Lucene search
K

44 matches found

ATTACKERKB
ATTACKERKB
added 2026/01/22 4:52 p.m.4 views

CVE-2025-69097

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in VibeThemes WPLMS wplmsplugin allows Path Traversal.This issue affects WPLMS: from n/a through = 1.9.9.5.4...

8.1CVSS5.3AI score0.00479EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/01/22 12:0 a.m.9 views

PT-2026-4167

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in VibeThemes WPLMS wplms plugin allows Path Traversal.This issue affects WPLMS: from n/a through = 1.9.9.5.4...

5.4AI score0.00479EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/12/10 3:13 p.m.4 views

CVE-2025-63035

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in VibeThemes WPLMS wplmsplugin allows DOM-Based XSS.This issue affects WPLMS: from n/a through = 1.9.9.5.4...

6.5CVSS6.4AI score0.00161EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/10/23 3:13 p.m.6 views

CVE-2025-53420

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in VibeThemes WPLMS wplmsplugin allows Reflected XSS.This issue affects WPLMS: from n/a through = 1.9.9.8...

7.1CVSS6.4AI score0.00228EPSS
Exploits0References1
NVD
NVD
added 2025/10/22 3:15 p.m.5 views

CVE-2025-53420

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in VibeThemes WPLMS wplmsplugin allows Reflected XSS.This issue affects WPLMS: from n/a through = 1.9.9.8...

7.1CVSS0.00228EPSS
Exploits0References1
NVD
NVD
added 2025/10/22 3:15 p.m.5 views

CVE-2025-49925

Missing Authorization vulnerability in VibeThemes WPLMS wplmsplugin allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects WPLMS: from n/a through = 1.9.9.7...

7.5CVSS0.00333EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/10/22 12:0 a.m.9 views

PT-2025-43259

Name of the Vulnerable Software and Affected Versions VibeThemes WPLMS versions through 1.9.9.8 Description The WPLMS plugin contains a flaw related to improper input handling during web page generation, which allows for Reflected Cross-Site Scripting XSS. This means that malicious code can be...

7.1CVSS6.2AI score0.00228EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-52944

Malicious code in bioql PyPI...

10CVSS8.9AI score0.00743EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-52948

Malicious code in bioql PyPI...

9.9CVSS9.2AI score0.00682EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-52953

Malicious code in bioql PyPI...

8.5CVSS8.7AI score0.00459EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2024-52952

Malicious code in bioql PyPI...

9.1CVSS9.2AI score0.00557EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2024-52941

Malicious code in bioql PyPI...

9.8CVSS9AI score0.00614EPSS
Exploits0References1
NVD
NVD
added 2025/09/22 7:16 p.m.4 views

CVE-2025-58668

Missing Authorization vulnerability in VibeThemes WPLMS wplms allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WPLMS : from n/a through = 4.970...

9.8CVSS0.00263EPSS
Exploits0References1
OSV
OSV
added 2025/09/22 7:16 p.m.4 views

CVE-2025-58668

Missing Authorization vulnerability in VibeThemes WPLMS allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects WPLMS : from n/a through 4.970...

9.8CVSS5.8AI score0.00263EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 9:20 a.m.12 views

CVE-2024-56044

Authentication Bypass Using an Alternate Path or Channel vulnerability in VibeThemes WPLMS wplmsplugin allows Authentication Bypass.This issue affects WPLMS: from n/a through = 1.9.9...

9.8CVSS7.4AI score0.00796EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 9:20 a.m.5 views

CVE-2024-56053

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in VibeThemes WPLMS wplmsplugin allows SQL Injection.This issue affects WPLMS: from n/a through 1.9.9.5.3...

8.8CVSS7.3AI score0.00417EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 9:15 a.m.9 views

CVE-2024-56052

Unrestricted Upload of File with Dangerous Type vulnerability in VibeThemes WPLMS wplmsplugin allows Upload a Web Shell to a Web Server.This issue affects WPLMS: from n/a through 1.9.9.5.2...

9.9CVSS7.4AI score0.00682EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 9:10 a.m.6 views

CVE-2024-56049

Path Traversal: '.../...//' vulnerability in VibeThemes WPLMS wplmsplugin allows Path Traversal.This issue affects WPLMS: from n/a through 1.9.9.5.2...

8.5CVSS7.2AI score0.00441EPSS
Exploits0References1
NVD
NVD
added 2024/12/31 2:15 p.m.7 views

CVE-2024-56044

Authentication Bypass Using an Alternate Path or Channel vulnerability in VibeThemes WPLMS wplmsplugin allows Authentication Bypass.This issue affects WPLMS: from n/a through = 1.9.9...

9.8CVSS0.00796EPSS
Exploits0References1
NVD
NVD
added 2024/12/31 2:15 p.m.11 views

CVE-2024-56043

Incorrect Privilege Assignment vulnerability in VibeThemes WPLMS wplmsplugin allows Privilege Escalation.This issue affects WPLMS: from n/a through = 1.9.9...

9.8CVSS0.00614EPSS
Exploits0References1
Rows per page
Query Builder