CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

38 matches found

RedhatCVE•added 2026/03/26 5:4 p.m.•1 views

CVE-2026-25401

Missing Authorization vulnerability in Arni Cinco WPCargo Track & Trace wpcargo allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WPCargo Track & Trace: from n/a through = 8.0.2...

7.5CVSS5.8AI score0.00047EPSS

Exploits0References1

EUVD•added 2026/03/25 6:31 p.m.•0 views

EUVD-2026-15715

5.8AI score0.00047EPSS

Exploits0References2

NVD•added 2026/03/25 5:16 p.m.•2 views

CVE-2026-25401

7.5CVSS0.00047EPSS

Exploits0References1

Cvelist•added 2026/03/25 4:14 p.m.•24 views

CVE-2026-25401 WordPress WPCargo Track & Trace plugin <= 8.0.2 - Broken Access Control vulnerability

7.5CVSS0.00047EPSS

Exploits0References1

Vulnrichment•added 2026/03/25 4:14 p.m.•0 views

CVE-2026-25401 WordPress WPCargo Track & Trace plugin <= 8.0.2 - Broken Access Control vulnerability

7.5CVSS5.9AI score0.00047EPSS

Exploits0References1

CVE•added 2026/03/25 4:14 p.m.•4 views

CVE-2026-25401

The CVE-2026-25401 entry describes a Missing Authorization vulnerability in the WordPress WPCargo Track & Trace plugin (Arni Cinco WPCargo Track & Trace) with a Broken Access Control issue affecting versions n/a through 8.0.2. The underlying root cause is incorrectly configured access control sec...

7.5CVSS5.8AI score0.00047EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2025-8782

Malicious code in bioql PyPI...

4.3CVSS8.7AI score0.00234EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2024-52396

Malicious code in bioql PyPI...

5.4CVSS8.9AI score0.00207EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2024-40786

Malicious code in bioql PyPI...

9.8CVSS6.5AI score0.0038EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2022-24745

Malicious code in bioql PyPI...

4.8CVSS5.2AI score0.00225EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 8:12 a.m.•5 views

CVE-2024-54271

5.4CVSS7.2AI score0.00207EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 7:24 p.m.•5 views

CVE-2021-25003

The WPCargo Track & Trace WordPress plugin before 6.9.0 contains a file which could allow unauthenticated attackers to write a PHP file anywhere on the web server, leading to RCE...

9.8CVSS6.9AI score0.91581EPSS

Exploits3References1

RedhatCVE•added 2025/04/02 1:37 p.m.•6 views

CVE-2025-31609

4.3CVSS7.2AI score0.00234EPSS

Exploits0References1

NVD•added 2025/03/31 1:15 p.m.•8 views

CVE-2025-31609

4.3CVSS0.00234EPSS

Exploits0References1

Vulnrichment•added 2025/03/31 12:55 p.m.•6 views

CVE-2025-31609 WordPress WPCargo Track & Trace plugin <= 7.0.6 - Insecure Direct Object References (IDOR) vulnerability

Missing Authorization vulnerability in Arni Cinco WPCargo Track & Trace allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects WPCargo Track & Trace: from n/a through 7.0.6...

4.3CVSS6.9AI score0.00234EPSS

Exploits0References1

Cvelist•added 2025/03/31 12:55 p.m.•14 views

CVE-2025-31609 WordPress WPCargo Track & Trace plugin <= 8.0.2 - Insecure Direct Object References (IDOR) vulnerability

4.3CVSS0.00234EPSS

Exploits0References1

CVE•added 2025/03/31 12:55 p.m.•49 views

CVE-2025-31609

Technical details about CVE-2025-31609 are not provided in the supplied documents. Please monitor for updates from the vendor/NVD; no product versions, impact, or fixes are disclosed here.

4.3CVSS7.2AI score0.00234EPSS

Exploits0References1

RedhatCVE•added 2025/02/04 10:46 p.m.•4 views

CVE-2024-44004

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Arni Cinco WPCargo Track & Trace wpcargo allows SQL Injection.This issue affects WPCargo Track & Trace: from n/a through = 8.0.2...

9.8CVSS5.9AI score0.0038EPSS

Exploits0References1

NVD•added 2024/12/13 3:15 p.m.•6 views

CVE-2024-54271

5.4CVSS0.00207EPSS

Exploits0References1

CVE•added 2024/12/13 2:24 p.m.•40 views

CVE-2024-54271

CVE-2024-54271 is a Missing Authorization vulnerability in WPPlugin WP Cargo Track & Trace (WPTaskForce) affecting versions up to 7.0.6. The issue arises from Incorrectly Configured Access Control Security Levels, enabling potential unauthorized Settings updates. Public records (RH) indicate the ...

5.4CVSS7.2AI score0.00207EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by