Lucene search
K

234 matches found

Patchstack
Patchstack
added 2026/03/16 8:26 p.m.6 views

WordPress Wicked Folders plugin <= 4.1.0 - Insecure Direct Object Reference to Authenticated (Contributor+) Arbitrary Folder Deletion vulnerability

Insecure Direct Object Reference to Authenticated Contributor+ Arbitrary Folder Deletion vulnerability discovered by Youssef Elouaer in WordPress Plugin Wicked Folders versions = 4.1.0...

4.3CVSS5.8AI score0.00233EPSS
Exploits0References1Affected Software1
EUVD
EUVD
added 2026/03/16 3:30 p.m.10 views

EUVD-2026-12198

The Wicked Folders – Folder Organizer for Pages, Posts, and Custom Post Types plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 4.1.0 via the deletefolders function due to missing validation on a user controlled key. This makes it possibl...

4.3CVSS5.8AI score0.00233EPSS
Exploits0References3
NVD
NVD
added 2026/03/16 2:18 p.m.3 views

CVE-2026-1883

The Wicked Folders – Folder Organizer for Pages, Posts, and Custom Post Types plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 4.1.0 via the deletefolders function due to missing validation on a user controlled key. This makes it possibl...

4.3CVSS0.00233EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/03/16 12:0 a.m.9 views

WordPress plugin Wicked Folders – Folder Organizer for Pages, Posts, and Custom Post Types 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows users to create personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be installed t...

4.3CVSS5.8AI score0.00233EPSS
Exploits0References2
CVE
CVE
added 2026/03/15 1:19 a.m.9 views

CVE-2026-1883

CVE-2026-1883 affects the WordPress plugin Wicked Folders – Folder Organizer for Pages, Posts, and Custom Post Types. It states that all versions up to 4.1.0 are vulnerable to an Insecure Direct Object Reference (IDOR) in the delete_folders() function due to missing validation on a user-controlle...

4.3CVSS5.8AI score0.00233EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/03/15 1:19 a.m.46 views

CVE-2026-1883 Wicked Folders <= 4.1.0 - Insecure Direct Object Reference to Authenticated (Contributor+) Arbitrary Folder Deletion

The Wicked Folders – Folder Organizer for Pages, Posts, and Custom Post Types plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 4.1.0 via the deletefolders function due to missing validation on a user controlled key. This makes it possibl...

4.3CVSS0.00233EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/03/15 1:19 a.m.3 views

CVE-2026-1883 Wicked Folders <= 4.1.0 - Insecure Direct Object Reference to Authenticated (Contributor+) Arbitrary Folder Deletion

The Wicked Folders – Folder Organizer for Pages, Posts, and Custom Post Types plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 4.1.0 via the deletefolders function due to missing validation on a user controlled key. This makes it possibl...

4.3CVSS5.8AI score0.00233EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/03/15 12:0 a.m.6 views

PT-2026-25528

The Wicked Folders – Folder Organizer for Pages, Posts, and Custom Post Types plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 4.1.0 via the delete folders function due to missing validation on a user controlled key. This makes it possib...

4.3CVSS5.8AI score0.00233EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-11831

Malware in sbrugna...

8.8CVSS8.7AI score0.01517EPSS
Exploits2References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2023-12753

Malicious code in bioql PyPI...

5.4CVSS6AI score0.00308EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-12741

Malicious code in bioql PyPI...

5.4CVSS6AI score0.00576EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-12745

Malicious code in bioql PyPI...

5.4CVSS6AI score0.00576EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.39 views

EUVD-2023-12750

Malicious code in bioql PyPI...

5.4CVSS6AI score0.00308EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-12751

Malicious code in bioql PyPI...

5.4CVSS6AI score0.00322EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-12714

Malicious code in bioql PyPI...

5.4CVSS6.1AI score0.00308EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2023-12752

Malicious code in bioql PyPI...

5.4CVSS6AI score0.00308EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-12743

Malicious code in bioql PyPI...

5.4CVSS6AI score0.00576EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2023-12755

Malicious code in bioql PyPI...

5.4CVSS6.1AI score0.00322EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-12739

Malicious code in bioql PyPI...

5.4CVSS6AI score0.00576EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-12758

Malicious code in bioql PyPI...

5.4CVSS6AI score0.00322EPSS
Exploits0References3
Rows per page
Query Builder