Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.5 views

EUVD-2017-17062

Malware in sbrugna...

8.1CVSS8.1AI score0.00175EPSS
Exploits1References3
RedhatCVE
RedhatCVEadded 2025/05/22 6:40 a.m.4 views

CVE-2017-8099

There is CSRF in the WHIZZ plugin before 1.1.1 for WordPress, allowing attackers to delete any WordPress users and change the plugin's status via a GET request...

8.1CVSS6.9AI score0.00175EPSS
Exploits1References1
OSV
OSVadded 2017/04/24 6:59 p.m.1 views

CVE-2017-8099

There is CSRF in the WHIZZ plugin before 1.1.1 for WordPress, allowing attackers to delete any WordPress users and change the plugin's status via a GET request...

8.1CVSS5.8AI score
Exploits0References2
Prion
Prionadded 2017/04/24 6:59 p.m.8 views

Cross site request forgery (csrf)

There is CSRF in the WHIZZ plugin before 1.1.1 for WordPress, allowing attackers to delete any WordPress users and change the plugin's status via a GET request...

5.8CVSS7.9AI score0.00175EPSS
Exploits1References2Affected Software1
Cvelist
Cvelistadded 2017/04/24 6:0 p.m.12 views

CVE-2017-8099

There is CSRF in the WHIZZ plugin before 1.1.1 for WordPress, allowing attackers to delete any WordPress users and change the plugin's status via a GET request...

8AI score0.00175EPSS
Exploits1References2
CVE
CVEadded 2017/04/24 6:0 p.m.45 views

CVE-2017-8099

CVE-2017-8099 affects the WHIZZ WordPress plugin prior to version 1.1.1. The connected documents describe a Cross-Site Request Forgery (CSRF) vulnerability that lets an attacker delete WordPress users and change the plugin’s status via a GET request. Exploitation details beyond this behavior are ...

8.1CVSS7.9AI score0.00175EPSS
Exploits1References2Affected Software1
Patchstack
Patchstackadded 2017/04/07 12:0 a.m.8 views

WordPress WHIZZ plugin <=1.1 - Cross-Site Request Forgery vulnerability

WordPress WHIZZ plugin version 1.1 and earlier versions vulnerable to Cross-Site Request Forgery type attacks. An attacker could exploit this vulnerability to delete any WordPress user and change any plugin status. Solution Update WordPress WHIZZ plugin to the latest available version at least...

3.6AI score
Exploits0References1Affected Software1
CNVD
CNVDadded 2016/10/13 12:0 a.m.5 views

Wordpress whizz plugin cross-site scripting vulnerability

WordPress is the WordPress Software Foundation of a set of PHP language development of the blogging platform, the platform supports PHP and MySQL server set up a personal blog site. whizz is one of the plug-ins used in the back-end management of WordPress and add a color-coded interface . A...

6.1CVSS5.9AI score0.05754EPSS
Exploits2References1
OSV
OSVadded 2016/10/10 8:59 p.m.2 views

CVE-2016-1000154

Reflected XSS in wordpress plugin whizz v1.0.7...

6.1CVSS5.8AI score0.05754EPSS
Exploits2References3
Patchstack
Patchstackadded 2016/04/13 12:0 a.m.18 views

WordPress WHIZZ Plugin <= 1.0.7 - Cross Site Scripting

An unauthenticated reflected cross site scripting vulnerability is in the php code ./whizz/plugins/delete-plugin.php: 7: Solution Update the plugin...

6.1CVSS1.7AI score0.05754EPSS
Exploits2References1Affected Software1
Rows per page
Query Builder