Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Patchstack
Patchstackadded 2026/03/19 10:50 p.m.6 views

WordPress Add Custom Fields to Media plugin <= 2.0.3 - Cross-Site Request Forgery to Custom Field Deletion via 'delete' Parameter vulnerability

Cross-Site Request Forgery to Custom Field Deletion via 'delete' Parameter vulnerability discovered by Nabil Irawan - Heroes Cyber Security in WordPress Plugin Add Custom Fields to Media versions = 2.0.3...

4.3CVSS5.8AI score0.0002EPSS
Exploits0References1Affected Software1
Patchstack
Patchstackadded 2025/11/04 5:20 a.m.6 views

WordPress All in One Time Clock Lite plugin <= 2.0.3 - Missing Authorization to Page Creation and Information Exposure vulnerability

Missing Authorization to Page Creation and Information Exposure vulnerability discovered by Athiwat Tiprasaharn Jitlada in WordPress Plugin All in One Time Clock Lite versions = 2.0.3...

6.5CVSS6.5AI score0.00152EPSS
Exploits0References1Affected Software1
CNNVD
CNNVDadded 2025/06/17 12:0 a.m.2 views

WordPress plugin WP Views Counter 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on servers running PHP and MySQL. WordPress plugin is an application plugin. A cross-site scripting vulnerability...

6.5CVSS6.1AI score0.00143EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2023/12/18 12:0 a.m.1 views

PT-2023-30608 · Unknown · Woocommerce Bookings

Name of the Vulnerable Software and Affected Versions: WooCommerce Bookings versions through 2.0.3 Description: A Cross-Site Request Forgery CSRF issue affects the software, allowing unauthorized actions to be performed on behalf of a user. Recommendations: For versions through 2.0.3, update to a...

8.8CVSS8.9AI score0.00074EPSS
Exploits0References5
OSV
OSVadded 2023/11/06 9:15 a.m.2 views

CVE-2023-45657

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in POSIMYTH Nexter allows SQL Injection.This issue affects Nexter: from n/a through 2.0.3...

9.8CVSS5.8AI score0.1119EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2022/07/05 12:0 a.m.2 views

PT-2022-20952 · Beego · Beego

Name of the Vulnerable Software and Affected Versions: Beego versions 2.0.3 and below Description: The leafInfo.match function uses path.join to deal with wildcard values, which can lead to cross directory risk. This issue affects the Beego framework, potentially allowing unauthorized access to...

9.8CVSS9.2AI score0.00452EPSS
Exploits1References13
PyPA
PyPAadded 2020/09/25 7:15 p.m.4 views

PYSEC-2020-285

In Tensorflow before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, the datasplits argument of tf.rawops.StringNGrams lacks validation. This allows a user to pass values that can cause heap overflow errors and even leak contents of memory In the linked code snippet, all the binary strings after ...

9.8CVSS7.3AI score0.00544EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder