CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

Patchstack•added 2026/01/25 10:24 a.m.•5 views

WordPress Webpushr plugin <= 4.38.0 - Sensitive Data Exposure vulnerability

Sensitive Data Exposure vulnerability discovered by Trương Hữu Phúc truonghuuphuc in WordPress Plugin Webpushr versions = 4.38.0...

7.5CVSS5.9AI score0.00015EPSS

Exploits0Affected Software1

Cvelist•added 2026/01/23 2:28 p.m.•34 views

CVE-2026-24536 WordPress Webpushr plugin <= 4.38.0 - Sensitive Data Exposure vulnerability

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in webpushr Webpushr webpushr-web-push-notifications allows Retrieve Embedded Sensitive Data.This issue affects Webpushr: from n/a through = 4.38.0...

5.3CVSS0.00015EPSS

Exploits0References1

Vulnrichment•added 2026/01/23 2:28 p.m.•2 views

CVE-2026-24536 WordPress Webpushr plugin <= 4.38.0 - Sensitive Data Exposure vulnerability

5.3CVSS5.9AI score0.00015EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2023-39078

Malicious code in bioql PyPI...

8.8CVSS9.1AI score0.00096EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 3:57 a.m.•3 views

CVE-2023-35041

Cross-Site Request Forgery CSRF vulnerability leading to Local File Inclusion LF in Webpushr Web Push Notifications Web Push Notifications – Webpushr plugin = 4.34.0 versions...

8.8CVSS7AI score0.00096EPSS

Exploits0

Vulnrichment•added 2024/05/06 6:32 p.m.•14 views

CVE-2024-34369 WordPress Web Push Notifications – Webpushr plugin <= 4.35.0 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Webpushr Web Push Notifications Webpushr allows Reflected XSS.This issue affects Webpushr: from n/a through 4.35.0...

7.1CVSS6.9AI score0.00186EPSS

Exploits0References1

Patchstack•added 2024/05/03 11:14 a.m.•3 views

WordPress Web Push Notifications – Webpushr plugin <= 4.35.0 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Dimas Maulana Patchstack Alliance in WordPress Plugin Webpushr versions = 4.35.0...

7.1CVSS6.1AI score0.00186EPSS

Exploits0Affected Software1

WPVulnDB•added 2023/11/14 12:0 a.m.•20 views

Webpushr < 4.35.0 - LFI via CSRF

Description The plugin does not have CSRF check in its wppsavesettings function, and does not validate the menu parameter, allowing attackers to make logged in users admins perform LFI attacks via CSRF...

8.8CVSS7AI score0.00096EPSS

Exploits0Affected Software1

OSV•added 2023/11/13 3:15 a.m.•0 views

CVE-2023-35041

Cross-Site Request Forgery CSRF vulnerability leading to Local File Inclusion LF in Webpushr Web Push Notifications Web Push Notifications – Webpushr plugin = 4.34.0 versions...

8.8CVSS7.3AI score

Exploits0References1

Prion•added 2023/11/13 3:15 a.m.•12 views

Cross site request forgery (csrf)

Cross-Site Request Forgery CSRF vulnerability leading to Local File Inclusion LF in Webpushr Web Push Notifications Web Push Notifications – Webpushr plugin = 4.34.0 versions...

6.8CVSS7.2AI score0.00096EPSS

Exploits0References1Affected Software1

Patchstack•added 2023/11/08 12:0 a.m.•9 views

WordPress Webpushr Plugin < 4.35.0 is vulnerable to Cross Site Scripting (XSS)

Software Webpushr Type Plugin Vulnerable versions 4.35.0 Fixed in 4.35.0 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-5620 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 15644fc2ddd3 Credits Krzysztof Zając Required...

5.4CVSS5.6AI score0.00109EPSS

Exploits2References4Affected Software1

Patchstack•added 2023/10/19 12:0 a.m.•5 views

WordPress Webpushr Plugin <= 4.34.0 is vulnerable to Cross Site Request Forgery (CSRF)

Software Webpushr Type Plugin Vulnerable versions = 4.34.0 Fixed in 4.35.0 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-35041 Patch priority Low CVSS severity Low 8.8 Developer Claim ownership PSID 5f64981a29ac Credits Theodoros Malachias...

8.8CVSS6.6AI score0.00096EPSS

Exploits0References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by