authorization vulnerability caused by incorrectly configured access control security levels, enabling unauthorized exposure or actions. Affected scope: Atarim...

4.3CVSS5.8AI score0.00159EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/02/19 8:35 p.m.4 views

CVE-2026-27327

Missing Authorization vulnerability in YayCommerce YayMail – WooCommerce Email Customizer yaymail allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects YayMail – WooCommerce Email Customizer: from n/a through = 4.3.2...

5.5AI score0.002EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/02/18 12:0 a.m.8 views

PT-2026-20294

The YayMail – WooCommerce Email Customizer plugin for WordPress is vulnerable to unauthorized license key deletion due to a missing authorization check on the /yaymail-license/v1/license/delete REST endpoint in versions up to, and including, 4.3.2. This makes it possible for authenticated...

5.3CVSS5.5AI score0.00307EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/01/23 12:0 a.m.11 views

WordPress plugin Edwiser Bridge has a security vulnerability

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. The...

5.4CVSS5.8AI score0.00209EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/04/02 5:36 p.m.18 views

CVE-2025-31116

Mobile Security Framework MobSF is a pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis. The mitigation for CVE-2024-29190 in validhost uses socket.gethostbyname, which is vulnerable to SSRF abuse using DNS rebinding technique. This...

9.8CVSS7.1AI score0.00712EPSS
Exploits2References1
Rows per page
Query Builder