Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Patchstack
Patchstackadded 2025/12/31 12:0 a.m.3 views

WordPress WordPress Auction plugin <= 3.7 - Editor+ Stored XSS vulnerability

Editor+ Stored XSS vulnerability discovered by Bob Matyas in WordPress Plugin WordPress Auction Plugin versions = 3.7...

4.8CVSS5.9AI score0.00311EPSS
Exploits1References1Affected Software1
Positive Technologies
Positive Technologiesadded 2023/07/11 12:0 a.m.3 views

PT-2023-19881 · Unknown · Buy Me A Coffee

Name of the Vulnerable Software and Affected Versions: Buy Me a Coffee versions 3.7 and earlier Description: A Missing Authorization issue has been identified. This issue affects Buy Me a Coffee, indicating a potential lack of proper authorization checks. Recommendations: For versions 3.7 and...

4.3CVSS7.1AI score0.00237EPSS
Exploits0References5
OSV
OSVadded 2022/12/05 4:15 a.m.1 views

DEBIAN-CVE-2022-43500

Cross-site scripting vulnerability in WordPress versions prior to 6.0.3 allows a remote unauthenticated attacker to inject an arbitrary script. The developer also provides new patched releases for all versions since 3.7...

6.1CVSS6AI score0.00729EPSS
Exploits0References1
OSV
OSVadded 2021/03/19 9:15 p.m.0 views

UBUNTU-CVE-2019-14828

A vulnerability was found in Moodle affecting 3.7 to 3.7.1, 3.6 to 3.6.5, 3.5 to 3.5.7 and earlier unsupported versions, where users with the capability to create courses were assigned as a teacher in those courses, regardless of whether they had the capability to be automatically assigned that...

4.3CVSS6.3AI score0.00629EPSS
Exploits0References3
OSV
OSVadded 2020/11/19 5:15 p.m.3 views

UBUNTU-CVE-2020-25703

The participants table download in Moodle always included user emails, but should have only done so when users' emails are not hidden. Versions affected: 3.9 to 3.9.2, 3.8 to 3.8.5 and 3.7 to 3.7.8. This is fixed in moodle 3.9.3, 3.8.6, 3.7.9, and 3.10...

5.3CVSS6.4AI score0.01519EPSS
Exploits0References4
CNVD
CNVDadded 2020/05/07 12:0 a.m.4 views

WordPress Access Control Error Vulnerability

WordPress is a set of blogging platforms developed using the PHP language by the WordPress Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. An access control error vulnerability exists in WordPress versions 3.7 through 5.4. The vulnerability arises...

7.5CVSS6.7AI score0.02334EPSS
Exploits0References1
OSV
OSVadded 2018/10/01 1:29 p.m.2 views

CVE-2018-14788

Fuji Electric Alpha5 Smart Loader Versions 3.7 and prior. A buffer overflow information disclosure vulnerability occurs when parsing certain file types...

5.3CVSS6AI score0.01395EPSS
Exploits0References2
CNVD
CNVDadded 2016/05/31 12:0 a.m.2 views

Cybozu Garoon Directory Traversal Vulnerability (CNVD-2016-03722)

Cybozu Garoon is a portal-type OA office system of Cybozu Japan. The system provides portal, e-mail, bookmarks, scheduling, bulletin boards, document management, and other functions, and supports free switching among three languages Chinese, Japanese, and English. A directory traversal...

4.3CVSS6.9AI score0.01455EPSS
Exploits0References1
Rows per page
Query Builder