Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Positive Technologies
Positive Technologiesadded 2026/02/19 12:0 a.m.5 views

PT-2026-20624

Name of the Vulnerable Software and Affected Versions IDonate – Blood Donation, Request And Donor Management System plugin for WordPress versions 2.1.5 through 2.1.9 Description The IDonate plugin for WordPress has a flaw that allows unauthorized privilege escalation. Attackers with...

8.8CVSS5.2AI score0.00281EPSS
Exploits0References7
Patchstack
Patchstackadded 2026/01/26 7:59 a.m.2 views

WordPress Nova Blocks plugin <= 2.1.9 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by theviper17 in WordPress Plugin Nova Blocks versions = 2.1.9...

6.5CVSS5.9AI score0.00156EPSS
Exploits0Affected Software1
ATTACKERKB
ATTACKERKBadded 2026/01/23 2:28 p.m.1 views

CVE-2026-24541

Missing Authorization vulnerability in mkscripts Download After Email download-after-email allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Download After Email: from n/a through = 2.1.9...

5.3CVSS5.9AI score0.00197EPSS
Exploits0References2
CNNVD
CNNVDadded 2025/11/07 12:0 a.m.4 views

WordPress plugin IDonate – Blood Donation, Request And Donor Management System 授权问题漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. An authorization issue...

8.8CVSS6.4AI score0.00297EPSS
Exploits0References4
RedhatCVE
RedhatCVEadded 2025/04/06 4:37 p.m.4 views

CVE-2025-32122

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Stylemix uListing ulisting allows Blind SQL Injection.This issue affects uListing: from n/a through = 2.2.0...

7.6CVSS7.3AI score0.00467EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2025/01/02 12:0 a.m.3 views

PT-2025-3218 · Themelooks · Themelooks Enter Addons

Name of the Vulnerable Software and Affected Versions: ThemeLooks Enter Addons versions n/a through 2.1.9 Description: The issue is related to improper neutralization of input during web page generation, which allows stored cross-site scripting XSS. This means an attacker can inject malicious...

6.5CVSS8.8AI score0.00323EPSS
Exploits0References5
CNNVD
CNNVDadded 2024/11/21 12:0 a.m.2 views

WordPress plugin StreamWeasels Online Status Bar 跨站脚本漏洞

WordPress and WordPress plugin are products of the WordPress Foundation, a blogging platform developed in PHP. WordPress plugin is an application plugin that supports personal blog sites on PHP and MySQL servers. A cross-site scripting vulnerability exists in the WordPress plugin StreamWeasels...

6.4CVSS7.5AI score0.00395EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2023/12/31 12:0 a.m.4 views

PT-2023-31938 · WordPress · Everest Backup

Name of the Vulnerable Software and Affected Versions: Everest Backup – WordPress Cloud Backup, Migration, Restore & Cloning Plugin versions n/a through 2.1.9 Description: The issue is related to the exposure of sensitive information to an unauthorized actor. This is a problem where sensitive dat...

7.5CVSS7.6AI score0.00453EPSS
Exploits0References8
Rows per page
Query Builder