Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

38 matches found

Patchstack
Patchstackadded 2026/05/01 9:14 a.m.3 views

WordPress WPIDE – File Manager & Code Editor plugin <= 3.5.1 - Unauthenticated Reflected Cross-Site Scripting vulnerability

Unauthenticated Reflected Cross-Site Scripting vulnerability discovered by Asaf Mozes in WordPress Plugin WPIDE – File Manager & Code Editor versions = 3.5.1...

6.1CVSS5.8AI score0.00135EPSS
Exploits0References1Affected Software1
EUVD
EUVDadded 2025/10/03 8:7 p.m.4 views

EUVD-2022-34536

Malicious code in bioql PyPI...

7.2CVSS7AI score0.01399EPSS
Exploits1References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2022-38127

Malicious code in bioql PyPI...

4.9CVSS5.4AI score0.00937EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2022-43515

Malicious code in bioql PyPI...

7.2CVSS7.1AI score0.01069EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2025/05/23 10:44 a.m.4 views

CVE-2024-9546

The WPIDE – File Manager & Code Editor plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, and including, 3.4.9. This is due to the plugin utilizing the PHP-Parser library, which outputs parser rebuild command execution results. This makes it possible for...

5.3CVSS6.9AI score0.01259EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/22 11:49 p.m.4 views

CVE-2022-2261

The WPIDE WordPress plugin before 3.0 does not sanitize and validate the filename parameter before using it in a require statement in the admin dashboard, leading to a Local File Inclusion issue...

7.2CVSS6.7AI score0.01399EPSS
Exploits1References1
NVD
NVDadded 2024/10/15 12:15 a.m.12 views

CVE-2024-9546

The WPIDE – File Manager & Code Editor plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, and including, 3.4.9. This is due to the plugin utilizing the PHP-Parser library, which outputs parser rebuild command execution results. This makes it possible for...

5.3CVSS0.01259EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2024/10/14 11:29 p.m.14 views

CVE-2024-9546 WPIDE <= 3.4.9 - Unauthenticated Full Path Dislcosure

The WPIDE – File Manager & Code Editor plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, and including, 3.4.9. This is due to the plugin utilizing the PHP-Parser library, which outputs parser rebuild command execution results. This makes it possible for...

5.3CVSS5.5AI score0.01259EPSS
Exploits0References2
CVE
CVEadded 2024/10/14 11:29 p.m.40 views

CVE-2024-9546

CVE-2024-9546 affects the WPIDE – File Manager & Code Editor WordPress plugin (versions up to and including 3.4.9). The issue is an Unauthenticated Full Path Disclosure caused by the plugin’s use of the PHP-Parser library, which outputs parser rebuild command results. The disclosed information ca...

5.3CVSS5.8AI score0.01259EPSS
Exploits0References2Affected Software1
Cvelist
Cvelistadded 2024/10/14 11:29 p.m.18 views

CVE-2024-9546 WPIDE <= 3.4.9 - Unauthenticated Full Path Dislcosure

The WPIDE – File Manager & Code Editor plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, and including, 3.4.9. This is due to the plugin utilizing the PHP-Parser library, which outputs parser rebuild command execution results. This makes it possible for...

5.3CVSS0.01259EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2024/10/14 12:0 a.m.2 views

PT-2024-39690 · Unknown +1 · Php-Parser +1

Name of the Vulnerable Software and Affected Versions: WPIDE – File Manager & Code Editor plugin for WordPress versions up to, and including, 3.4.9 Description: The WPIDE – File Manager & Code Editor plugin for WordPress is vulnerable to Full Path Disclosure. This issue arises from the plugin's...

5.3CVSS7.8AI score0.01259EPSS
Exploits0References9
Patchstack
Patchstackadded 2024/10/14 12:0 a.m.9 views

WordPress WPIDE – File Manager & Code Editor Plugin <= 3.4.9 is vulnerable to Full Path Disclosure (FPD)

Software WPIDE – File Manager & Code Editor Type Plugin Vulnerable versions = 3.4.9 Fixed in 3.5.0 OWASP Top 10 A5: Security Misconfiguration Classification Full Path Disclosure FPD CVE CVE-2024-9546 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 611d26fe2e96 Credits TANG...

5.3CVSS6.6AI score0.01259EPSS
Exploits0References3Affected Software1
CNNVD
CNNVDadded 2024/10/14 12:0 a.m.2 views

WordPress plugin WPIDE 信息泄露漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. An information...

5.3CVSS6.4AI score0.01259EPSS
Exploits0References2
Patchstack
Patchstackadded 2023/07/18 12:0 a.m.3 views

WordPress WPIDE – File Manager & Code Editor Plugin <= 3.4.6 is vulnerable to Cross Site Scripting (XSS)

Software WPIDE – File Manager & Code Editor Type Plugin Vulnerable versions = 3.4.6 Fixed in 3.4.7 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 2983e75b4eab Credits Rafie Muhamma...

6.4AI score
Exploits0References3Affected Software1
OSV
OSVadded 2022/09/21 8:15 p.m.0 views

CVE-2022-40217

Authenticated admin+ Arbitrary File Edit/Upload vulnerability in XplodedThemes WPide plugin = 2.6 at WordPress...

7.2CVSS5.8AI score0.01069EPSS
Exploits0References2
Prion
Prionadded 2022/09/21 8:15 p.m.10 views

Privilege escalation

Authenticated admin+ Arbitrary File Edit/Upload vulnerability in XplodedThemes WPide plugin = 2.6 at WordPress...

5.8CVSS6.9AI score0.01069EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichmentadded 2022/09/21 7:9 p.m.6 views

CVE-2022-40217 WordPress WPide plugin <= 2.6 - Authenticated Arbitrary File Edit/Upload vulnerability

Authenticated admin+ Arbitrary File Edit/Upload vulnerability in XplodedThemes WPide plugin = 2.6 at WordPress...

6.5CVSS6.6AI score0.01069EPSS
Exploits0References2
CVE
CVEadded 2022/09/21 7:9 p.m.50 views

CVE-2022-40217

CVE-2022-40217 concerns the WordPress WPide plugin (XplodedThemes) versions ≤ 2.6, with an authenticated ARBITRARY FILE EDIT/UPLOAD vulnerability. Multiple sources confirm that an admin+ user can edit/upload arbitrary files within WPide, indicating a high impact under the documented conditions. P...

7.2CVSS6.7AI score0.01069EPSS
Exploits0References2Affected Software1
Cvelist
Cvelistadded 2022/09/21 7:9 p.m.14 views

CVE-2022-40217 WordPress WPide plugin <= 2.6 - Authenticated Arbitrary File Edit/Upload vulnerability

Authenticated admin+ Arbitrary File Edit/Upload vulnerability in XplodedThemes WPide plugin = 2.6 at WordPress...

6.5CVSS7.2AI score0.01069EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2022/09/21 12:0 a.m.2 views

PT-2022-25289 · WordPress · Xplodedthemes Wpide

Name of the Vulnerable Software and Affected Versions: XplodedThemes WPide plugin versions = 2.6 Description: The issue is an Authenticated Arbitrary File Edit/Upload vulnerability. This means that an attacker with admin or higher privileges can edit or upload files arbitrarily in the XplodedThem...

7.2CVSS6.8AI score0.01069EPSS
Exploits0References5
Rows per page
Query Builder