Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Patchstack
Patchstackadded 2026/04/14 11:36 a.m.2 views

WordPress Trending/Popular Post Slider and Widget plugin <= 1.8.6 - Backdoor vulnerability

Backdoor vulnerability discovered by ? in WordPress Plugin Trending/Popular Post Slider and Widget versions = 1.8.6...

5.8AI score
Exploits0References1Affected Software1
CVE
CVEadded 2025/11/08 3:27 a.m.21 views

CVE-2025-7663

The CVE describes an unauthorized-access vulnerability in the WordPress Ovatheme Events Manager plugin, caused by missing capability checks in the /class-ovaem-ajax.php file. Affected versions are up to and including 1.8.6. The flaw allows unauthenticated attackers to perform privileged actions s...

6.5CVSS5.1AI score0.00145EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2024/10/29 12:0 a.m.1 views

PT-2024-33622 · Unknown · Sam Glover Client Power Tools Portal

Name of the Vulnerable Software and Affected Versions: Sam Glover Client Power Tools Portal versions 1.8.6 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for Reflected XSS attacks...

7.1CVSS5.6AI score0.00247EPSS
Exploits0References6
Positive Technologies
Positive Technologiesadded 2024/09/25 12:0 a.m.3 views

PT-2024-32544 · Unknown · Social Share Buttons By Supsystic +1

Name of the Vulnerable Software and Affected Versions: Supsystic Slider versions 1.8.6 and earlier Supsystic Social Share Buttons versions 2.2.9 and earlier Description: The issue is related to a Missing Authorization vulnerability in Supsystic Slider and Supsystic Social Share Buttons. This allo...

8.8CVSS6.8AI score0.00301EPSS
Exploits0References9
Positive Technologies
Positive Technologiesadded 2024/03/15 12:0 a.m.2 views

PT-2024-14168 · Wbw · Product Table By Wbw

Name of the Vulnerable Software and Affected Versions: Product Table by WBW versions 1.8.6 and earlier Description: A Cross Site Request Forgery CSRF issue affects the Product Table by WBW. This type of issue allows an attacker to trick a user into performing unintended actions on a web applicati...

8.8CVSS9.5AI score0.0007EPSS
Exploits0References7
Positive Technologies
Positive Technologiesadded 2023/11/18 12:0 a.m.1 views

PT-2023-27813 · Patreon · Patreon Wordpress

Name of the Vulnerable Software and Affected Versions: Patreon WordPress versions 1.8.6 and earlier Description: The issue is a Cross-Site Request Forgery CSRF vulnerability. This type of vulnerability allows an attacker to trick a user into performing unintended actions on a web application that...

8.8CVSS8.5AI score0.00137EPSS
Exploits0References5
ATTACKERKB
ATTACKERKBadded 2020/03/20 3:15 a.m.1 views

CVE-2019-19023

Cloud Native Computing Foundation Harbor prior to 1.8.6 and 1.9.3 has a Privilege Escalation Vulnerability in the VMware Harbor Container Registry for the Pivotal Platform...

8.8CVSS5.5AI score0.00423EPSS
Exploits0References3
RedHat Linux
RedHat Linuxadded 2008/10/21 2:52 p.m.1 views

ruby: DoS vulnerability in the REXML module

The REXML module in Ruby 1.8.6 through 1.8.6-p287, 1.8.7 through 1.8.7-p72, and 1.9 allows context-dependent attackers to cause a denial of service CPU consumption via an XML document with recursively nested entities, aka an "XML entity explosion."...

5CVSS7.1AI score0.11365EPSS
Exploits1References4
Rows per page
Query Builder