CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2023-32608

Malicious code in bioql PyPI...

4.3CVSS9.1AI score0.00458EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 1:44 a.m.•3 views

CVE-2023-28990

Missing Authorization vulnerability in HashThemes Viral Mag allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Viral Mag: from n/a through 1.0.9...

4.3CVSS8.5AI score0.00458EPSS

Exploits0References1

ATTACKERKB•added 2024/12/13 3:15 p.m.•4 views

CVE-2023-28990

Missing Authorization vulnerability in hashthemes Viral Mag viral-mag allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Viral Mag: from n/a through = 1.0.9...

4.3CVSS5.8AI score0.00458EPSS

Exploits0References3

NVD•added 2024/12/13 3:15 p.m.•7 views

CVE-2023-28990

Missing Authorization vulnerability in HashThemes Viral Mag allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Viral Mag: from n/a through 1.0.9...

4.3CVSS0.00458EPSS

Exploits0References1

Cvelist•added 2024/12/13 2:23 p.m.•17 views

CVE-2023-28990 WordPress Viral Mag theme <= 1.0.9 - Authenticated Arbitrary Plugin Activation Vulnerability

Missing Authorization vulnerability in HashThemes Viral Mag allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Viral Mag: from n/a through 1.0.9...

4.3CVSS0.00458EPSS

Exploits0References1

Vulnrichment•added 2024/12/13 2:23 p.m.•9 views

CVE-2023-28990 WordPress Viral Mag theme <= 1.0.9 - Authenticated Arbitrary Plugin Activation Vulnerability

Missing Authorization vulnerability in hashthemes Viral Mag viral-mag allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Viral Mag: from n/a through = 1.0.9...

4.3CVSS6.9AI score0.00458EPSS

Exploits0References1

CVE•added 2024/12/13 2:23 p.m.•34 views

CVE-2023-28990

CVE-2023-28990 : WordPress theme Viral Mag (versions ≤ 1.0.9) suffers a Missing Authorization flaw that enables an authenticated user withsubscriber privileges to activate plugins arbitrarily due to broken access control. The issue is classed as a Medium risk with CVSSv3.1 score 4.3 (AV:N/AC:L/PR...

4.3CVSS8.5AI score0.00458EPSS

Exploits0References1

CNNVD•added 2024/12/13 12:0 a.m.•1 views

WordPress plugin Viral Mag 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

4.3CVSS8.6AI score0.00458EPSS

Exploits0References1

Positive Technologies•added 2024/12/13 12:0 a.m.•2 views

PT-2024-12186 · Hasthemes · Hashthemes Viral Mag

Name of the Vulnerable Software and Affected Versions: HashThemes Viral Mag versions 1.0.9 and earlier Description: The issue is related to a Missing Authorization vulnerability, which allows exploiting incorrectly configured access control security levels. Recommendations: For HashThemes Viral M...

4.3CVSS9.5AI score0.00458EPSS

Exploits0References3

Patchstack•added 2023/03/30 12:0 a.m.•7 views

WordPress Viral Mag Theme <= 1.0.9 is vulnerable to Broken Authentication

Software Viral Mag Type Theme Vulnerable versions = 1.0.9 Fixed in 1.1.0 OWASP Top 10 A2: Broken Authentication Classification Broken Authentication CVE CVE-2023-28990 Patch priority Medium CVSS severity Medium 4.3 Developer Claim ownership PSID b28f73fc2c08 Credits Dave Jong Patchstack Required...

6.6AI score0.00458EPSS

Exploits0References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by