Lucene search
K

106 matches found

CVE
CVE
added 2025/03/19 11:10 a.m.51 views

CVE-2024-12920

CVE-2024-12920 affects FoodBakery | Delivery Restaurant WordPress Theme (

8.8CVSS8.5AI score0.00381EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/02/16 7:17 a.m.25 views

CVE-2025-22630

Improper Neutralization of Special Elements used in a Command 'Command Injection' vulnerability in Marketing Fire Widget Options widget-options allows OS Command Injection.This issue affects Widget Options: from n/a through = 4.1.0...

9.9CVSS7.2AI score0.01187EPSS
Exploits0References1
NVD
NVD
added 2025/02/14 7:15 a.m.14 views

CVE-2025-22630

Improper Neutralization of Special Elements used in a Command 'Command Injection' vulnerability in Marketing Fire Widget Options widget-options allows OS Command Injection.This issue affects Widget Options: from n/a through = 4.1.0...

9.9CVSS0.01187EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/02/14 7:10 a.m.18 views

CVE-2025-22630 WordPress Widget Options Plugin <= 4.1.0 - Arbitrary Code Execution vulnerability

Improper Neutralization of Special Elements used in a Command 'Command Injection' vulnerability in MarketingFire Widget Options allows OS Command Injection.This issue affects Widget Options: from n/a through 4.1.0...

9.9CVSS9.6AI score0.01187EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/02/14 12:0 a.m.6 views

WordPress plugin Widget Options 命令注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A command injection...

9.9CVSS8.6AI score0.01187EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/02/14 12:0 a.m.9 views

PT-2025-6951 · Unknown · Marketingfire Widget Options

Name of the Vulnerable Software and Affected Versions: MarketingFire Widget Options versions n/a through 4.1.0 Description: The issue is related to an Improper Neutralization of Special Elements used in a Command, also known as a Command Injection vulnerability, in MarketingFire Widget Options...

9.9CVSS9.7AI score0.01187EPSS
Exploits0References8
Patchstack
Patchstack
added 2025/02/11 2:47 p.m.6 views

WordPress Widget Options Plugin <= 4.1.0 - Arbitrary Code Execution vulnerability

Arbitrary Code Execution vulnerability discovered by Tran Nguyen Bao Khanh in WordPress Plugin Widget Options versions = 4.1.0...

9.9CVSS7.3AI score0.01187EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVE
added 2025/02/04 10:45 p.m.10 views

CVE-2024-8672

The Widget Options – The 1 WordPress Widget & Block Control Plugin plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 4.0.7 via the display logic functionality that extends several page builders. This is due to the plugin allowing users to supply inp...

9.9CVSS7.7AI score0.43797EPSS
Exploits1References1
NVD
NVD
added 2025/01/21 6:15 p.m.12 views

CVE-2025-22722

Missing Authorization vulnerability in Marketing Fire Widget Options widget-options allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Widget Options: from n/a through = 4.0.8...

4.3CVSS0.00229EPSS
Exploits0References1
CVE
CVE
added 2025/01/21 5:21 p.m.54 views

CVE-2025-22722

Technical details about CVE-2025-22722 are not provided in the connected documents. The initial entry notes a Missing Authorization issue in Widget Options plugin versions up to 4.0.8, but no technical specifics or affected product/version data are disclosed here. Monitor for updates.

4.3CVSS7.2AI score0.00229EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/01/21 5:21 p.m.6 views

CVE-2025-22722 WordPress Widget Options plugin <= 4.0.8 - Broken Access Control to Notice Dimissal vulnerability

Missing Authorization vulnerability in Marketing Fire Widget Options widget-options allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Widget Options: from n/a through = 4.0.8...

4.3CVSS8.6AI score0.00229EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/01/21 5:21 p.m.22 views

CVE-2025-22722 WordPress Widget Options plugin <= 4.0.8 - Broken Access Control to Notice Dimissal vulnerability

Missing Authorization vulnerability in Marketing Fire Widget Options widget-options allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Widget Options: from n/a through = 4.0.8...

4.3CVSS0.00229EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/01/21 12:0 a.m.5 views

WordPress plugin Widget Options 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

4.3CVSS8.2AI score0.00229EPSS
Exploits0References2
Patchstack
Patchstack
added 2025/01/15 11:28 a.m.7 views

WordPress Widget Options plugin <= 4.0.8 - Broken Access Control to Notice Dimissal vulnerability

Broken Access Control to Notice Dimissal vulnerability discovered by Trương Hữu Phúc truonghuuphuc in WordPress Plugin Widget Options versions = 4.0.8...

4.3CVSS7AI score0.00229EPSS
Exploits0Affected Software1
NVD
NVD
added 2024/12/31 11:15 a.m.10 views

CVE-2024-56219

Missing Authorization vulnerability in Marketing Fire Widget Options widget-options allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Widget Options: from n/a through = 4.0.6.1...

4.3CVSS0.00333EPSS
Exploits0References1
Prion
Prion
added 2024/12/31 11:15 a.m.13 views

CVE-2024-56219

Missing Authorization vulnerability in MarketingFire Widget Options allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Widget Options: from n/a through 4.0.6.1...

0.00333EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/12/31 10:22 a.m.6 views

CVE-2024-56219 WordPress Widget Options plugin <= 4.0.6.1 - Broken Access Control vulnerability

Missing Authorization vulnerability in MarketingFire Widget Options allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Widget Options: from n/a through 4.0.6.1...

4.3CVSS4.7AI score0.00333EPSS
Exploits0References1
CVE
CVE
added 2024/12/31 10:22 a.m.53 views

CVE-2024-56219

The CVE-2024-56219 entry describes a Missing Authorization vulnerability in WordPress Widget Options plugin, affecting versions up to 4.0.6.1. The underlying issue is broken/authentication-guarded access control in the Widget Options configuration, enabling exploitation of insufficient access che...

4.3CVSS7.2AI score0.00333EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/12/31 10:22 a.m.20 views

CVE-2024-56219 WordPress Widget Options plugin <= 4.0.6.1 - Broken Access Control vulnerability

Missing Authorization vulnerability in Marketing Fire Widget Options widget-options allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Widget Options: from n/a through = 4.0.6.1...

4.3CVSS0.00333EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/12/31 12:0 a.m.6 views

WordPress plugin Widget Options 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

4.3CVSS8.1AI score0.00333EPSS
Exploits0References1
Rows per page
Query Builder